What is Super Privileged Container SELinux Type used in Red Hat OpenShift Container Platform?

Solution Unverified - Updated -

Issue

  • It is observed that in Red Hat OpenShift Container Platform, the master processes require root to run the master api along with the same run with selinux context system_u:system_r:spc_t:s0.
system_u:system_r:spc_t:s0      root      11836  8.0  5.8 1657280 945772 ?      Ssl  Nov06 141:16 openshift start master api --config=/etc/origin/master/master-config.yaml --loglevel=4
system_u:system_r:spc_t:s0      root      11838  3.7  2.0 1084844 334276 ?      Ssl  Nov06  65:55 openshift start master controllers --config=/etc/origin/master/master-config.yaml --listen=https://0.0.0.0:8444 --loglevel=4
  • Would like to know more about spc_t SELinux Context Type.

Environment

  • Red Hat OpenShift Container Platform 3.11
  • SELinux

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content