Skip to content

Commit

Permalink
Update assertions for ingress controller TLS check
Browse files Browse the repository at this point in the history 
We recently incorporated a new rule into the CIS profile that checks
ingress controller TLS configs:

  #12220

We added it to the CIS profile, but didn't update the assertions in the
moderate or high profiles, which is causing periodic CI to fail. This
commit adds the assertion to the moderate and high test files so we're
checking it in subsequent CI runs.
  • Loading branch information
@rhmdnd
rhmdnd committed Sep 3, 2024
1 parent 8df17e5 commit 5f2fca1
Show file tree
Hide file tree
Showing 11 changed files with 33 additions and 0 deletions.
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-cis-4.17.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -293,3 +293,6 @@ rule_results:
e2e-cis-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-cis-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-high-4.13.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -376,3 +376,6 @@ rule_results:
default_result: MANUAL
e2e-high-secrets-no-environment-variables:
default_result: MANUAL
e2e-high-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-high-4.14.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -376,3 +376,6 @@ rule_results:
default_result: MANUAL
e2e-high-secrets-no-environment-variables:
default_result: MANUAL
e2e-high-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-high-4.15.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -403,3 +403,6 @@ rule_results:
e2e-high-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-high-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-high-4.16.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -403,3 +403,6 @@ rule_results:
e2e-high-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-high-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-high-4.17.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -404,3 +404,6 @@ rule_results:
e2e-high-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-high-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-moderate-4.13.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -394,3 +394,6 @@ rule_results:
e2e-moderate-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-moderate-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-moderate-4.14.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -394,3 +394,6 @@ rule_results:
e2e-moderate-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-moderate-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-moderate-4.15.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -368,3 +368,6 @@ rule_results:
default_result: MANUAL
e2e-moderate-secrets-no-environment-variables:
default_result: MANUAL
e2e-moderate-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-moderate-4.16.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -394,3 +394,6 @@ rule_results:
e2e-moderate-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-moderate-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS
3 changes: 3 additions & 0 deletions tests/assertions/ocp4/ocp4-moderate-4.17.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -395,3 +395,6 @@ rule_results:
e2e-moderate-secrets-no-environment-variables:
default_result: MANUAL
result_after_remediation: MANUAL
e2e-moderate-kubelet-configure-tls-cipher-suites-ingresscontroller:
default_result: FAIL
result_after_remediation: PASS

0 comments on commit 5f2fca1

Please sign in to comment.