-
Bug
-
Resolution: Unresolved
-
Normal
-
Logging 5.9.5
-
False
-
None
-
False
-
NEW
-
VERIFIED
-
-
Bug Fix
-
-
-
-
Log Collection - Sprint 259, Log Collection - Sprint 260, Log Collection - Sprint 262, Log Collection - Sprint 263
Description of problem:
When using a user namespace which contains kube or open shift in its name like:
"sample-kube-example"
The multi cluster log forwarder fails with the following:
status: conditions: - lastTransitionTime: '2024-09-03T15:17:15Z' reason: ValidationFailure status: 'False' type: Ready - lastTransitionTime: '2024-09-03T15:17:15Z' message: >- insufficient permissions on service account, not authorized to collect ["infrastructure"] logs reason: ValidationFailure status: 'True' type: Validation
Version-Release number of selected component (if applicable):
5.9.5 running on OCP 4.14.6 on Google OSD
How reproducible:
add a user namespace sample-kube-example
Apply logforwarding - cr attached
Actual results:
log forwarding fails with the message shown in problem description
Expected results:
log forwarding should work
Additional info:
The suspicion is that the collector tries to treat these logs as infrastructure but they are not infra logs according to the official docs:
- infrastructure - Logs generated by infrastructure components running in the cluster and OpenShift Container Platform nodes, such as journal logs. Infrastructure components are pods that run in the openshift*, kube*, or default projects.
- is cloned by
-
LOG-6204 [release-6.0]Multi CLF validation failure when adding a namespace which contains "kube" or "openshift"
- Verified
- links to
- mentioned on
(5 links to, 9 mentioned on)