Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: 4.19.0
Component/s: Security Profiles Operator
Labels:
- TestBlockerForLayeredProduct

Severity:
Critical
Regression:
None
Release Blocker:
Rejected
Blocked:
True
Blocked Reason:

Hide

spod pods failed to start

Show
spod pods failed to start

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Impact Score:

Description of problem:

The spod pods failed to start due to “error parsing semanage configuration file”
% oc get pod
NAME                                                  READY   STATUS                  RESTARTS        AGE
security-profiles-operator-cf67f7fdb-grwqs            1/1     Running                 0               5m21s
security-profiles-operator-cf67f7fdb-j59pk            1/1     Running                 0               5m21s
security-profiles-operator-cf67f7fdb-lp7bc            1/1     Running                 0               5m21s
security-profiles-operator-webhook-5c6bb6948c-ksrfn   1/1     Running                 0               5m17s
security-profiles-operator-webhook-5c6bb6948c-nsvxq   1/1     Running                 0               5m17s
security-profiles-operator-webhook-5c6bb6948c-zz45c   1/1     Running                 0               5m17s
spod-2c4h9                                            0/3     Init:CrashLoopBackOff   5 (2m4s ago)    5m17s
spod-2xcmw                                            0/3     Init:CrashLoopBackOff   5 (2m7s ago)    5m17s
spod-7dzt8                                            0/3     Init:CrashLoopBackOff   5 (2m19s ago)   5m17s
spod-cwwx9                                            0/3     Init:CrashLoopBackOff   5 (2m10s ago)   5m17s
spod-f49s7                                            0/3     Init:CrashLoopBackOff   5 (2m25s ago)   5m17s
spod-vsm4q                                            0/3     Init:CrashLoopBackOff   5 (2m3s ago)    5m17s
% oc logs pod/spod-2xcmw  --all-containers
…
+ semodule -i /usr/share/selinuxd/templates/base_container.cil /usr/share/selinuxd/templates/config_container.cil /usr/share/selinuxd/templates/home_container.cil /usr/share/selinuxd/templates/log_container.cil /usr/share/selinuxd/templates/net_container.cil /usr/share/selinuxd/templates/tmp_container.cil /usr/share/selinuxd/templates/tty_container.cil /usr/share/selinuxd/templates/virt_container.cil /usr/share/selinuxd/templates/x_container.cil
error parsing semanage configuration file: syntax error
semodule:  Could not create semanage handle
+ semodule -i /opt/spo-profiles/selinuxd.cil
error parsing semanage configuration file: syntax error
semodule:  Could not create semanage handle
+ semodule -i /opt/spo-profiles/selinuxrecording.cil
error parsing semanage configuration file: syntax error
semodule:  Could not create semanage handle
Error from server (BadRequest): container "security-profiles-operator" in pod "spod-2xcmw" is waiting to start: PodInitializing

Version-Release number of selected component (if applicable):

4.19.0-0.nightly-2025-05-06-051838 + security-profiles-operator.v0.8.6

How reproducible:

Always

Steps to Reproduce:

    1. Install Security Profiles Operator with a latest 4.19 payload

Actual results:

  The spod pods failed to start due to “error parsing semanage configuration file”.

Expected results:

 The spod pods should be in running status

Additional info:

links to

Fixes for RHEL 9 image parsing and docker to deploy and test on OpenShift

Assignee:: Unassigned

Reporter:: Xiaojie Yuan

QA Contact:: Xiaojie Yuan

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2025/05/07 11:04 AM

Updated:: 2025/06/12 5:37 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates