Bug 2273386

Summary: change odf CSV pods to read only root file system
Product: [Red Hat Storage] Red Hat OpenShift Data Foundation Reporter: Nitin Goyal <nigoyal>
Component: odf-operatorAssignee: Nitin Goyal <nigoyal>
Status: CLOSED ERRATA QA Contact: Filip Balák <fbalak>
Severity: high Docs Contact:
Priority: unspecified    
Version: 4.16CC: muagarwa, nberry, odf-bz-bot
Target Milestone: ---   
Target Release: ODF 4.16.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 4.16.0-72 Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2024-07-17 13:17:59 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Nitin Goyal 2024-04-04 15:02:59 UTC 
Description of problem (please be detailed as possible and provide log
snippests):


Change the readOnlyRootFilesystem permissions of the containers related to odf.
Comment 6 Mudit Agarwal 2024-04-09 02:31:09 UTC 
We need clones for 4.15/4.14 as well
Comment 7 Nitin Goyal 2024-04-09 06:59:39 UTC 
https://bugzilla.redhat.com/show_bug.cgi?id=2274098
https://bugzilla.redhat.com/show_bug.cgi?id=2274099
Comment 9 Filip Balák 2024-04-25 12:06:17 UTC 
Containers in ocs-operator and odf-operator-controller-manager pods are updated.

Regression runs didn't find any error directly caused by those changes (except when test case tried to manipulate directly read only filesystem)
tier1:  https://ocs4-jenkins-csb-odf-qe.apps.ocp-c1.prod.psi.redhat.com/job/qe-deploy-ocs-cluster-prod/11508/
tier3:  https://ocs4-jenkins-csb-odf-qe.apps.ocp-c1.prod.psi.redhat.com/job/qe-deploy-ocs-cluster-prod/11488/
tier4a: https://ocs4-jenkins-csb-odf-qe.apps.ocp-c1.prod.psi.redhat.com/job/qe-deploy-ocs-cluster-prod/11506/
tier4b: https://ocs4-jenkins-csb-odf-qe.apps.ocp-c1.prod.psi.redhat.com/job/qe-deploy-ocs-cluster-prod/11515/
tier4c: https://ocs4-jenkins-csb-odf-qe.apps.ocp-c1.prod.psi.redhat.com/job/qe-deploy-ocs-cluster-prod/11499/

Errors were compared to regression run history https://docs.google.com/spreadsheets/d/1akrwspvWglSs905x2JcydJNH08WO6Ptri-hrkZ2VO80/edit#gid=40270420

Tested ODF versions:
4.16.0-84, 4.16.0-81, 4.16.0-78, 4.16.0-72

--> VERIFIED
Comment 10 errata-xmlrpc 2024-07-17 13:17:59 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Important: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement & bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2024:4591