From fb1a0a77bd0e412642020026c1e42daaeaa0ba25 Mon Sep 17 00:00:00 2001
From: Watson Sato <wsato@redhat.com>
Date: Mon, 9 Sep 2024 11:16:30 -0700
Subject: [PATCH] PCI-DSS-4-0: update cipher suite ingress controller assertion

Update assertion of kubelet-configure-tls-cipher-suites-ingress-controller
in pci-dss-4-0-4.XX files.
---
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.12.yml | 3 +++
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.13.yml | 3 +++
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.14.yml | 3 +++
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.15.yml | 3 +++
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.16.yml | 3 +++
 tests/assertions/ocp4/ocp4-pci-dss-4-0-4.17.yml | 3 +++
 6 files changed, 18 insertions(+)

diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.12.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.12.yml
index e77895143258..81d751aef2e0 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.12.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.12.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: PASS
    result_after_remediation: PASS
+ e2e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: PASS
    result_after_remediation: PASS
diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.13.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.13.yml
index e77895143258..81d751aef2e0 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.13.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.13.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: PASS
    result_after_remediation: PASS
+ e2e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: PASS
    result_after_remediation: PASS
diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.14.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.14.yml
index e77895143258..81d751aef2e0 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.14.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.14.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: PASS
    result_after_remediation: PASS
+ e2e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: PASS
    result_after_remediation: PASS
diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.15.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.15.yml
index e77895143258..7d210941bda8 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.15.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.15.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: PASS
    result_after_remediation: PASS
+ e3e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: PASS
    result_after_remediation: PASS
diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.16.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.16.yml
index e77895143258..81d751aef2e0 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.16.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.16.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: PASS
    result_after_remediation: PASS
+ e2e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: PASS
    result_after_remediation: PASS
diff --git a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.17.yml b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.17.yml
index 96000b058537..3f8eae8dcb7d 100644
--- a/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.17.yml
+++ b/tests/assertions/ocp4/ocp4-pci-dss-4-0-4.17.yml
@@ -230,6 +230,9 @@ rule_results:
  e2e-pci-dss-4-0-kubelet-configure-tls-cert:
    default_result: NOT-APPLICABLE
    result_after_remediation: NOT-APPLICABLE
+ e2e-pci-dss-4-0-kubelet-configure-tls-cipher-suites-ingress-controller:
+   default_result: FAIL
+   result_after_remediation: PASS
  e2e-pci-dss-4-0-kubelet-configure-tls-key:
    default_result: NOT-APPLICABLE
    result_after_remediation: NOT-APPLICABLE