summaryrefslogtreecommitdiffstats
path: root/waivers
AgeCommit message (Collapse)AuthorFilesLines
2022-04-13Merge "Waivers requested for SDNC non-ssl endpoints"Pawel Pawlak1-0/+7
2022-04-12Waivers requested for SDNC non-ssl endpointsDan Timoney1-0/+7
Requesting waivers for CDS blueprint processor endpoint, and for SDNC NETCONF Call Home endpoint. Issue-ID: SDNC-1692 Signed-off-by: Dan Timoney <dtimoney@att.com> Change-Id: Id5dba0492f04e1a051f3d7a23be79f3b32db620b
2022-03-10[SO] requested waiver for the nodeportsSeshu-Kumar-M1-4/+7
Issue-ID: SO-3237 Signed-off-by: Seshu-Kumar-M <seshu.kumar.m@huawei.com> Change-Id: Id7d87a02d7a0ae0610f7d04a4b8c303272b61c47
2022-03-03[DCAEMOD] Exception for MOD/Nifi componentsvv770d1-3/+3
Due to upstream dependency - these MOD components will remain on Java8 Change-Id: I0b9c7780d2580f2c735d00d8ccbf9860180f8173 Signed-off-by: vv770d <vv770d@att.com> Issue-ID: DCAEGEN2-3019
2022-01-18[JDPW] Enable JDPW waiver for msb and vfc for jakartamorganrol1-4/+3
All the aivers had been reset for Jakarta The JDPW did not evolve Waivers are still valid as 6379 is sued by some components for redis not for JDPW Issue-ID: INT-2045 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: I06c62d2c5e13b0d19805e37da6590b0d96199723
2021-12-17[WAIVERS] Reset all master waivers to prepare jakartamorganrol6-84/+83
Reset all security waivers for new version Issue-ID: INT-2040 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: I91ae51545ad3a0450e6d839d72a40d43d9ccfd10
2021-10-22[NONSSL] Add waiver for a SDNC portistanbulmorganrol1-1/+6
A new port is detected during the nonssl test 30266 sdnc-callhome A JIRA has been created Until it cna be fixed (Jakarta?), a waiver is created Issue-ID: SDNC-1628 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: Ie740778b0d44ea8211161c8f05bcd088b2d71579
2021-10-20Merge "Exception for cds-blueprints-processor-http"Morgan Richomme1-0/+3
2021-10-11Exception for cds-blueprints-processor-httpDan Timoney1-0/+3
CDS team is working on resolving this issue, but was unable to complete work before Istanbul release cutoff. This will be addressed in Jakarta. Issue-ID: CCSDK-3413 Signed-off-by: Dan Timoney <dtimoney@att.com> Change-Id: I7e871961c2dfd0ced8d018dd283c924330ebe6eb
2021-10-04[WAIVER] Missing message-router pod in waivermorganrol1-0/+1
As wildcards are not supported in waiver management we declared - message-router-zookeeper - message-router-kafka but forget message-router Issue-ID: TEST-360 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: Ibaa3b9acf03e367c4e113749e1d9a77d67f36461
2021-10-04Merge "[vfc-huawei-vnfm-driver] file exceptions for Python 2"Pawel Pawlak1-0/+3
2021-10-04[vfc-huawei-vnfm-driver] file exceptions for Python 2shashikanth.vh@huawei.com1-0/+3
waiver requested for the vfc-huawei-vnfm-driver container Issue-ID: VFC-1842 Signed-off-by: shashikanth.vh@huawei.com <shashikanth.vh@huawei.com> Change-Id: Id101f3f0eeb7fb1877185357f885434a84c17dbd
2021-09-23[ROBOT] Add robot to nodeports waivers listMichal Jagiello1-0/+1
Issue-ID: INT-1720 Signed-off-by: Michal Jagiello <michal.jagiello@t-mobile.pl> Change-Id: I478b2e12de15cda063044b6334be9e35ccfecae0
2021-09-20[WAIVER] Wildcard not supported in waiver managementmorganrol1-1/+2
message-router cannot be used to exclude - message-router-zookeeper - message-router-kafka full name shall be indicated to be taken into account Issue-ID: TEST-360 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: Iafe9c7b16b72784299c24b1e53874c4ae4d158f7
2021-09-15Merge "Add waiver for sdnc-dmaap-listener"Pawel Pawlak1-0/+3
2021-09-14Add version waiver for robotMichal Jagiello1-0/+1
Issue-ID: INT-1977 Signed-off-by: Michal Jagiello <michal.jagiello@t-mobile.pl> Change-Id: Iffed078a6205659b4243e81358dc178551593b91
