1892004 – OCP 4.6 opm on Ubuntu 18.04.4 - error /lib/x86_64-linux-gnu/libc.so.6: version `GLIBC_2.28' not found (required by ./opm)

Bug 1892004 - OCP 4.6 opm on Ubuntu 18.04.4 - error /lib/x86_64-linux-gnu/libc.so.6: version `GLIBC_2.28' not found (required by ./opm)

Summary: OCP 4.6 opm on Ubuntu 18.04.4 - error /lib/x86_64-linux-gnu/libc.so.6: versio...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	OLM
Sub Component:
Version:	4.6
Hardware:	x86_64
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Target Release:	4.7.0
Assignee:	Daniel Sover
QA Contact:	Jian Zhang
Docs Contact:
URL:
Whiteboard:
Duplicates (1):	1918088 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-10-27 20:46 UTC by jdockter
Modified:	2021-02-24 15:29 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed:	2021-02-24 15:28:35 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	openshift openshift-docs pull 27181	0	None	closed	Add glibc version 2.28+ limitation for using opm	2021-01-25 20:16:14 UTC
Red Hat Product Errata	RHSA-2020:5633	0	None	None	None	2021-02-24 15:29:09 UTC

Description jdockter 2020-10-27 20:46:52 UTC

Description of problem:
Trying to use opm binary from downstream OCP 4.6 (registry.redhat.io/openshift4/ose-operator-registry:v4.6) per instructions here, https://docs.openshift.com/container-platform/4.6/cli_reference/opm-cli.html#olm-installing-opm_opm-cli

Version-Release number of selected component (if applicable):
OCP 4.6

How reproducible:
All the time

Steps to Reproduce:
1. Establish Ubuntu 18.04.4 VM

2. oc image extract registry.redhat.io/openshift4/ose-operator-registry:v4.6.0 --path /usr/bin/opm:. --confirm

3. chmod +x ./opm

4. ./opm --help


Actual results:

./opm: /lib/x86_64-linux-gnu/libc.so.6: version `GLIBC_2.28' not found (required by ./opm)

Expected results:

Version: version.Version{OpmVersion:"1.12.3", GitCommit:"", BuildDate:"2020-07-01T23:18:58Z", GoOs:"linux", GoArch:"amd64"}

Additional info:

Comment 1 jdockter 2020-10-27 20:54:59 UTC

Is there a min OS level for Ubuntu that is needed to run opm for OCP 4.6?

Comment 2 jdockter 2020-10-29 14:59:54 UTC

It seem Ubuntu 19.04 uses 2.29 and Ubuntu 20.04 uses 2.31 ...spun up a 20.04 VM and was able to get this to work

./opm version
Version: version.Version{OpmVersion:"v1.14.3-5-gf6e5d92", GitCommit:"f6e5d9281f335472dda7110fca2c710794c97fb5", BuildDate:"2020-10-06T13:13:12Z", GoOs:"linux", GoArch:"amd64"}

Unfortunately not finding a ton of options to upgrade Ubuntu 18 to 2.28 or higher, even worse default enterprise CI is using Travis with Ubuntu 18. Still looking for workaround at Ubuntu 18

Comment 3 Daniel Sover 2020-10-29 18:15:59 UTC

The opm linux build uses dynamic linking for glibc due to the hard dependency on sqlite at this time. There are some restrictions around statically linking on linux due to cryptographic audit requirements that ensure libraries like openssl are not vulnerable. 

The opm provided is built in a RHEL8 container. It's good to see that you found a workaround on Ubuntu 20.04, but I'm not sure we have a workaround for Ubuntu 18.04. 

At this time our proposed solution is to update the official openshift 4.6 docs to describe these limitations for the opm build on linux.

Comment 4 jdockter 2020-10-29 18:56:22 UTC

So is this just a statement of downstream opm?  Seems that upstream works https://github.com/operator-framework/operator-registry/releases/download/v1.14.3/linux-amd64-opm  Assuming different build processes?

Comment 5 Daniel Sover 2020-10-29 19:12:05 UTC

Yes, I believe this is the case. Downstream build is very different from upstream.

Comment 6 Daein Park 2020-11-09 14:55:38 UTC

FYI, I've created DOCS PR here for adding limitation condition about glibc version: https://github.com/openshift/openshift-docs/pull/27181

Comment 7 jdockter 2020-11-09 15:10:27 UTC

At the moment we have decided to pull opm upstream as that build doesn't have the limitation for linux.  This can be closed.

Comment 12 Jian Zhang 2020-12-02 02:21:03 UTC

The doc updates(https://github.com/openshift/openshift-docs/pull/27181) looks good to me, verify it. Thanks!

Comment 16 Ben Luddy 2021-01-25 21:56:35 UTC

*** Bug 1918088 has been marked as a duplicate of this bug. ***

Comment 18 errata-xmlrpc 2021-02-24 15:28:35 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:5633

Note You need to log in before you can comment on or make changes to this bug.