1963963 – hco.kubevirt.io:config-reader role and rolebinding are not strictly reconciled

Bug 1963963 - hco.kubevirt.io:config-reader role and rolebinding are not strictly reconciled

Summary: hco.kubevirt.io:config-reader role and rolebinding are not strictly reconciled

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Container Native Virtualization (CNV)
Classification:	Red Hat
Component:	Installation
Sub Component:
Version:	4.8.0
Hardware:	All
OS:	All
Priority:	low
Severity:	low
Target Milestone:	---
Target Release:	4.9.0
Assignee:	Erkan Erol
QA Contact:	Debarati Basu-Nag
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2021-05-24 13:47 UTC by Erkan Erol
Modified:	2021-11-02 16:00 UTC (History)
CC List:	4 users (show)
Fixed In Version:	hyperconverged-cluster-operator-container-v4.9.0-53
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2021-11-02 15:58:50 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	kubevirt hyperconverged-cluster-operator pull 1441	0	None	open	Move rbacs for config reader to a separate handler	2021-07-14 12:54:26 UTC
Red Hat Product Errata	RHSA-2021:4104	0	None	None	None	2021-11-02 16:00:47 UTC

Description Erkan Erol 2021-05-24 13:47:28 UTC

Description of problem:

role/hco.kubevirt.io:config-reader and rolebinding/hco.kubevirt.io:config-reader  are created by hco-operator. However, these objects are not strictly reconciled.


Version-Release number of selected component (if applicable): 4.8



Steps to Reproduce:
1. Install OpenShift Virtualization
2. Edit the role/rolebinding above (e.g. adding a new label)

Actual results: hco-operator doesn't overwrite the change immediately. 


Expected results: hco-operator must revert the user's changes immediately. 


Additional info:

Comment 1 Simone Tiraboschi 2021-05-26 12:23:59 UTC

Targeting to 4.9 due to low priority and low severity.

Comment 2 Erkan Erol 2021-09-03 08:43:52 UTC

The fix is available in 4.9 and master branches now.

Comment 7 errata-xmlrpc 2021-11-02 15:58:50 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Virtualization 4.9.0 Images security and bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2021:4104

Note You need to log in before you can comment on or make changes to this bug.