feat: create fips binary for deployment operator #308

zreigz · 2024-10-29T14:56:20Z

create a GO image with FIPS support
use go-fips image to build the agent

dockerfiles/agent/fips.Dockerfile

dockerfiles/fips/go.Dockerfile

github-advanced-security

Trivy found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.

dockerfiles/fips/go.Dockerfile

dockerfiles/agent/fips.Dockerfile

@@ -0,0 +1,45 @@
+ARG UBI_MINIMAL_VERSION="latest"


dockerfiles/harness/fips.ansible.Dockerfile

dockerfiles/harness/fips.base.Dockerfile

dockerfiles/harness/ansible.fips.Dockerfile

@@ -0,0 +1,49 @@
+ARG HARNESS_BASE_IMAGE_TAG=latest


dockerfiles/harness/ansible.fips.Dockerfile

+FROM deployment-agent-fips:latest as agent
+
+# Build Ansible from Python Image
+FROM registry.access.redhat.com/ubi8/ubi:latest as final


dockerfiles/harness/base.fips.Dockerfile

@@ -0,0 +1,55 @@
+ARG GO_FIPS_IMAGE_TAG=1.23.2


dockerfiles/harness/base.fips.Dockerfile

+    -o harness \
+    cmd/harness/*.go
+
+FROM registry.access.redhat.com/ubi8/ubi-minimal:latest AS final


create fips binary for deployment operator

8430a21

github-actions bot added the size/L label Oct 29, 2024

github-advanced-security bot found potential problems Oct 29, 2024

View reviewed changes

zreigz changed the title ~~create fips binary for deployment operator~~ feat: create fips binary for deployment operator Oct 29, 2024

zreigz added the enhancement New feature or request label Oct 29, 2024

zreigz changed the title ~~feat: create fips binary for deployment operator~~ wip: create fips binary for deployment operator Oct 29, 2024

improvments

aa928e4

github-advanced-security bot found potential problems Oct 30, 2024

View reviewed changes

Merge remote-tracking branch 'origin/main'

8a219bb

github-advanced-security bot found potential problems Oct 30, 2024

View reviewed changes

dockerfiles/fips/go.Dockerfile Fixed Show fixed Hide fixed

dockerfiles/fips/go.Dockerfile Fixed Show fixed Hide fixed

dockerfiles/fips/go.Dockerfile Fixed Show fixed Hide fixed

dockerfiles/fips/go.Dockerfile Fixed Show fixed Hide fixed

dockerfiles/fips/go.Dockerfile Fixed Show fixed Hide fixed

zreigz added 2 commits October 30, 2024 12:51

disable flags

b0a93e1

add github action

bf44e8d

zreigz changed the title ~~wip: create fips binary for deployment operator~~ feat: create fips binary for deployment operator Oct 30, 2024

zreigz added 7 commits October 30, 2024 13:17

fix github action

b2d8ce5

improve github action

63b1835

fix github action

e2b9c8d

go-fips static version

e17bb69

fix static version

873c7fa

on push tag

4e5a0e8

move go-fips to another repo

8dcffe2

github-advanced-security bot found potential problems Oct 31, 2024

View reviewed changes

dockerfiles/agent/fips.Dockerfile Fixed Show fixed Hide fixed

add fips ansible

6470051

github-advanced-security bot found potential problems Oct 31, 2024

View reviewed changes

workflow for harness fips

3233324

github-advanced-security bot found potential problems Oct 31, 2024

View reviewed changes

zreigz added 4 commits October 31, 2024 15:17

Merge branch 'main' into fips-binary

59b59a1

fix ansible

8d2d857

fix tag

3ebff7c

add supported versions

b1029fc

michaeljguarino approved these changes Nov 5, 2024

View reviewed changes

zreigz merged commit 47e45e6 into main Nov 6, 2024
36 checks passed

zreigz deleted the fips-binary branch November 6, 2024 07:18

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: create fips binary for deployment operator #308

feat: create fips binary for deployment operator #308

zreigz commented Oct 29, 2024 •

edited

Loading

github-advanced-security bot left a comment

feat: create fips binary for deployment operator #308

feat: create fips binary for deployment operator #308

Conversation

zreigz commented Oct 29, 2024 • edited Loading

github-advanced-security bot left a comment

Choose a reason for hiding this comment

zreigz commented Oct 29, 2024 •

edited

Loading