-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
None
-
None
-
Quality / Stability / Reliability
-
False
-
-
False
-
-
-
Low
Description of problem:
Fips check - node scan failed with warning for 4.19 nightly payload:
---- Warning Report +----------+------------------+---------------------------------------------------------------+ | RPM NAME | EXECUTABLE NAME | STATUS | +----------+------------------+---------------------------------------------------------------+ | toolbox | /usr/bin/toolbox | go binary does not contain required tag(s): strictfipsruntime | +----------+------------------+---------------------------------------------------------------+
Version-Release number of selected component (if applicable):
4.19.0-0.nightly-2025-01-19-132507 + registry.ci.openshift.org/ci/check-payload:latest
How reproducible:
Always
Steps to Reproduce:
1.Run below script against the cluster installed with above payload: https://github.com/openshift/release/blob/master/ci-operator/step-registry/fips-check/node-scan/fips-check-node-scan-commands.sh
Or you can also run below command on the node:
$ podman run --privileged -ti -v /:/myroot registry.ci.openshift.org/ci/check-payload:latest scan node --root /myroot
Actual results:
Fips check - node scan failed with warning for 4.19 nightly payload:
---- Warning Report +----------+------------------+---------------------------------------------------------------+ | RPM NAME | EXECUTABLE NAME | STATUS | +----------+------------------+---------------------------------------------------------------+ | toolbox | /usr/bin/toolbox | go binary does not contain required tag(s): strictfipsruntime | +----------+------------------+---------------------------------------------------------------+
Expected results:
Fips check - node scan should succeeded without errors and warnings
Additional info:
