action #166304
closedReview FIPS host settings
100%
Description
FIPS_ENABLE is set in a couple of jobs, but the host does not configure kernel in order to run in FIPS mode. This seems to be a partial misconfiguration as slem aggregates seem to be configured well.
For instance:
https://openqa.suse.de/tests/15296613#
https://openqa.suse.de/tests/overview?distri=sle&version=15-SP5&build=20240903-1&groupid=417 -> no fips testing at all
We need to review our FIPS hosts in container testing in order to prepare our team for possible involvement in Vendor Affirmation testing
Updated by pherranz 4 months ago
Found a typo in the job group:
https://gitlab.suse.de/qac/qac-openqa-yaml/-/merge_requests/1811
Updated by pherranz 4 months ago
Also added fips tests in the Maint. Updates:
https://gitlab.suse.de/qac/qac-openqa-yaml/-/merge_requests/1812
Updated by pherranz 4 months ago
- % Done changed from 0 to 100
Added FIPS tests in Maint. Updates for all archs, 15-SP4 or greater and both Podman and Docker.
https://gitlab.suse.de/qac/qac-openqa-yaml/-/merge_requests/1814
Updated by pherranz 4 months ago
- Status changed from In Progress to Feedback
Seems like there's a bug in 12-SP5 containers that prevents the tests to pass. Already opened a bug:
https://bugzilla.suse.com/show_bug.cgi?id=1230531
Updated by pherranz 4 months ago
- Status changed from Feedback to Resolved
The issue has been fixed:
http://pherranz-openqa.qe.suse.de/tests/26#