2066768 – [CNV-4.11-HCO] User Cannot List Resource "namespaces" in API group

Bug 2066768 - [CNV-4.11-HCO] User Cannot List Resource "namespaces" in API group

Summary: [CNV-4.11-HCO] User Cannot List Resource "namespaces" in API group

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Container Native Virtualization (CNV)
Classification:	Red Hat
Component:	Installation
Sub Component:
Version:	4.11.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	---
Target Release:	4.11.0
Assignee:	Simone Tiraboschi
QA Contact:	Debarati Basu-Nag
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2022-03-22 12:51 UTC by Mor Cohen
Modified:	2023-11-13 08:13 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2022-09-14 19:29:09 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
hco-operator's pod logs (9.69 KB, text/plain) 2022-03-22 12:51 UTC, Mor Cohen	no flags	Details
View All

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	CNV-17061	0	None	None	None	2023-11-13 08:13:31 UTC
Red Hat Product Errata	RHSA-2022:6526	0	None	None	None	2022-09-14 19:29:25 UTC

Description Mor Cohen 2022-03-22 12:51:30 UTC

Created attachment 1867481 [details]
hco-operator's pod logs

Description of problem:
HCO won't reconcile because of the following error message from hco-operator pod logs:
W0322 12:22:49.081244       1 reflector.go:324] sigs.k8s.io/controller-runtime/pkg/cache/internal/informers_map.go:250: failed to list *v1.Namespace: namespaces is forbidden: User "system:serviceaccount:openshift-cnv:hyperconverged-cluster-operator" cannot list resource "namespaces" in API group "" at the cluster scope

Version-Release number of selected component (if applicable):
CNV v4.11.0.rhel9-135

How reproducible:
100

Steps to Reproduce:
1. Install CNV v4.11.0.rhel9-135

Additional info:
Attached more logs.

Comment 1 Mor Cohen 2022-03-23 11:44:13 UTC

I see that we didn't get this problem on the following build: v4.11.0.rhel9-141. Will close this if we won't get this issue on another newer build.

Comment 2 Mor Cohen 2022-03-23 11:48:35 UTC

Getting this issue also on v4.11.0.rhel9-143

Comment 3 Mor Cohen 2022-03-24 07:23:20 UTC

This issue came up during installation on the following builds:
CNV v4.11.0.rhel9-145
**CNV v4.11.0.rhel9-149** (latest one)

But not on (which was installed successfully and passed all smoke tests):
CNV v4.11.0.rhel9-144
CNV v4.11.0.rhel9-146
CNV v4.11.0.rhel9-147

Comment 4 Mor Cohen 2022-03-24 07:29:57 UTC

Just adding that we get this issue while installation of CNV.

Comment 12 errata-xmlrpc 2022-09-14 19:29:09 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Important: OpenShift Virtualization 4.11.0 Images security and bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:6526

Note You need to log in before you can comment on or make changes to this bug.