Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1762299

Summary: [DOCS] Update snapshot-controller deployment config pod spec to include hostNetwork: true
Product: OpenShift Container Platform Reporter: Daniel Del Ciancio <ddelcian>
Component: DocumentationAssignee: Bob Furu <bfuru>
Status: CLOSED DUPLICATE QA Contact: Liang Xia <lxia>
Severity: medium Docs Contact: Vikram Goyal <vigoyal>
Priority: low    
Version: 4.2.0CC: aos-bugs, bfuru, jokerman, lxia, vigoyal
Target Milestone: ---Flags: bfuru: needinfo-
Target Release: 4.2.z   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1760123 Environment:
Last Closed: 2019-10-30 15:46:29 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1760123    
Bug Blocks:    

Description Daniel Del Ciancio 2019-10-16 13:07:10 UTC 
+++ This bug was initially created as a clone of Bug #1760123 +++

Document URL: 

https://docs.openshift.com/container-platform/4.2/storage/persistent-storage/persistent-storage-snapshots.html#aws-authentication


Section Number and Name: 

AWS AUTHENTICATION - snapshot-controller deployment configuration


Describe the issue: 

Refer to BZ for details:  https://bugzilla.redhat.com/show_bug.cgi?id=1718389

The pod spec section in the snapshot-controller deployment configuration should include "hostNetwork: true"


Suggestions for improvement: 

Additional information:

--- Additional comment from Daniel Del Ciancio on 2019-10-10 05:08:17 UTC ---

The following section:

https://docs.openshift.com/container-platform/4.2/storage/persistent-storage/persistent-storage-snapshots.html#snapshots-starting-controller-provisioner_persistent-storage-snapshots


should be modified to include this command after creating the serviceaccount : 

# oc adm policy add-scc-to-user hostnetwork -z snapshot-controller-runner


Since the pod runs using snapshot-controller-runner serviceaccount, it requires the hostnetwork scc assigned it.

--- Additional comment from Daniel Del Ciancio on 2019-10-10 15:12:46 UTC ---

Also, the "AWS authentication" section [https://docs.openshift.com/container-platform/4.2/storage/persistent-storage/persistent-storage-snapshots.html#aws-authentication], it should state something like "when generating the base64 values required for the awskeys secret, make sure to remove any trailing newline character as follows:

echo -n "<aws_access_key_id>" | base64
echo -n "<aws_secret_access_key>" | base64


Can we be sure to have the documentation reflect this as well?


Thanks!

--- Additional comment from Daniel Del Ciancio on 2019-10-15 12:55:40 UTC ---

The restore section in [1] should also reflect the following changes:


# When using AWS EBS storage with gp2 encryption configured, you need to explicitly set the parameters below:

kind: StorageClass
apiVersion: storage.k8s.io/v1
metadata:
  name: snapshot-promoter
provisioner: volumesnapshot.external-storage.k8s.io/snapshot-promoter
parameters:
  encrypted: "true"
  type: gp2



# The restore snapshot should specify the accessModes and resources attributes:

apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: snapshot-pv-provisioning-demo
  annotations:
    snapshot.alpha.kubernetes.io/snapshot: snapshot-demo
spec:
  storageClassName: snapshot-promoter
  accessModes:
  - ReadWriteOnce
  resources:
    requests:
      storage: 1Gi



Lastly, the 4.2 doc states that this feature will be deprecated and there is a note also stating that it is tech preview.  Can we clarify what we would expect to replace this? 



-----

[1] https://docs.openshift.com/container-platform/4.2/storage/persistent-storage/persistent-storage-snapshots.html#persistent-storage-snapshots-restore_persistent-storage-snapshots
Comment 1 Bob Furu 2019-10-25 16:36:58 UTC 
Daniel - in reviewing this, which is a clone of BZ 1760123, I don't see any change in details except that this should also be applied to 4.2. Can you please review my comments in that BZ, as well as the updated content in PR 17438 (https://github.com/openshift/openshift-docs/pull/17438), and let me know if it looks good to you?

If approved, I will close both bugs and merge, CP to 4.1 and 4.2 only. Thanks.
Comment 2 Bob Furu 2019-10-30 15:46:29 UTC 
Closing this as it is a clone of 1760123, which has been resolved in PR 17438 (https://github.com/openshift/openshift-docs/pull/17438).

*** This bug has been marked as a duplicate of bug 1760123 ***