Closed
Description
After migration to Aya we can observe new issue.
How to reproduce it:
- Install lockcd using normal procedure
- Launch some example pods
- Try to connect to pods
- Upgrade helm lockcd release
- After trying to connect to pods we can see following errors:
mjura@gecko:~/git/lockc> kubectl logs -n lockc lockcd-dn7kf -f
2022-02-09T14:08:17.937616Z ERROR lockcd: could not send eBPF command result although the operation was succeessful command="add_proceess
bpftool prog trace
...
runc-30504 [001] d..21 624920.732342: bpf_trace_printk: error: get_policy_level: could not found a container for a registered process
mjura@gecko:~/lockc> kubectl exec -ti myapp-7bb5f9b56b-vqjxc -- bash
error: Internal error occurred: error executing command in container: failed to exec in container: failed to start exec "da94fe7fa19be99a826d1f93776b389112b7925bc13bdd45d97436431cb86db7": OCI runtime exec failed: exec failed: container_linux.go:380: starting container process caused: process_linux.go:99: starting setns process caused: fork/exec /proc/self/exe: operation not permitted: unknown
Metadata
Metadata
Assignees
Labels
No labels