Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-23176

TemplateInstance doesn't pass security tests

    XMLWordPrintable

Details

    • No
    • False
    • Hide

      None

      Show
      None

    Description

      The following tests are failing in OpenShift 4.11 after updating openshift-apiserver clients to 1.24 (https://github.com/openshift/openshift-apiserver/pull/400):

      [sig-devex][Feature:Templates] templateinstance cross-namespace test should create and delete objects across namespaces [Suite:openshift/conformance/parallel]
[sig-devex][Feature:Templates] templateinstance readiness test  should report failed soon after an annotated objects has failed [Skipped:Disconnected] [Suite:openshift/conformance/parallel]
[sig-devex][Feature:Templates] templateinstance readiness test  should report ready soon after all annotated objects are ready [Skipped:Disconnected] [Suite:openshift/conformance/parallel]
[sig-devex][Feature:Templates] templateinstance security tests  should pass security tests [Suite:openshift/conformance/parallel]

      https://prow.ci.openshift.org/view/gs/origin-ci-test/pr-logs/pull/openshift_openshift-apiserver/400/pull-ci-openshift-openshift-apiserver-release-4.11-e2e-aws/1719006784351375360

      This prevents us from merging HTTP/2 CVE fixes to 4.11.

      This initial issue was fixed during the 1.25 rebase inhttps://github.com/openshift/openshift-controller-manager/pull/242, but since openshift-apiserver wasn't properly updated in 4.11, we didn't caught it before.

      I already backported the library-go change to 4.11 (https://github.com/openshift/library-go/pull/1598), all there is to do now is to include that fix in openshift-controller-manager.

      Attachments

        Issue Links

          clones

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-23175 TemplateInstance doesn't pass security tests

          • Normal - To be worked after urgent and high priorities are resolved. This term is chosen when the severity of an issue is relatively close to the level of effort to fix it. The existence of an easily implemented workaround can also lead to this priority level instead of a higher priority.
          • POST
          is depended on by

          Bug - A problem that impairs or prevents the functions of the product. OCPBUGS-23175 TemplateInstance doesn't pass security tests

          • Normal - To be worked after urgent and high priorities are resolved. This term is chosen when the severity of an issue is relatively close to the level of effort to fix it. The existence of an easily implemented workaround can also lead to this priority level instead of a higher priority.
          • POST
          links to

          Web Link https://github.com/openshift/openshift-controller-manager/pull/242

          Activity

            People

              dgrisonn@redhat.com Damien Grisonnet
              dgrisonn@redhat.com Damien Grisonnet
              Jitendar Singh Jitendar Singh
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: