fix(system-upgrades): Fix path confusion for selinux module

Since the secrets path is only available inside the container, but the systemd-run command is executed outside the container, it can't access the secret path, therefore the file needs to be copied.

fix(system-upgrades): Fix path confusion for selinux module
5f19288d · Sheogorath · 294f1a22 · 5f19288d
Verified Commit 5f19288d authored 2 years ago by Sheogorath
--- a/clusters/k8s01/system-upgrades/iscsid_hotfix.yaml
+++ b/clusters/k8s01/system-upgrades/iscsid_hotfix.yaml
@@ -24,8 +24,9 @@ stringData:
    secrets="$(dirname $0)"
    semodule_dir="$(mktemp -d)"
+    cp "${secrets}/iscsid_hotfix.te" "${semodule_dir}/iscsid_hotfix.te"
    systemd-run --same-dir --wait --collect --service-type=exec dnf install -y selinux-policy-devel
-    systemd-run --same-dir --wait --collect --service-type=exec checkmodule -M -m -o "${semodule_dir}/iscsid_hotfix.mod" "$secrets/iscsid_hotfix.te"
+    systemd-run --same-dir --wait --collect --service-type=exec checkmodule -M -m -o "${semodule_dir}/iscsid_hotfix.mod" "${semodule_dir}/iscsid_hotfix.te"
    systemd-run --same-dir --wait --collect --service-type=exec semodule_package -o "${semodule_dir}/iscsid_hotfix.pp" "${semodule_dir}/iscsid_hotfix.mod"
    systemd-run --same-dir --wait --collect --service-type=exec semodule -i "${semodule_dir}/iscsid_hotfix.pp"