Bug 2059248

Summary: Change default fsgroupchange policy for CephFS driver from NONE to OnRootMismatch
Product: [Red Hat Storage] Red Hat OpenShift Data Foundation Reporter: Humble Chirammal <hchiramm>
Component: rookAssignee: Humble Chirammal <hchiramm>
Status: CLOSED CURRENTRELEASE QA Contact: Rachael <rgeorge>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 4.10CC: ebenahar, kramdoss, madam, muagarwa, ocs-bugs, odf-bz-bot, rgeorge, tnielsen
Target Milestone: ---Flags: kramdoss: needinfo+
Target Release: ODF 4.10.0   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: 4.10.0-175 Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-04-21 09:12:50 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Humble Chirammal 2022-02-28 15:10:42 UTC 
Description of problem (please be detailed as possible and provide log
snippests):

CSI cephfs driver now  leave the validation of volume permission mode  and adjustment to CO/kubelet based on the FSGroup Change policy in place (ref#https://bugzilla.redhat.com/show_bug.cgi?id=2053156). At present the fsgroup change policy default to NONE for CephFS driver in ODF release which has to be changed to general default value ( CO and RBD driver ) ie `onRootMismatch` 
 



Version of all relevant components (if applicable):

ODF 4.10

Steps to Reproduce:

Having regression check would be enough to validate this change.

Actual results:


Expected results:


Additional info:
Comment 2 Humble Chirammal 2022-03-01 04:44:46 UTC 
Karthick, this is the counterpart change of Ceph CSI which we covered in referenced bug, can you provide QE ack on this?
Comment 5 Humble Chirammal 2022-03-07 07:50:01 UTC 
It looks like even in release 4.9, the default was not changed to NONE and been kept as "onrootmismatch", if thats the case, no extra verification required on this from this bugzilla report pov.
Comment 6 Humble Chirammal 2022-03-07 07:52:10 UTC 
Verified from ODF 4.9 and 4.10 cluster too. Thanks Rachel++

```
2022-03-07 04:40:15.536845 I | op-k8sutil: CSI_RBD_FSGROUPPOLICY="ReadWriteOnceWithFSType" (default)
2022-03-07 04:40:15.547915 I | ceph-csi: CSIDriver object created for driver "openshift-storage.rbd.csi.ceph.com"
2022-03-07 04:40:15.936942 I | op-k8sutil: CSI_CEPHFS_FSGROUPPOLICY="ReadWriteOnceWithFSType" (default)
2022-03-07 04:40:15.950369 I | ceph-csi: CSIDriver object created for driver "openshift-storage.cephfs.csi.ceph.com"
```

```
$ oc get csidriver openshift-storage.cephfs.csi.ceph.com -o yaml
apiVersion: storage.k8s.io/v1
kind: CSIDriver
metadata:
  creationTimestamp: "2022-03-07T04:40:15Z"
  name: openshift-storage.cephfs.csi.ceph.com
  resourceVersion: "39803"
  uid: 2134a1cb-08d8-4721-b2e0-10efe36f3a85
spec:
  attachRequired: true
  fsGroupPolicy: ReadWriteOnceWithFSType
  podInfoOnMount: false
  requiresRepublish: false
  storageCapacity: false
  volumeLifecycleModes:
  - Persistent

```