Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: None
Affects Version/s: 4.12
Component/s: OLM
Labels:
None

Severity:
Critical
Regression:
None
Release Blocker:
Rejected
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Target Version:

4.13.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

Pod in the openshift-marketplace cause PodSecurityViolation alerts in vanilla OpenShift cluster

Version-Release number of selected component (if applicable):

4.12.0-0.nightly-2023-01-04-203333

How reproducible:

100%

Steps to Reproduce:

1. install a freshly new cluster
2. check the alerts in the console

Actual results:

PodSecurityViolation alert is present

Expected results:

No alerts

Additional info:

I'll provide a filtered version of the audit logs containing the violations

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

image-2023-01-09-14-13-53-201.png
80 kB
2023/01/09 2:13 PM
image-2023-01-09-14-17-04-384.png
38 kB
2023/01/09 2:17 PM
image-2023-01-11-09-53-24-038.png
99 kB
2023/01/11 9:53 AM
violating_pods.audit.log
18 kB
2023/01/05 3:29 PM

is caused by

OCPBUGS-3881 Revert Catalog PSA decisions for 4.12

Closed

is cloned by

OCPBUGS-5468 openshift-marketplace pods cause PodSecurityViolation alert to fire

Closed

is depended on by

OCPBUGS-5468 openshift-marketplace pods cause PodSecurityViolation alert to fire

Closed

links to

operator-framework/operator-marketplace#502: OCPBUGS-5423: Remove PSA audit and warnings

Assignee:: Alexander Greene (Inactive)

Reporter:: Stanislav Láznička (Inactive)

QA Contact:: Jian Zhang

Votes:: 0 Vote for this issue

Watchers:: 12 Start watching this issue

Created:: 2023/01/05 3:27 PM

Updated:: 2024/04/29 5:13 PM

Resolved:: 2023/05/17 10:33 PM