Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-31739

MicroShift OVN pods should not write to the /opt/cni/bin host directory

XMLWordPrintable

    • No
    • 1
    • uShift Sprint 252, uShift Sprint 253
    • 2
    • False
    • Hide

      None

      Show
      None
    • N/A
    • Release Note Not Required

      Description of problem:

      MicroShift OVN container pods attempt to copy ovn-k8s-cni-overlay executable from container to /opt/cni/bin host directory. This is not a future-proof action because the directory became immutable in Image Containers (bootc) systems.

      Version-Release number of selected component (if applicable):

      4.14+, but only needs to be fixed in 4.16

      How reproducible:

      100%  

      Steps to Reproduce:

      See https://github.com/openshift/microshift/blob/main/assets/components/ovn/single-node/master/daemonset.yaml#L334 

      Actual results:

      Executable is copied to the /opt/cni/bin host directory, which will become immutable in some configurations. 

      Expected results:

      Executable to be copied to a writable location, i.e. /run/cni/bin or /var/lib/cni/bin

      Additional info:

      See this slide and this discussion for more information.

              pliurh Peng Liu
              ggiguash@redhat.com Gregory Giguashvili
              Douglas Hensel Douglas Hensel
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated:
                Resolved: