Red Hat SummitChapter 17. Running the certification test suite
17.1. All containerized applications
To run the certification test suite for OpenShift and Red Hat Enterprise Linux (RHEL) containerized applications, you must complete all the steps in this section. For RHEL containerized applications, you must also complete the Section 17.2, “Additional steps for RHEL containerized applications” in order to run the certification suite.
Follow the instructions to run the certification test suite:
Prerequisites
- You have a Red Hat Enterprise Linux (RHEL) system.
You can use Podman to log in to your image registry. For example:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow podman login --username <your_username> --password <your_password> --authfile ./temp-authfile.json <registry>
$ podman login --username <your_username> --password <your_password> --authfile ./temp-authfile.json <registry>The authentication file generated by using the
--authfile ./temp-authfile.jsonoption is required in the following steps. This authentication file is used by the--docker-configoption when you submit the test results by using the Preflight tool.- You have set up your container on the Red Hat Partner Connect portal. The product listing must at least be in progress.
- You have a pyxis API key.
Procedure
Build your container image by using Podman.
NoteUsing Podman to build container images is optional.
- Upload your container to any private or public registry of your choice.
- Download the latest Preflight certification utility.
Perform the following steps to verify the functionality of the container being certified:
Run the Preflight certification utility:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow preflight check container \ registry.example.org/<namespace>/<image_name>:<image_tag>
$ preflight check container \ registry.example.org/<namespace>/<image_name>:<image_tag>Review the log information and change the container as needed. For more information, see the troubleshooting information page.
If you find any issues, either submit a support ticket or run the following command:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow preflight support
$ preflight supportRed Hat welcomes community contributions. If you experience a bug related to Preflight or the Red Hat Partner Connect Portal, or if you have a suggestion for a feature improvement or contribution, please report the issue. Before reporting an issue, ensure to review the open issues to avoid duplication.
- Run the container certification utility and make changes until all the tests pass.
Submit the certification test results by running the following command:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow preflight check container \ registry.example.org/<namespace>/<image_name>:<image_tag> \ --submit \ --pyxis-api-token=<api_token> \ --certification-project-id=<project_id> \ --docker-config=./temp-authfile.json
$ preflight check container \ registry.example.org/<namespace>/<image_name>:<image_tag> \ --submit \ --pyxis-api-token=<api_token> \ --certification-project-id=<project_id> \ --docker-config=./temp-authfile.jsonAfter you submit your test results to the Red Hat Partner Connect portal, Red Hat will scan the layers of your container for package vulnerabilities.
- Review your certification and vulnerability test results in the certification component UI by navigating to the Images tab in the Red Hat Partner Connect portal.
For RHEL containerized applications, you must also complete the Section 17.2, “Additional steps for RHEL containerized applications”.
17.2. Additional steps for RHEL containerized applications
To certify a RHEL containerized application, you have to complete all the previous steps in Section 17.1, “All containerized applications”, then validate the functionality of your product by following the Non-container certification workflow.
You can also certify your RHEL application container by using the Red Hat Certification tool, which has the built-in pre-flight tool, thereby enabling you to validate your container.
Procedure
Follow the steps to use the built-in preflight tool:
Install the preflight package:
# dnf install redhat-certification-preflightRun rhcert and follow the instructions:
# rhcert-runReview and save the test results:
# rhcert-save
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}