-
Bug
-
Resolution: Done-Errata
-
Normal
-
4.16.0
-
No
-
1
-
uShift Sprint 252, uShift Sprint 253
-
2
-
False
-
-
N/A
-
Release Note Not Required
Description of problem:
MicroShift OVN container pods attempt to copy ovn-k8s-cni-overlay executable from container to /opt/cni/bin host directory. This is not a future-proof action because the directory became immutable in Image Containers (bootc) systems.
Version-Release number of selected component (if applicable):
4.14+, but only needs to be fixed in 4.16
How reproducible:
100%
Steps to Reproduce:
Actual results:
Executable is copied to the /opt/cni/bin host directory, which will become immutable in some configurations.
Expected results:
Executable to be copied to a writable location, i.e. /run/cni/bin or /var/lib/cni/bin
Additional info:
See this slide and this discussion for more information.
- links to
-
RHSA-2024:0043 OpenShift Container Platform 4.16.z security update