2021-09-13Add waiver for sdnc-dmaap-listenerDan Timoney1-0/+3
Add waiver for sdnc-dmaap-listener (uses java 11, but java 8 still shows as installed) Issue-ID: SDNC-1571 Signed-off-by: Dan Timoney <dtimoney@att.com> Change-Id: Idcc069987fde9896addfec4de73b8b7b10fb6296
2021-09-13Merge "DCAE security exceptions for Istanbul"Pawel Pawlak1-0/+6
2021-09-13Merge "[DMAAP-MR] Exception for Java 11 blocked"Pawel Pawlak1-2/+1
2021-09-13DCAE security exceptions for Istanbulvv770d1-0/+6
Java8 exceptions for MOD/NiFI components (upstream NiFiproject still on java8) Python2 exception to remove false positive for dcae-cloudify dcae-cloudify-manager upstream base image includes both python3 and python2; underlying processes/plugins are run under python3 base (since Honolulu release) Once DCAE transformation to helm is completed, this container will be deprecated (target J release) Change-Id: Iaa8266e949191d5336c3a9cf7a62e0e6c738cf7b Signed-off-by: vv770d <vv770d@att.com> Issue-ID: DCAEGEN2-2737 Issue-ID: DCAEGEN2-2736
2021-09-13[AAI] Updating the version xfail filewr148d1-0/+5
The core microservices in aai cannot be upgraded to Java 11 yet Issue-ID: AAI-3322 Signed-off-by: wr148d <wr148d@att.com> Change-Id: I96440f736ab5cf2ebb55761fa30faf2b04d06349
2021-09-13[DMAAP-MR] Exception for Java 11 blockedefiacor1-2/+1
Signed-off-by: efiacor <fiachra.corcoran@est.tech> Change-Id: Ibf3b53038beb51c6c4983b44fcfed5b8847d0cd8 Issue-ID: DMAAP-1626
2021-09-06[WAIVER] Align file format fo waiver management processingmorganrol1-3/+4
for the nonssl_check, there is a light GO processing parsing the xfail file the comments at the end of a line are wrongly interprated and the xfail file is not loaded so 30277 # comment is wrong it shall be so 30277 we can modify either the processing or the waiver file.. the waiver file change is trivial Test succesfuly executed on daily shoudl lead to a full 100% next time on security test on master (istanbul candidate) Issue-ID: TEST-360 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: If67d295d6f1a84e3261468fa80c0c0342e564773
2021-09-02[WAIVERS] Add version waiversmorganrol2-10/+60
add waivers for containers the version test scans the java and python version the expected versions are the ones indicated in the ref seccom reco yaml file waiver may be granted for - unmaintained components - upstream components - filebeat dockers Issue-ID: TEST-360 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: Ia3bb82712d2ef01a6eea03c5a499fb2abca7f529
2021-08-24[WAIVERS] Apply Istanbul waivers on Istanbul security testsmorganrol2-0/+3
Add waivers for: 1) root pods - etcd seen as upstream components 2)limits - esr unmaintained Issue-ID: TEST-360 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: I2e4af19aab66a25f3aa41ae75cf19c4844053ed7
2021-08-10[WAIVERS] Add aaf as unmaintained but needed componentmorganrol1-0/+1
aaf is still needed but not maintained it means that the probably to fix the issue is around 0 Add a waiver for security test Issue-ID: INT-1955 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: I8db4ccfd5d4898f8cb66a7663467b331f8b131e4
2021-08-05[SO] non ssl ports waiver requestseshukm1-0/+4
waiver requested for the so and so-etsi-sol003-adapter pods There is a work in progress for introducing the ingress controller for the ssl connection in oom/so Issue-ID: SO-3724 Signed-off-by: seshukm <seshu.kumar.m@huawei.com> Change-Id: I8e9b557b3a926cb7792c8516dd6ed24d4291d3b1
2021-07-29DCAE security exceptions for Istanbulvv770d2-1/+8
ROOT dcae-cloudify has upstream base image dependency to run as root. Once DCAE transformation to helm is completed, this container will be deprecated (target J release) Java8 exceptions for MOD/NiFI components (upstream NiFiproject still on java8) Exceptions approved by SECCOM on 06/29/21 meeting Change-Id: I9de0d51fc526c910ffad202df16e967c716e9ab0 Signed-off-by: Vijay Venkatesh Kumar <vv770d@att.com> Issue-ID: DCAEGEN2-2736 Issue-ID: DCAEGEN2-2424
