[OCPBUGS-45127] VPA Operator failing FIPS check due to kube-rbac-proxy image - Red Hat Issue Tracker

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: None
Affects Version/s: 4.18.0, 4.19.0
Component/s: Pod Autoscaler
Labels:
None

Severity:
Critical
Regression:
Yes
Story Points:
3
Sprint:
PODAUTO - Sprint 263
sprint_count:
1
Release Blocker:
Proposed
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Release Note Type:
Release Note Not Required
Release Note Status:
In Progress
Target Version:

4.19.0
Target Backport Versions:

4.18.0

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Description of problem:

In 4.18 we introduced kube-rbac-proxy into the VPA. We used the upstream image which is not FIPS compliant.

Version-Release number of selected component (if applicable):

4.18

How reproducible:

100%

Steps to Reproduce:

    1. Look at https://github.com/openshift/vertical-pod-autoscaler-operator/blob/release-4.18/bundle/manifests/vertical-pod-autoscaler.clusterserviceversion.yaml#L653
    2.
    3.

Actual results:

gcr.io/kubebuilder/kube-rbac-proxy:v0.15.0

Expected results:

registry.redhat.io/openshift4/ose-kube-rbac-proxy-rhel9:v4.18

Additional info:

blocks

OCPBUGS-45856 [release-4.18] VPA Operator failing FIPS check due to kube-rbac-proxy image

Closed

is cloned by

OCPBUGS-45856 [release-4.18] VPA Operator failing FIPS check due to kube-rbac-proxy image

Closed

links to

openshift/vertical-pod-autoscaler-operator#186: OCPBUGS-45127: Upgrade to operator-sdk 1.38 to get rid of kube-rbac-proxy image

Assignee:: Joel Smith

Reporter:: Joel Smith

QA Contact:: Aditi Sahay

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2024/11/27 4:49 PM

Updated:: 2024/12/10 7:09 PM

Resolved:: 2024/12/10 7:09 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

Hide