Bug 2036951

Summary: [cluster-csi-snapshot-controller-operator] proxy settings is being injected in container
Product: OpenShift Container Platform Reporter: Fabio Bertinatto <fbertina>
Component: StorageAssignee: aos-storage-staff <aos-storage-staff>
Storage sub component: Operators QA Contact: Wei Duan <wduan>
Status: CLOSED ERRATA Docs Contact:
Severity: medium    
Priority: medium CC: aos-bugs
Version: 4.10   
Target Milestone: ---   
Target Release: 4.10.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-03-12 04:40:12 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Fabio Bertinatto 2022-01-04 13:54:22 UTC 
There's no need to inject the proxy settings into the operator container because it doesn't access any external APIs/endpoints.
Comment 3 Wei Duan 2022-01-11 13:08:15 UTC 
Verified pass with 
1. Install cluster with proxy:
$ oc get proxy cluster -o json | jq .spec
{
  "httpProxy": "http://proxy-user1:JYgU8qRZV4DY4PXJbxJK@10.0.99.4:3128",
  "httpsProxy": "http://proxy-user1:JYgU8qRZV4DY4PXJbxJK@10.0.99.4:3128",
  "noProxy": "test.no-proxy.com",
  "trustedCA": {
    "name": ""
  }
}

2. Proxy did not inject into snapshot pod 
$ oc -n openshift-cluster-storage-operator describe pod csi-snapshot-controller-operator-5c4db47864-p2cph | grep -i proxy
$ oc -n openshift-cluster-storage-operator describe pod csi-snapshot-controller-757544df4d-wvgrn | grep -i proxy
$ 

3. Test snapshot test cases passed
$ oc get pod,pvc
NAME                  READY   STATUS    RESTARTS   AGE
pod/mypod-ori         1/1     Running   0          31m
pod/mypod-restore-1   1/1     Running   0          15m

NAME                                  STATUS   VOLUME                                     CAPACITY   ACCESS MODES   STORAGECLASS   AGE
persistentvolumeclaim/pvc-ori         Bound    pvc-8b713809-a971-4c8f-92bf-170a329cc4e5   2Gi        RWO            managed-csi    31m
persistentvolumeclaim/pvc-restore-1   Bound    pvc-4a5bd754-d33f-4730-b041-05748ab32e2f   2Gi        RWO            managed-csi    15m

$ oc get volumesnapshot
NAME         READYTOUSE   SOURCEPVC   SOURCESNAPSHOTCONTENT   RESTORESIZE   SNAPSHOTCLASS       SNAPSHOTCONTENT                                    CREATIONTIME   AGE
mysnapshot   true         pvc-ori                             2Gi           csi-azuredisk-vsc   snapcontent-0356c110-cb65-426f-8283-e447b9e4e7d4   17m            17m

Marked it as Verified.
Comment 6 errata-xmlrpc 2022-03-12 04:40:12 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.10.3 security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:0056