2021-05-10[RELEASE] Reset seccom waivers on Mastermorganrol3-17/+0
Only upstream waivers are kept for the security tests Issue-ID: INT-1921 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: I6982ce4e51591a781e92e8dd9073170640a241b3
2021-04-19[WAIVERS] Set Honolulu security waiversmorganrol3-0/+35
set waiver list for - unlimited - root - nossl exclude testing and upstream components Issue-ID: TEST-330 Signed-off-by: morganrol <morgan.richomme@orange.com> Change-Id: Ie1f2bc73a10f81751910268c73e00e4e271fc153
2021-02-23DCAE container exceptions for H releasevv770d1-1/+6
Change-Id: I51ccefb6993122014cbc25cb18847de5af355760 Signed-off-by: vv770d <vv770d@att.com> Issue-ID: DCAEGEN2-2494 Issue-ID: DCAEGEN2-2427 Issue-ID: DCAEGEN2-2428
2021-02-16[VERSIONS] Add versions xfail listmrichomme1-0/+8
Issue-ID: TEST-304 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I0bebe6a5497300e024a71c40e7935d85d9bed9ab
2021-01-06Reset Security waivers on Mastermrichomme2-37/+0
as usual, new dev cycle, reset all the waivers for the different security tests Issue-ID: INT-1824 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I60495b0c2cd3cf4dd512073bec3416893833b56c
2020-11-04Remove consul waiversKrzysztof Opasiak1-3/+0
Common consul chart has been fixed so there is no reason to keep consul exception. Additionally MSB is not using our common consul template which was assumed in MSB-518 so they should fix that also. Issue-ID: REQ-362 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: Ic23450b58d19c68d1198f641fca3f867c74aa544
2020-10-16Add robot in root xfail listmrichomme1-0/+2
Issue-ID: INT-1716 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I2e9642fe2402ab15f6215be463f2430491798ea2
2020-10-13Update limit xfail list for Guilinmrichomme1-0/+16
Issue-ID: DCAEGEN2-2449 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I9b63def0f8f4a994e989ce82c9159e2274f64c7d
2020-10-13Update root pod xfail listmrichomme1-4/+12
Issue-ID: DCAEGEN2-2424 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I48610d2278fb44983b073502238c8abee2986ef2
2020-10-06Add music in root pod xfail listmrichomme1-0/+2
component is in maintenance for guilin Issue-ID: MUSIC-609 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I0fbf7465db7d73bec9c9c91a712db9426e71c42f
2020-09-23Move historical SECCOM waivers to VCSPawel Wieczorek2-50/+0
All waivers have been successfully migrated to this repository which is intended as a single source of truth for SECCOM exceptions. This patch removes disabled (commented out) exceptions to make waiver lists more readable. All historical data remains intact by being kept in VCS change history. Issue-ID: INT-1695 Change-Id: Icec72acfd0eda6c8762525ad27feb626caf3ac48 Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
2020-09-23Add exceptions to the root pod listmrichomme1-0/+11
Issue-ID: AAI-3175 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I042ecca02ecd852666cb7ee692685385dade4011 Signed-off-by: mrichomme <morgan.richomme@orange.com>
2020-09-18Add waiver for the test on pod limitsmrichomme1-0/+3
Issue-ID: INT-1722 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I9a0e7611ff5b36f159c0fffcde503099a75356c0
2020-09-01Fix typo in JDWP waiver pathPawel Wieczorek1-0/+0
Issue-ID: INT-1710 Change-Id: I66da1203ecd5baf2ee17196218f88a272a2899b4 Signed-off-by: Pawel Wieczorek <p.wieczorek2@samsung.com>
2020-08-31Centralize waivers in SECCOM repositorymrichomme4-0/+62
The waivers are in different locations, the idea is to centralize all the waivers in the same place Issue-ID: INT-1710 Signed-off-by: mrichomme <morgan.richomme@orange.com> Change-Id: I25ad8ce6f14bb5fd9672139406eb6d3a0720eebb