Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Normal
Fix Version/s: OADP 1.5.1
Affects Version/s: OADP 1.5.0
Component/s: dpa
Labels:

Activity Type:
Quality / Stability / Reliability
Story Points:
3
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Fixed in Build:
oadp-operator-bundle-container-1.5.1-32
QEStatus:
ToDo
Intelligence Requested:
Market:

Risk Probability:
Very Likely
Risk Score:
0

Workstream:

None

Root Cause:
Unset
Failure Category:
Unknown

Regression:
None

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Description of problem:

Currently dpt CR doesn't have ability to skip or add caCert in spec field.

oc get dpt -o yaml
apiVersion: v1
items:
- apiVersion: oadp.openshift.io/v1alpha1
  kind: DataProtectionTest
  metadata:
    creationTimestamp: "2025-06-03T13:29:38Z"
    generation: 1
    name: dpt-sample
    namespace: openshift-adp
    resourceVersion: "111448632"
    uid: e900bf7c-01b4-41a6-874e-493f94c12b35
  spec:
    backupLocationName: ts-dpa-1
    csiVolumeSnapshotTestConfigs:
    - snapshotClassName: ocs-storagecluster-rbdplugin-snapclass
      timeout: 90s
      volumeSnapshotSource:
        persistentVolumeClaimName: mysql-data
        persistentVolumeClaimNamespace: ocp-mysql
    - snapshotClassName: ocs-storagecluster-rbdplugin-snapclass
      timeout: 120s
      volumeSnapshotSource:
        persistentVolumeClaimName: mysql-data1
        persistentVolumeClaimNamespace: ocp-mysql
    forceRun: false
    uploadSpeedTestConfig:
      fileSize: 200MB
      timeout: 120s
  status:
    bucketMetadata:
      errorMessage: |-
        RequestError: send request failed
        caused by: Get "https://s3-openshift-storage.apps.mig-lrtpreserve.rhos-psi.cnv-qe.rhood.us/miglrtpreserved49ww?versioning=": tls: failed to verify certificate: x509: certificate signed by unknown authority
    lastTested: "2025-06-03T13:29:38Z"
    phase: Complete
    snapshotSummary: 2/2 passed
    snapshotTests:
    - persistentVolumeClaimName: mysql-data1
      persistentVolumeClaimNamespace: ocp-mysql
      readyDuration: 4s
      status: Ready
    - persistentVolumeClaimName: mysql-data
      persistentVolumeClaimNamespace: ocp-mysql
      readyDuration: 4s
      status: Ready
    uploadTest:
      duration: 1.245s
      errorMessage: |-
        upload failed: RequestError: send request failed
        caused by: Put "https://s3-openshift-storage.apps.mig-lrtpreserve.rhos-psi.cnv-qe.rhood.us/miglrtpreserved49ww/dpt-upload-test-1748957378440742477": tls: failed to verify certificate: x509: certificate signed by unknown authority

Version-Release number of selected component (if applicable):

OADP 1.5.0

How reproducible:
Always

Steps to Reproduce:
1. Create a dpa CR with s3url configured with https
2. Create DPT CR

cat dpt-fs.yaml 
apiVersion: oadp.openshift.io/v1alpha1
kind: DataProtectionTest
metadata:
  name: dpt-sample
  namespace: openshift-adp
spec:
  backupLocationName: ts-dpa-1
  uploadSpeedTestConfig:
    fileSize: 200MB
    timeout: 120s

Actual results:

DPT fails when s3Url is secured.

Expected results:

DPT should not fail with error

Additional info:

links to

openshift/oadp-operator#1862: OADP-6235: Add CaCert support for DPT

openshift/oadp-operator#1919: [oadp-1.5] OADP-6235: Add CaCert support for DPT

RHBA-2025:150824 OpenShift API for Data Protection (OADP) 1.5.1 security and bug fix update

(QE) Verify for ( Add CaCert suppport for DataProtectionTest )

Closed

Prasad Joshi

Assignee:: Shubham Pampattiwar

Reporter:: Prasad Joshi

QA Contact:: Prasad Joshi

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2025/06/04 9:13 AM

Updated:: 2025/09/23 1:32 AM

Resolved:: 2025/09/23 1:32 AM

Details

Description

Description of problem:

OADP 1.5.0

Actual results:

Attachments

Issue Links

Easy Agile Planning Poker

Sub-Tasks

Activity

People

Dates