Loading...

XML

Word

Printable

Type: Story
Resolution: Obsolete
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
Serve release image signatures from Cincinnati for disconnected environments (Phase-1)
Feature Link:
OCPSTRAT-479 - OSUS improvements(phase 1)
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

Set the ~~OTA-910~~ configuration for our hosted service to retrieve signatures from the upstream signature stores and serve them via the ~~OTA-909~~ API.

Definition of done:

Bump the commit for the OSUS production to use the code we have from ~~OTA-910~~

Testing steps:

For any OCP release, such as the multi-arch build of 4.13.0:

$ curl -s https://api.openshift.com/api/upgrades_info/signatures/sha256%3D5e8f403a14eed840b01434115300f2e68cd1232aa47f9509433a46341da2f2b8/signature-1 | sha256sum

should return d5b14c0d1dd2fe20dcd2c965e13e5b7fa785934652eec80d5adce5a48e21f5a2 - to match the upstream content.

And requests to signature-2 and similar should 404:

$ curl -is https://mirror.openshift.com/pub/openshift-v4/signatures/openshift/release/sha256%3D5e8f403a14eed840b01434115300f2e68cd1232aa47f9509433a46341da2f2b8/signature-2 | head -n1

blocks

OTA-915 Teach Cincinnati to serve signatures from graph-data tarballs

Closed

is blocked by

OTA-910 Teach Cincinnati to retrieve signatures from upstream sources

Closed

OTA-909 Define an API for Cincinnati serving signatures to the cluster-version operator

Closed

Assignee:: Unassigned

Reporter:: W. Trevor King

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/02/27 7:40 PM

Updated:: 2023/04/19 5:12 PM

Resolved:: 2023/04/19 5:12 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Hide