Bug 2109983

Summary: cluster-version operator should clear (pod) securityContext when the manifest does not set the property
Product: OpenShift Container Platform Reporter: Lalatendu Mohanty <lmohanty>
Component: Cluster Version OperatorAssignee: Jack Ottofaro <jack.ottofaro>
Status: CLOSED DEFERRED QA Contact: Yang Yang <yanyang>
Severity: high Docs Contact:
Priority: high    
Version: 4.12CC: aos-team-ota, wking, yanyang
Target Milestone: ---   
Target Release: 4.11.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-07-25 20:09:27 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2108858    
Bug Blocks:    

Comment 3 W. Trevor King 2022-07-25 04:59:51 UTC 
I'm setting a severity so the bot will not clear Target Release.  And then restoring Target Release and blocker+ as Lala had them before the bots started clearing things.
Comment 4 Ben Parees 2022-07-25 13:59:05 UTC 
This bug will probably end up being closed as we are probably not going to make CVO changes in 4.11.

The CVO behavior should still be fixed in 4.12 using https://bugzilla.redhat.com/show_bug.cgi?id=2108858

For 4.11, we'll revert the MAO behavior using:
https://bugzilla.redhat.com/show_bug.cgi?id=2110501 (revert behavior in 4.12)
https://bugzilla.redhat.com/show_bug.cgi?id=2110505 (revert behavior in 4.11)
Comment 5 Lalatendu Mohanty 2022-07-25 20:09:12 UTC 
Agree. At this point we do not need the CVO changes in 4.11 and not sure if we ever need it in 4.11.