Loading...

XML

Word

Printable

Details

Type: Task
Resolution: Done
Priority: Normal
Fix Version/s: OADP 1.1.2
Affects Version/s: None
Component/s: operator
Labels:

Blocked:
False
Ready:
False
Epic Link:
nice to have for oadp-1.2
Fixed in Build:
oadp-operator-container-1.1.2-6 , oadp-operator-bundle-container-1.1.2-8
QEStatus:
ToDo

Cost of Delay:
0
WSJF:
0
Risk Score:
0

Root Cause:
Untriaged

SFDC Cases Links:
SFDC Cases Counter:

Description

velero-privileged SCC is causing the CIS benchmark to fail #576

https://github.com/openshift/oadp-operator/blob/816cb838faa1983d8a34c09492561a6999ab0ddb/controllers/velero.go#L327
https://github.com/openshift/oadp-operator/issues/576
https://coreos.slack.com/archives/CHD1CSNAK/p1646060396759409

Verification: OADP Operator no longer creates SecurityContextConstaints object named "velero-privileged" when DPA is created.

Attachments

Issue Links

blocks

OADP-291 CIS benchmark test is failing

Closed

is cloned by

OADP-1313 Remove creation/usage of velero-privileged SCC

Closed

links to

openshift/oadp-operator#576: OADP-290 Bug: The `velero-privileged` SCC is causing the CIS benchmark to fail

openshift/oadp-operator#860: Remove creation/usage of velero-privileged SCC (OADP-290)

openshift/oadp-operator#877: [oadp-1.1] Remove creation/usage of velero-privileged SCC (OADP-290)

Sub-Tasks

1.	[RedHat QE] Verify Task OADP-290 - Remove creation/usage of velero-privileged SCC		Release Pending		Prasad Joshi
2.	[IBM QE-P] Verify Task OADP-290 - Remove creation/usage of velero-privileged SCC		Release Pending		Sonia Garudi
3.	[IBM QE-Z] Verify Task OADP-290 - Remove creation/usage of velero-privileged SCC		Release Pending		Maya Anilson

Activity

People

Assignee:: Hiteshwari Patel

Reporter:: Tiger Kaovilai

Votes:: 0 Vote for this issue

Watchers:: 10 Start watching this issue

Dates

Created:: 2022/02/24 4:28 PM

Updated:: 2024/04/01 1:26 PM

Resolved:: 2023/02/06 2:36 PM