Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-16067

AIDE configuration breaks with AIDE 0.18.0

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Critical Critical
    • None
    • 4.12
    • File Integrity Operator
    • None
    • Moderate
    • No
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      The File Integrity Operator uses AIDE to detect changes on node filesystems. In doing this, it configures AIDE according to the user's need.

Up to this point, the AIDE configuration that FIO uses has been relatively stable. New versions of AIDE (specific 0.18.4) are backwards incompatible with the configuration that FIO was using for AIDE.

This results in the AIDE pods falling into a crashloop because AIDE refuses to start with a bad configuration if you're using AIDE 0.18.0+.

      Version-Release number of selected component (if applicable):

       

      How reproducible:

      Always, so long as your using a container image with AIDE 0.18.0

      Steps to Reproduce:

      1. Build the aide container image using the latest available aide (fedora-minimal)
2. Run the e2e tests

      Actual results:

      You'll notice that the tests timeout, or that File Integrities fail to go to Active phase because AIDE refuses to start with a bad configuration.

      Expected results:

      The tests should work using newer AIDE versions

      Additional info:

       

            wenshen@redhat.com Vincent Shen
            lbragsta@redhat.com Lance Bragstad
            Xiaojie Yuan Xiaojie Yuan
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated: