Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-44367

[enterprise-4.17] Issue in file authentication/managing-security-context-constraints.adoc

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • None
    • 4.13, 4.12, 4.14, 4.15, 4.16, 4.17
    • Documentation / Authentication
    • None
    • None
    • False
    • Hide

      None

      Show
      None

      Description of problem:

      • Using example YAML file SCC is not creating.

      Version-Release number of selected component (if applicable):

      How reproducible:

        Create a SCC using example YAML file provided in the documentation.

      Steps to Reproduce:

       1. Create a SCC using example YAML file.

      Actual results:

      The SecurityContextConstraints "privileged" is invalid: requiredDropCapabilities: Invalid value: [v1.Capability("KILL", "MKNOD", "SETUID", "SETGID"): required capabilities must be empty when all capabilities are allowed by a wildcard

      Expected results:

      securitycontextconstraints.security.openshift.io/privileged created

      Additional info:

      The error is occurring because we are allowing all the capabilities in the "allowedCapabilities" section and again we are droping capabilities in "requiredDropCapabilities" section.

       

              ocp-docs-bot OCP DocsBot
              rh-ee-smartand Saurabh Martande
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: