Merge pull request #139 from jianzhangbjz/bug-62872

[release-4.18] OCPBUGS-62872: set the SElinux type

Author: openshift-merge-bot[bot]

config/base/manager/manager.yaml

@@ -47,6 +47,8 @@ spec:
                     - linux
       securityContext:
         runAsNonRoot: true
+        seLinuxOptions:
+          type: spc_t
         seccompProfile:
           type: RuntimeDefault
       containers:

openshift/kustomize/overlays/openshift/olmv1-ns/patches/manager_deployment_certs.yaml

@@ -19,3 +19,6 @@
 - op: add
   path: /spec/template/spec/containers/1/env
   value: [{"name":"SSL_CERT_DIR", "value":"/var/ca-certs"}]
+- op: add
+  path: /spec/template/spec/securityContext/seLinuxOptions
+  value: {"type":"spc_t"}

openshift/manifests/14-deployment-openshift-catalogd-catalogd-controller-manager.yml

@@ -119,6 +119,8 @@ spec:
         node-role.kubernetes.io/master: ""
       securityContext:
         runAsNonRoot: true
+        seLinuxOptions:
+          type: spc_t
         seccompProfile:
           type: RuntimeDefault
       serviceAccountName: catalogd-controller-manager