625b1578fa
Update the osbuild/images to the version which introduces "dot notation" for distro release versions. - Replace all uses of distroregistry by distrofactory. - Delete local version of reporegistry and use the one from the osbuild/images. - Weldr: unify `createWeldrAPI()` and `createWeldrAPI2()` into a single `createTestWeldrAPI()` function`. - store/fixture: rework fixtures to allow overriding the host distro name and host architecture name. A cleanup function to restore the host distro and arch names is always part of the fixture struct. - Delete `distro_mock` package, since it is no longer used. - Bump the required version of osbuild to 98, because the OSCAP customization is using the 'compress_results' stage option, which is not available in older versions of osbuild. Signed-off-by: Tomáš Hozza <thozza@redhat.com>
37 lines
761 B
Go
37 lines
761 B
Go
package common
|
|
|
|
import (
|
|
"bufio"
|
|
"os"
|
|
"strings"
|
|
)
|
|
|
|
const (
|
|
FIPSEnabledImageWarning = `The host building this image is not ` +
|
|
`running in FIPS mode. The image will still be FIPS compliant. ` +
|
|
`If you have custom steps that generate keys or perform ` +
|
|
`cryptographic operations, those must be considered non-compliant.`
|
|
)
|
|
|
|
var (
|
|
FIPSEnabledFilePath = "/proc/sys/crypto/fips_enabled"
|
|
)
|
|
|
|
func IsBuildHostFIPSEnabled() (enabled bool) {
|
|
file, err := os.Open(FIPSEnabledFilePath)
|
|
if err != nil {
|
|
return
|
|
}
|
|
defer file.Close()
|
|
buf := []byte{}
|
|
_, err = file.Read(buf)
|
|
if err != nil {
|
|
return
|
|
}
|
|
scanner := bufio.NewScanner(file)
|
|
scanner.Scan()
|
|
if err := scanner.Err(); err != nil {
|
|
return
|
|
}
|
|
return strings.TrimSpace(scanner.Text()) == "1"
|
|
}
|