Uploaded image for project: 'Red Hat Advanced Cluster Management'
  1. Red Hat Advanced Cluster Management
  2. ACM-24281

Hypershift binaries are causing FIPS scanner failures

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • MCE 2.11.0
    • MCE 2.10.0
    • HyperShift
    • Important
    • None

       

      Description of problem:

      I have a PR almost ready, but here are the failures I am seeing.

       

      ---- Failure Report
Operator Name,Executable Name,Status
multicluster-engine-hypershift-operator-container,/usr/bin/hcp,go binary is not CGO_ENABLED
multicluster-engine-hypershift-operator-container,/usr/bin/hcp-no-cgo,go binary does not contain required symbol(s)
multicluster-engine-hypershift-operator-container,/usr/bin/hypershift-no-cgo,go binary does not contain required symbol(s)
F0917 18:08:42.532138    4127 main.go:294] Error: run failed
check-payload scan failed for registry.redhat.io/multicluster-engine/hypershift-rhel9-operator@sha256:5461643a61850d95409d989e81c304053372f1dc5dbba291f3f3386de9ecab1c

       

       

      There are multiple steps to fix this.

      1. Deliver PR to check-payload
      2. Get konflux FIPS task to pick up the new check-payload
      3. MCE needs to start using the new task

      For now this will be the main issue to drive the work, but more may be better

      Version-Release number of selected component (if applicable):

      How reproducible:

      Steps to Reproduce:

      1.  
      2.  
      3. ...

      Actual results:

      Expected results:

      Additional info:

              gparvin-redhat Gus Parvin
              gparvin-redhat Gus Parvin
              David Huynh David Huynh
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: