Project

Profile

Help

Send by e-mail

Task #3800

Task #7960: FIPS and support for ALLOWED_CONTENT_CHECKSUMS

Add FIPS to the CI matrix in the plugin_template

Added by daviddavis almost 3 years ago. Updated 3 months ago.

Status:
CLOSED - CURRENTRELEASE
Priority:
Normal
Assignee:
fao89
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

100%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
CI/CD
Sprint:
Quarter:

Description

Background

We want to continuously test pulpcore, its dependencies, and all plugins to ensure all functional tests can run in FIPS enabled environments.

Solution

Have the plugin template add a run to the CI matrix that runs the functional tests in a FIPS enabled environment

TBD:

  • Where will the patched dependencies (either RPMs or Python bits) come from?
clipboard-202102091714-mihtu.png (104 KB) clipboard-202102091714-mihtu.png mdepaulo@redhat.com, 02/09/2021 11:14 PM
250

Related issues

Blocked by Pulp - Task #7884: Move the pulp_installer Vagrant tests off TravisCLOSED - CURRENTRELEASE

<a title="Actions" class="icon-only icon-actions js-contextmenu" href="#">Actions</a>

Associated revisions

Revision 6a0ba096 View on GitHub
Added by Fabricio Aguiar 4 months ago

Adding nightly FIPS tests

https://pulp.plan.io/issues/3800 closes #3800

History

#1 Updated by daviddavis almost 3 years ago

  • Tracker changed from Story to Task

#2 Updated by bmbouter about 2 years ago

  • Tags deleted (Pulp 3)

#3 Updated by daviddavis about 1 year ago

  • Subject changed from Set up a Jenkins FIPS environment to test out Pulp 3 to Set up a CI FIPS environment to test out Pulp 3

#4 Updated by bmbouter about 1 year ago

  • Subject changed from Set up a CI FIPS environment to test out Pulp 3 to Add FIPS to the CI matrix in the plugin_template
  • Description updated (diff)
  • Tags CI/CD added

#5 Updated by daviddavis 8 months ago

  • Parent task deleted (#3778)

#6 Updated by daviddavis 6 months ago

  • Parent task set to #7960

#7 Updated by daviddavis 5 months ago

  • Blocked by Task #7884: Move the pulp_installer Vagrant tests off Travis added

#8 Updated by mdepaulo@redhat.com 4 months ago

250

It is possible to configure GitHub to let you merge while these long running tests complete. (Or if they fail).

Screenshot from pulp_installer.

It is not tracked in Git, but in the repo's Settings page "branches" for protecting the branch. "Require status checks to pass before merging "

#9 Updated by daviddavis 4 months ago

I think the FIPS test will probably run nightly (or on some scheduled basis) against plugins and pulpcore rather than against each PR.

#10 Updated by fao89 4 months ago

  • Status changed from NEW to ASSIGNED
  • Assignee set to fao89

#11 Updated by pulpbot 4 months ago

  • Status changed from ASSIGNED to POST

#12 Updated by Anonymous 4 months ago

  • Status changed from POST to MODIFIED
  • % Done changed from 0 to 100

#13 Updated by daviddavis 4 months ago

  • Status changed from MODIFIED to ASSIGNED

#14 Updated by ipanova@redhat.com 3 months ago

  • Status changed from ASSIGNED to CLOSED - CURRENTRELEASE

Please register to edit this issue

Send by e-mail

Also available in: Atom PDF