Uploaded image for project: 'OpenShift GitOps'
  1. OpenShift GitOps
  2. GITOPS-2575

[must-gather] 4.13 clusters do not work with gitops-must-gather

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • None
    • None
    • Operator
    • None
    • 8
    • False
    • Hide

      None

      Show
      None
    • False
    • GITOPS Sprint 232

      Description of problem:

      When running the gitops-must-gather on OpenShift 4.13 clusters, the script fails with the error: 

      Error from server (Forbidden): pods "must-gather-ll5hh" is forbidden: violates PodSecurity "restricted:latest": allowPrivilegeEscalation != false (containers "gather", "copy" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (containers "gather", "copy" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or containers "gather", "copy" must set securityContext.runAsNonRoot=true), seccompProfile (pod or containers "gather", "copy" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")

      Corresponds with issue #5 in gitops-must-gather

      Prerequisites (if any, like setup, operators/versions):

      Steps to Reproduce

      1. Log into an OpenShift 4.13 cluster
      2. Try to execute the gitops-must-gather script with  
        oc adm must-gather --image=quay.io/redhat-developer/gitops-must-gather:latest

      Actual results:

      Fails with error mentioned above

      Expected results:

      Script should execute successfully, as it does with other OCP versions.

      Reproducibility (Always/Intermittent/Only Once):

      Always

              rescott1 Regina Scott (Inactive)
              rescott1 Regina Scott (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: