Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-35260

No variable reference for rule ocp4-configure-network-policies-namespaces

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • 4.15.z, 4.16.z
    • Compliance Operator
    • None
    • Low
    • No
    • False
    • Hide

      None

      Show
      None

      Description of problem:

       

      No variable reference for rule ocp4-configure-network-policies-namespaces. Details seen from below:
% oc get rule ocp4-configure-network-policies-namespaces  -o=jsonpath={.metadata.annotations} | jq -r
{
  "compliance.openshift.io/image-digest": "pb-ocp4lft9b",
  "compliance.openshift.io/profiles": "ocp4-stig,ocp4-high,ocp4-cis-1-5,ocp4-moderate,ocp4-pci-dss-3-2,ocp4-cis,ocp4-high-rev-4,ocp4-moderate-rev-4,ocp4-nerc-cip,ocp4-pci-dss,ocp4-stig-v1r1,ocp4-cis-1-4",
  "compliance.openshift.io/rule": "configure-network-policies-namespaces",
  "control.compliance.openshift.io/CIS-OCP": "5.3.2",
  "control.compliance.openshift.io/NERC-CIP": "CIP-003-8 R4;CIP-003-8 R4.2;CIP-003-8 R5;CIP-003-8 R6;CIP-004-6 R2.2.4;CIP-004-6 R3;CIP-007-3 R2;CIP-007-3 R2.1;CIP-007-3 R2.2;CIP-007-3 R2.3;CIP-007-3 R5.1;CIP-007-3 R6.1",
  "control.compliance.openshift.io/NIST-800-53": "AC-4;AC-4(21);CA-3(5);CM-6;CM-6(1);CM-7;CM-7(1);SC-7;SC-7(3);SC-7(5);SC-7(8);SC-7(12);SC-7(13);SC-7(18);SC-7(10);SI-4(22)",
  "control.compliance.openshift.io/PCI-DSS": "Req-1.1.4;Req-1.2;Req-1.2.1;Req-1.3.1;Req-1.3.2;Req-2.2",
  "control.compliance.openshift.io/STIG": "SRG-APP-000038-CTR-000105;CNTR-OS-000100",
  "policies.open-cluster-management.io/controls": "5.3.2,CIP-003-8 R4,CIP-003-8 R4.2,CIP-003-8 R5,CIP-003-8 R6,CIP-004-6 R2.2.4,CIP-004-6 R3,CIP-007-3 R2,CIP-007-3 R2.1,CIP-007-3 R2.2,CIP-007-3 R2.3,CIP-007-3 R5.1,CIP-007-3 R6.1,AC-4,AC-4(21),CA-3(5),CM-6,CM-6(1),CM-7,CM-7(1),SC-7,SC-7(3),SC-7(5),SC-7(8),SC-7(12),SC-7(13),SC-7(18),SC-7(10),SI-4(22),Req-1.1.4,Req-1.2,Req-1.2.1,Req-1.3.1,Req-1.3.2,Req-2.2,SRG-APP-000038-CTR-000105,CNTR-OS-000100",
  "policies.open-cluster-management.io/standards": "CIS-OCP,NERC-CIP,NIST-800-53,PCI-DSS,STIG"
}

      Version-Release number of selected component (if applicable):

      4.16.0-0.nightly-2024-06-07-024651 + compliance-operator.v1.5.0

      How reproducible:

      Always

      Steps to Reproduce:

      1. Install compliance-operator.v1.5.0
2. Try to get annotations for rule ocp4-configure-network-policies-namespaces:
% oc get rule ocp4-configure-network-policies-namespaces  -o=jsonpath={.metadata.annotations} | jq -r
3.

      Actual results:

      Seen from the description

      Expected results:

      The variable info should be available in the rule ocp4-configure-network-policies-namespaces’s annotation.

      Additional info:

       

            lbragsta@redhat.com Lance Bragstad
            xiyuan@redhat.com Xiaojie Yuan
            Xiaojie Yuan Xiaojie Yuan
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: