Bug 2090274
Summary: | when downgrade from ocp4.11 to ocp4.10 the openshift-controller-manager-operator pod will CrashLoopBackOff | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | zhou ying <yinzhou> |
Component: | openshift-controller-manager | Assignee: | jawed <jkhelil> |
openshift-controller-manager sub component: | controller-manager | QA Contact: | Jitendar Singh <jitsingh> |
Status: | CLOSED NOTABUG | Docs Contact: | |
Severity: | medium | ||
Priority: | high | CC: | cdaley, jitsingh, jkhelil, talessio |
Version: | 4.10 | Keywords: | TestBlocker |
Target Milestone: | --- | ||
Target Release: | 4.12.z | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | devex | ||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2023-01-24 13:40:33 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
zhou ying
2022-05-25 13:21:07 UTC
@cdacdaycorey After diff between 4.10 and 4.11 deployment of controller-manager-operator i can see that the following cojfiguration is in 4.11 but not in 4.10 securityContext: runAsNonRoot: true runAsUser: 65534 seccompProfile: type: RuntimeDefault it is coming from this commit https://github.com/openshift/cluster-openshift-controller-manager-operator/commit/718fce194896f5e96e10f45c79c68640d1e1caf9 when I look to other operator in openshift, they have this scc configuration too and this changes happens when going to 4.11, but they behave correctly after downgrading I think we need to identify what processes are run during a downgrade, there might be a ncessary check/delete before deploying it Unfortunately I am not able to identify this |