Bug 1845899

Summary: [CNV-2.5] cluster-network-addons-operator failing to start
Product: Container Native Virtualization (CNV) Reporter: Lukas Bednar <lbednar>
Component: NetworkingAssignee: Petr Horáček <phoracek>
Status: CLOSED ERRATA QA Contact: Meni Yakove <myakove>
Severity: high Docs Contact:
Priority: high    
Version: 2.5.0CC: cnv-qe-bugs, danken, ellorent, gbenhaim, myakove, ncredi, phoracek, stirabos
Target Milestone: ---Keywords: AutomationBlocker
Target Release: 2.5.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 2.5.0 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1844057 Environment:
Last Closed: 2020-07-28 19:10:33 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1844057    
Bug Blocks:    

Comment 1 Lukas Bednar 2020-06-10 11:46:28 UTC 
Failing for CNV-2.5 (HCO-v2.3.0-305)
OCP 4.6.0-0.nightly-2020-06-09-081928

cluster-network-addons-operator-58dcf968f4-958pq   0/1     CrashLoopBackOff   4          2m26s

[cloud-user@ocp-psi-executor ~]$ oc logs -n openshift-cnv cluster-network-addons-operator-58dcf968f4-958pq
2020/06/10 11:39:58 Go Version: go1.13.4
2020/06/10 11:39:58 Go OS/Arch: linux/amd64
2020/06/10 11:39:58 version of operator-sdk: v0.18.0
2020/06/10 11:39:58 version of cluster-network-addons-operator: sha256_96093e33e40cad5e9bc8aac3bcdaafea39aed41e78f1dac7607e696b
I0610 11:39:59.856990       1 request.go:621] Throttling request took 1.008216087s, request: GET:https://172.30.0.1:443/apis/operators.coreos.com/v1alpha1?timeout=32s
2020/06/10 11:40:08 registering Components
2020/06/10 11:40:08 Running on OpenShift 4
2020/06/10 11:40:08 failed setting up operator controllers: failed to check for availability of SCC: securitycontextconstraints.security.openshift.io is forbidden: User "system:serviceaccount:openshift-cnv:cluster-network-addons-operator" cannot list resource "securitycontextconstraints" in API group "security.openshift.io" at the cluster scope
Comment 2 Dan Kenigsberg 2020-06-10 12:43:42 UTC 
Could it be that in 2.5, CNAO is not following the master branch?
If this is the case, we should cherry-pick into 2.5 before cherry-picking to 2.4.
Comment 3 Petr Horáček 2020-06-10 14:20:11 UTC 
I spoke to Gal. We need to setup U/S to D/S automation for 2.5. Once that is in place, we would consume all the recently added fixes there. Currently 2.5 is froze in time.
Comment 4 Gal Ben Haim 2020-06-11 17:26:37 UTC 
Poll jobs were created https://code.engineering.redhat.com/gerrit/#/c/203085/
Comment 7 errata-xmlrpc 2020-07-28 19:10:33 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:3194