Bug 1459555
Summary: | [RFE] Allow to specify Location of OpenScap file and Image-Inspector for all OpenShift providers | ||
---|---|---|---|
Product: | Red Hat CloudForms Management Engine | Reporter: | Loic Avenel <lavenel> |
Component: | Providers | Assignee: | Erez Freiberger <efreiber> |
Status: | CLOSED ERRATA | QA Contact: | brahmani |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 5.8.0 | CC: | efreiber, fsimonce, gblomqui, jfrey, jhardy, obarenbo, simaishi |
Target Milestone: | GA | Keywords: | FutureFeature, RFE |
Target Release: | 5.9.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | 5.9.0.1 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2018-03-01 13:12:59 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | Container Management | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1462835 | ||
Bug Blocks: |
Description
Loic Avenel
2017-06-07 12:47:30 UTC
This requires the per-provider instance advanced settings. Erez, this is already possible through the advanced settings (settings yaml), right? No, There is not setting for that there yet. Erez are you keeping in mind this for your current implementation? Use advanced settings (yaml) as defaults when there is no provider specific setting. Yes, > Use advanced settings (yaml) as defaults when there is no provider specific setting. Exactly, it is quite parallel to the per-provider features. PR: https://github.com/ManageIQ/manageiq-providers-kubernetes/pull/120 Just making sure, ImageScan means the image-inspector image? (In reply to Erez Freiberger from comment #6) > Yes, > > Use advanced settings (yaml) as defaults when there is no provider specific setting. > > Exactly, it is quite parallel to the per-provider features. PR: > https://github.com/ManageIQ/manageiq-providers-kubernetes/pull/120 > > Just making sure, ImageScan means the image-inspector image? Yes cve_url, both in the settings and in the per-provider options, should be an address where we would look for the file "com.redhat.rhsa-RHEL7.ds.xml.bz2". If we want to change that we will need to update image-inspector. https://github.com/ManageIQ/manageiq-providers-kubernetes/pull/120 Erez I think this should be in POST (all this feature has been merged). Let me know if that's not the case and something is still missing. I agree, it should be in POST. Verify on cfme 5.9.0.8. update image_inspector_cve_url with value https://www.redhat.com/security/data/metrics/ds --> SSA work OK. update image_inspector_cve_url with wrong value https://www.redhat.com/security/data/metrics --> SSA fail with Unable to run OpenSCAP: OpenSCAP error, should be update by PR https://github.com/openshift/image-inspector/pull/78 . Update image_inspector_registry with wrong value: docker (instead of docker.io) --> SSA fail with "job timed out after 1250.265938917 seconds of inactivity" error as expected. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2018:0380 |