Description of problem:

openscap-pod fails to scan due to the oscap process sefaulting. This results in reporting errors in the compliance scans. The container terminates with an exit code of `139`.

[maintuser@ip-100-64-27-36 ~]$ oc logs openscap-pod-9910920168a9d2f4e0565d05b8d93723c6fe9f93 -c scanner | tail
I: oscap: Evaluating file test 'oval:ssg-test_file_groupowner_multus_conf_0:tst:1': Testing group ownership of ^/var/run/multus/cni/net.d/.*$.
I: oscap: Querying file object 'oval:ssg-object_file_groupowner_multus_conf_0:obj:1', flags: 0.
I: oscap: Creating new syschar for file_object 'oval:ssg-object_file_groupowner_multus_conf_0:obj:1'.
I: oscap: Object 'oval:ssg-object_file_groupowner_multus_conf_0:obj:1' has a filter that excludes items conforming to state 'oval:ssg-symlink_file_groupowner_multus_conf_uid_0:ste:1'.
I: oscap: Object 'oval:ssg-object_file_groupowner_multus_conf_0:obj:1' has a filter that excludes items conforming to state 'oval:ssg-state_file_groupowner_multus_conf_gid_0_0:ste:1'.
I: oscap: Switching probe to PROBE_OFFLINE_OWN mode.
OpenSCAP Error: Unable to open file: '/tmp/report-arf.xml' [/builddir/build/BUILD/openscap-1.3.5/src/source/oscap_source.c:288]
Could not create Result DataStream session: File is not Result DataStream. [/builddir/build/BUILD/openscap-1.3.5/src/DS/ds_rds_session.c:53]
Failed to split given result data stream '/tmp/report-arf.xml'.
The rds-split operation returned 1

As previously noted, here is the dmesg the node logged for the segfault:

[41536.205447] probe_worker[571569]: segfault at 2 ip 00007f15737c8260 sp 00007f1524ff8760 error 4 in libopenscap.so.25.4.0[7f1573722000+149000]
[41536.213037] Code: 00 00 48 89 d3 48 89 54 24 48 48 83 e3 fe 74 7f 66 2e 0f 1f 84 00 00 00 00 00 48 8b 03 48 89 c6 48 83 e6 fe 0f 84 28 01 00 00 <f6> 06 01 0f 84 1f 01 00 00 48 8b 7b 08 48 83 e7 fe 0f 84 11 01 00

That address location for libopenscap.so.25.4.0 points to oval_result_test_iterator_next:

addr2line -e libopenscap.so.25.4.0 -fCi 0xA6260
oval_result_test_iterator_next