Bug 2103126
Summary: | must-gather namespace should have “privileged” warn and audit pod security labels besides enforce | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | Yash Tripathi <ytripath> |
Component: | oc | Assignee: | Arda Guclu <aguclu> |
oc sub component: | oc | QA Contact: | zhou ying <yinzhou> |
Status: | CLOSED ERRATA | Docs Contact: | |
Severity: | high | ||
Priority: | unspecified | CC: | jchaloup, mfojtik |
Version: | 4.11 | ||
Target Milestone: | --- | ||
Target Release: | 4.12.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | No Doc Update | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2023-01-17 19:51:19 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 2104589 |
Description
Yash Tripathi
2022-07-01 13:50:55 UTC
Verified on Client Version: 4.12.0-0.nightly-2022-07-06-221008 Kustomize Version: v4.5.4 Server Version: 4.12.0-0.nightly-2022-07-06-221008 1. $ oc adm must-gather 2. $ oc get ns openshift-must-gather-2nbjs -o yaml Actual results: Labels are ... openshift.io/run-level: "0" pod-security.kubernetes.io/audit: privileged pod-security.kubernetes.io/enforce: privileged pod-security.kubernetes.io/warn: privileged ... Expected results: Labels should be … pod-security.kubernetes.io/audit: privileged pod-security.kubernetes.io/enforce: privileged pod-security.kubernetes.io/warn: privileged … moving to Verified "pod-security.kubernetes.io/warn: privileged" label is present now Labels are ... pod-security.kubernetes.io/audit: privileged pod-security.kubernetes.io/enforce: privileged pod-security.kubernetes.io/warn: privileged ... Expected results: Labels should be … pod-security.kubernetes.io/audit: privileged pod-security.kubernetes.io/enforce: privileged pod-security.kubernetes.io/warn: privileged … Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.12.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2022:7399 |