action #138428: Test container engines on FIPS mode - Containers - openSUSE Project Management Tool

Actions

Copy link

action #138428

closed

coordination #138728: [Epic] FIPS mode

Test container engines on FIPS mode

Added by jlausuch 8 months ago. Updated 3 months ago.

Status:

Resolved

Priority:

Normal

Assignee:

pherranz

Target version:

Start date:

2023-10-24

Due date:

% Done:

100%

Estimated time:

Tags:

fips

Description

Background¶

In JeOS and SLE Micro/MicroOS, there is a test suite which enables FIPS on the kernel and runs some security related tests (openssl, gnutls, gpg, etc), but we don't run any other test beyond those ones.

Goal¶

Create a new test suite which enables FIPS and runs container hosts tests. We probably don't need to run the full test suite as we do for regular host, but maybe a subset running podman/docker engines.
This could be applicable to openSUSE and SLE, we can maybe target only TW Minimal-VM and SLE 15-SP6 for now. Later on, it can also be extended to SLE Micro, ALP, etc.

This idea came during a BCI call on 24 October 2023 while talking about running BCI tests on FIPS enabled host.

Actions

Copy link

Updated by ph03nix 8 months ago

Subject changed from [idea] to [idea] Test container engines on FIPS mode
Priority changed from Normal to Low

Actions

Copy link

Updated by ph03nix 8 months ago

Parent task set to #138728

Actions

Copy link

Updated by ph03nix 5 months ago

Subject changed from [idea] Test container engines on FIPS mode to Test container engines on FIPS mode
Status changed from New to Workable
Priority changed from Low to Normal

Actions

Copy link

Updated by pherranz 3 months ago

Assignee set to pherranz

Actions

Copy link

Updated by pherranz 3 months ago

I've created this PR to make the changes.

All the VRs are green, nevertheless I've asked the rest of the qe-c team for opinion on running the whole test suites or just an adapted "smoke test" version.

Actions

Copy link