Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: compliance-operator-1.4.1
Affects Version/s: compliance-operator-1.4.0
Component/s: Compliance Operator
Labels:
- cee.neXT

Blocked:
False
Blocked Reason:
None
Ready:
False
Intelligence Requested:
Market:

Severity:
Moderate

SFDC Cases Links:
SFDC Cases Counter:

PX Priority Data:
PX Impact Score:
PX Impact Range:
PX Review Complete:
PX Technical Impact:

ISSUE: ocp4-cis-api-server-api-priority-gate-enabled rule is failing even if APIPriorityAndFairness enabled.
Description:
As per the first rule "ocp4-cis-api-server-api-priority-gate-enabled " it will check "APIPriorityAndFairness=true" value in kube-apiserver CR.

oc get kubeapiservers.operator.openshift.io cluster -o json | jq '.spec.observedConfig.apiServerArguments["feature-gates"]'
As this parameter enabled in code itself and its only reflected in logs and metrics.

Ideally we need to modify the rule to check this parameter in metrics.

kubernetes_feature_enabled

{name="APIPriorityAndFairness"}

links to

fix

ocp4-cis-api-server-api-priority-gate-enabled rule is failing even if APIPriorityAndFairness enabled.

RHBA-2024:1830 OpenShift Compliance Operator bug fix and enhancement update

Assignee:: Vincent Shen

Reporter:: Asmita Gawand

Votes:: 0 Vote for this issue

Watchers:: 11 Start watching this issue

Created:: 2023/12/12 3:05 AM

Updated:: 2024/05/11 7:33 AM

Resolved:: 2024/05/10 8:10 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates