Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ART-8426 Find golang trackers and determine if they are fixed #276

Merged
merged 1 commit into from
Jan 13, 2024
Merged

ART-8426 Find golang trackers and determine if they are fixed #276

merged 1 commit into from
Jan 13, 2024

Conversation

thegreyd
Copy link
Contributor

@thegreyd thegreyd commented Dec 20, 2023
edited
Loading

https://issues.redhat.com/browse/ART-8426

$  ./elliott -g openshift-4.14 --assembly 4.14.8 find-bugs:golang --update-tracker

2024-01-10 23:38:00,625 INFO Cloning config data from https://github.com/openshift-eng/ocp-build-data.git
2024-01-10 23:38:01,732 INFO Using branch from group.yml: rhaos-4.14-rhel-8
2024-01-10 23:38:01,743 INFO Constraining brew event to assembly basis for 4.14.8: 55461598
2024-01-10 23:38:03,534 INFO Searching for open security trackers with target version 4.14.0,4.14.z assigned to ART
2024-01-10 23:38:04,280 INFO Found 7 bugs
2024-01-10 23:38:04,280 INFO Bugs by component: {'openshift': ['OCPBUGS-16101', 'OCPBUGS-17330'], 'openshift-golang-builder-container': ['OCPBUGS-16107', 'OCPBUGS-16276', 'OCPBUGS-17336', 'OCPBUGS-20203'], 'microshift': ['OCPBUGS-17329']}
2024-01-10 23:38:04,281 INFO OCPBUGS-20203 has security component: openshift-golang-builder-container
2024-01-10 23:38:05,251 INFO OCPBUGS-20203 is fixed in: ['1.20.9', '1.21.2']
2024-01-10 23:38:05,251 INFO Fetching go build nvrs for quay.io/openshift-release-dev/ocp-release:4.14.8-x86_64...
2024-01-10 23:38:16,203 INFO Found parent go build versions ['1.19.13', '1.20.10']
2024-01-10 23:38:16,203 INFO OCPBUGS-20203 for openshift-golang-builder-container is fixed in 1.20.10
2024-01-10 23:38:16,203 INFO Couldn't determine if fix is in builders for versions {'1.19.13'}
2024-01-10 23:38:16,203 INFO Potentially vulnerable builds: 2
2024-01-10 23:38:16,203 INFO Vulnerable builds make up for less than 10% of total builds, considering it fixed
OCPBUGS-20203 is determined to be fixed.
2024-01-10 23:38:17,585 INFO OCPBUGS-17336 has security component: openshift-golang-builder-container
2024-01-10 23:38:19,402 INFO OCPBUGS-17336 is fixed in: ['1.19.12', '1.20.7']
2024-01-10 23:38:19,402 INFO Found parent go build versions ['1.19.13', '1.20.10']
2024-01-10 23:38:19,402 INFO OCPBUGS-17336 for openshift-golang-builder-container is fixed in 1.20.10
2024-01-10 23:38:19,402 INFO OCPBUGS-17336 for openshift-golang-builder-container is fixed in 1.19.13
2024-01-10 23:38:19,402 INFO Fix is determined to be in all builders in payload
OCPBUGS-17336 is determined to be fixed.
2024-01-10 23:38:20,582 INFO OCPBUGS-17330 has security component: openshift
2024-01-10 23:38:20,583 INFO OCPBUGS-17330 is fixed in: ['1.19.12', '1.20.7']
2024-01-10 23:38:21,139 INFO Constraining rpm search to stream assembly due to assembly basis event 55461598
Generating list of rpms: Hold on a moment, fetching Brew builds
2024-01-10 23:38:21,140 INFO Finding builds specific to assembly stream in Brew tag rhaos-4.14-rhel-8-candidate...
2024-01-10 23:38:23,511 INFO Found 24 builds.
2024-01-10 23:38:23,513 INFO Finding builds specific to assembly stream in Brew tag rhaos-4.14-rhel-9-candidate...
2024-01-10 23:38:25,142 INFO Found 32 builds.
2024-01-10 23:38:25,143 INFO Found 1 NVRs pinned to the runtime assembly 4.14.8. Fetching build infos from Brew...
2024-01-10 23:38:25,446 INFO Finding builds specific to assembly stream in Brew tag rhaos-4.14-ironic-rhel-9-candidate...
2024-01-10 23:38:27,416 INFO Found 136 builds.
2024-01-10 23:38:27,418 INFO Found 1 NVRs pinned to the runtime assembly 4.14.8. Fetching build infos from Brew...
Do not filter out shipped builds, all builds will be attached
Found 194 builds, of which 194 are new.
2024-01-10 23:38:27,419 INFO Constraining rpm search to stream assembly due to assembly basis event 55461598
Generating list of rpms: Hold on a moment, fetching Brew builds
******2024-01-10 23:38:28,212 INFO [rpms/microshift] No builds detected for using prefix: 'microshift-4.14.', extra_pattern: '*', assembly: '4.14.8', build_state: 'COMPLETE', el_target: 'rhaos-4.14-rhel-8-candidate'
******2024-01-10 23:38:31,642 INFO [rpms/openshift-kuryr] No builds detected for using prefix: 'openshift-kuryr-4.14.', extra_pattern: '*', assembly: 'stream', build_state: 'COMPLETE', el_target: 'rhaos-4.14-rhel-9-candidate'
2024-01-10 23:38:31,717 INFO [rpms/openshift4-aws-iso] No builds detected for using prefix: 'openshift4-aws-iso-4.14.', extra_pattern: '*', assembly: 'stream', build_state: 'COMPLETE', el_target: 'rhaos-4.14-rhel-9-candidate'
*****2024-01-10 23:38:31,725 INFO [rpms/openshift4-aws-iso] No builds detected for using prefix: 'openshift4-aws-iso-4.14.', extra_pattern: '*', assembly: 'stream', build_state: 'COMPLETE', el_target: 'rhaos-4.14-ironic-rhel-9-candidate'
*2024-01-10 23:38:31,726 INFO [rpms/openshift-kuryr] No builds detected for using prefix: 'openshift-kuryr-4.14.', extra_pattern: '*', assembly: 'stream', build_state: 'COMPLETE', el_target: 'rhaos-4.14-ironic-rhel-9-candidate'
Do not filter out shipped builds, all builds will be attached
Found 13 builds, of which 13 are new.
2024-01-10 23:38:33,505 INFO Found parent go build versions ['1.20.10']
2024-01-10 23:38:33,505 INFO OCPBUGS-17330 for openshift is fixed in 1.20.10
2024-01-10 23:38:33,505 INFO Fix is determined to be in all builders in payload
OCPBUGS-17330 is determined to be fixed.
2024-01-10 23:38:34,879 INFO OCPBUGS-17329 has security component: microshift
2024-01-10 23:38:34,879 INFO OCPBUGS-17329 is fixed in: ['1.19.12', '1.20.7']
2024-01-10 23:38:35,730 INFO Found parent go build versions ['1.20.10']
2024-01-10 23:38:35,730 INFO OCPBUGS-17329 for microshift is fixed in 1.20.10
2024-01-10 23:38:35,730 INFO Fix is determined to be in all builders in payload
OCPBUGS-17329 is determined to be fixed.
2024-01-10 23:38:36,958 INFO OCPBUGS-16276 has security component: openshift-golang-builder-container
2024-01-10 23:38:38,475 INFO OCPBUGS-16276 is fixed in: ['1.19.7', '1.20.2']
2024-01-10 23:38:38,476 INFO Found parent go build versions ['1.19.13', '1.20.10']
2024-01-10 23:38:38,476 INFO OCPBUGS-16276 for openshift-golang-builder-container is fixed in 1.20.10
2024-01-10 23:38:38,476 INFO OCPBUGS-16276 for openshift-golang-builder-container is fixed in 1.19.13
2024-01-10 23:38:38,476 INFO Fix is determined to be in all builders in payload
OCPBUGS-16276 is determined to be fixed.
2024-01-10 23:38:39,583 INFO OCPBUGS-16107 has security component: openshift-golang-builder-container
2024-01-10 23:38:41,870 INFO OCPBUGS-16107 is fixed in: ['1.19.11', '1.20.6']
2024-01-10 23:38:41,871 INFO Found parent go build versions ['1.19.13', '1.20.10']
2024-01-10 23:38:41,871 INFO OCPBUGS-16107 for openshift-golang-builder-container is fixed in 1.20.10
2024-01-10 23:38:41,871 INFO OCPBUGS-16107 for openshift-golang-builder-container is fixed in 1.19.13
2024-01-10 23:38:41,871 INFO Fix is determined to be in all builders in payload
OCPBUGS-16107 is determined to be fixed.
2024-01-10 23:38:43,475 INFO OCPBUGS-16101 has security component: openshift
2024-01-10 23:38:43,475 INFO OCPBUGS-16101 is fixed in: ['1.19.11', '1.20.6']
2024-01-10 23:38:45,074 INFO Found parent go build versions ['1.20.10']
2024-01-10 23:38:45,074 INFO OCPBUGS-16101 for openshift is fixed in 1.20.10
2024-01-10 23:38:45,075 INFO Fix is determined to be in all builders in payload
OCPBUGS-16101 is determined to be fixed.
Fixed bugs: ['OCPBUGS-16101', 'OCPBUGS-16107', 'OCPBUGS-16276', 'OCPBUGS-17329', 'OCPBUGS-17330', 'OCPBUGS-17336', 'OCPBUGS-20203']

@thegreyd thegreyd changed the title ART-8426 Find golang trackers and determine if they are fixed WIP ART-8426 Find golang trackers and determine if they are fixed Dec 20, 2023
@openshift-ci openshift-ci bot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Dec 20, 2023
@thegreyd thegreyd force-pushed the ART-8426 branch 2 times, most recently from 0036352 to 61a32dd Compare December 21, 2023 20:05
@thegreyd thegreyd changed the title WIP ART-8426 Find golang trackers and determine if they are fixed ART-8426 Find golang trackers and determine if they are fixed Jan 11, 2024
@openshift-ci openshift-ci bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jan 11, 2024
@thegreyd thegreyd requested review from vfreex and joepvd January 11, 2024 04:49
@joepvd
Copy link
Contributor

joepvd commented Jan 11, 2024

/approve

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Jan 11, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: joepvd

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jan 11, 2024
@thegreyd thegreyd merged commit a6192a0 into openshift-eng:main Jan 13, 2024
1 of 2 checks passed
@thegreyd thegreyd mentioned this pull request Jan 22, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@joepvd joepvd joepvd left review comments

@vfreex vfreex Awaiting requested review from vfreex

Assignees
No one assigned
Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@thegreyd @joepvd