Project

General

Profile

Actions
Copy link

Bug #28686

closed

Foreman-maintain upgrade should be able to detect FIPS supported scenarios

Added by Kavita Gaikwad over 4 years ago. Updated about 2 months ago.

Status:
Rejected
Priority:
High
Assignee:
-
Category:
-
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
1684503
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1684503

Description of problem:

While upgrading satellite 6.4 to 6.5, foreman-maintain should be able to detect and stop the upgrade if FIPS is enabled at the kernel level, since it is non-supported scenario.

From Satellite 6.5 onwards there will be 2 scenarios for upgrades:

1. Customers using FIPS
2. Customers not using FIPS

foreman-maintain should be able to check whether FIPS is enabled at the kernel level and also check the SSL certificates are FIPS compliant then only the upgrade should proceed.

Version-Release number of selected component (if applicable):
Satellite 6.5

How reproducible:
Always

Steps to Reproduce:
1. Try to perform in-place upgrade Satellite 6.4 to 6.5
2. If FIPS is enabled at kernel level foreman-maintain should stop the upgrade and inform the user that this is non-supported scenario.
3.

Actions
Copy link
 #1

Updated by Eric Helms about 2 months ago

  • Status changed from New to Rejected
Actions
Copy link

Also available in: Atom PDF