CNTRLPLANE-3574: Migrate FIPS testing on AWS nad AKS to upstream

[mgencur]

Partially covers https://redhat.atlassian.net/browse/CNTRLPLANE-3574 (only partially because we also need to remove old tests from openshift-tests-private)

• Add e2e-aws-ovn-conformance-fips periodic jobs (4.16-5.0)
• Add e2e-conformance-fips optional presubmit for main
• Remove fips-guest-f28-destructive and fips-mgmt-f14 from QE configs
• New hypershift-hostedcluster-fips-check
• Add e2e-azure-aks-ovn-conformance-fips (4.19-5.0)
• Add optional e2e-azure-aks-ovn-conformance-fips presubmit for main
• Remove azure-aks-hypershift-byo-vnet-fips-guest and fips-mgmt from openshift-tests-private configs (4.19-4.22, 5.0)

Summary by CodeRabbit

This PR migrates HyperShift FIPS testing on AWS from QE-owned private job definitions into upstream OpenShift CI conformance workflows as part of CNTRLPLANE-3574.

What changed (practical impact)

• Adds an upstream FIPS conformance presubmit and periodics:
  • New optional presubmit e2e-conformance-fips for main.
  • New periodic e2e-aws-ovn-conformance-fips jobs added to hypershift configs for branches/releases 4.16 through 5.0. These run the minimal parallel conformance suite on the hypershift-aws cluster profile with EXTRA_ARGS="--fips" and PUBLIC_ONLY="true", and chain a FIPS verification step before hypershift-conformance.
• Introduces a reusable FIPS verification step:
  • New step-registry entry hypershift-hostedcluster-fips-check (script + ref + metadata/OWNERS change) that verifies /proc/sys/crypto/fips_enabled on hosted-cluster nodes using nested_kubeconfig from SHARED_DIR. The step is wired as a prerequisite in the new conformance flows.
• Removes legacy QE private jobs:
  • Deletes old QE hypershift FIPS job definitions (notably fips-guest-f28-destructive and fips-mgmt-f14) from openshift-tests-private nightly configs and replaces them with consolidated guest/mgmt variants and other non-FIPS private job updates where applicable.

Rationale / impact

• Consolidates FIPS testing into upstream conformance jobs for more consistent, maintainable coverage across releases (4.16–5.0).
• Adds a lightweight node-level FIPS check to avoid running conformance when cluster nodes are not FIPS-enabled.
• Removes duplicated QE-only FIPS job blocks, aligning ownership with upstream CI while keeping other necessary private test coverage (IdP/OpenLDAP and extended scenarios) handled separately.

[openshift-ci-robot]

@mgencur: This pull request references CNTRLPLANE-3574 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the task to target the "5.0.0" version, but no target version was set.

Details

In response to this:

Partially covers https://redhat.atlassian.net/browse/CNTRLPLANE-3574 (only partially because we also need to migrate AKS FIPS tests and then remove old tests from openshift-tests-private)

• Add e2e-aws-ovn-conformance-fips periodic jobs (4.16-5.0)
• Add e2e-conformance-fips optional presubmit for main
• Remove fips-guest-f28-destructive and fips-mgmt-f14 from QE configs
• New hypershift-hostedcluster-fips-check ref (symlinks fips-check script)

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[coderabbitai]

Walkthrough

Adds a hostedcluster FIPS verification step, metadata and OWNERS; adds FIPS-enabled conformance periodics (4.16–5.0) that run the FIPS check then hypershift-conformance; and updates private-nightly hypershift job variants and a workflow skip list.

Changes

HyperShift FIPS Conformance Testing

Layer / File(s)	Summary
FIPS step registry and script ci-operator/step-registry/hypershift/hostedcluster/fips-check/*	New hypershift-hostedcluster-fips-check step (*.yaml, .metadata.json), execution script (hypershift-hostedcluster-fips-check-commands.sh), and simplified OWNERS. The script checks /proc/sys/crypto/fips_enabled on hosted cluster nodes using nested_kubeconfig from SHARED_DIR.
Main optional tests ci-operator/config/openshift/hypershift/openshift-hypershift-main.yaml	Adds optional e2e-conformance-fips and e2e-azure-aks-ovn-conformance-fips test entries that set EXTRA_ARGS: --fips, PUBLIC_ONLY: "true", use openshift/conformance/parallel/minimal, and run hypershift-hostedcluster-fips-check then hypershift-conformance.
Periodic FIPS conformance jobs (4.16–5.0) ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.*__periodics.yaml, ...release-5.0__periodics.yaml	Adds e2e-aws-ovn-conformance-fips (and matching Azure AKS variants where present) periodic entries across multiple releases. Each sets EXTRA_ARGS: --fips, PUBLIC_ONLY: "true", targets openshift/conformance/parallel/minimal, and chains hypershift-hostedcluster-fips-check → hypershift-conformance under the appropriate hypershift-* workflow.
Private nightly hypershift job updates ci-operator/config/openshift/openshift-tests-private/openshift-openshift-tests-private-release-4.*__amd64-nightly.yaml	Removes legacy aws-ipi-ovn-hypershift-fips-* job blocks and inserts updated hypershift OVN guest/mgmt jobs (external OIDC, IPsec, compliance, destructive/advanced/longduration, private/shared-VPC variants). Adds idp-openldap pre-step to some OpenLDAP guest jobs and reshuffles Azure AKS guest blocks across releases.
AWS conformance workflow skip list ci-operator/step-registry/hypershift/aws/conformance/hypershift-aws-conformance-workflow.yaml	Appended FIPS TestFIPS to TEST_SKIPS and added a FIPS-related FIXME comment.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Suggested labels

rehearsals-ack

Suggested reviewers

• sjenning
• bryan-cox
• hector-vido

---

Important

Pre-merge checks failed

Please resolve all errors before merging. Addressing warnings is optional.

❌ Failed checks (1 error)

Check name	Status	Explanation	Resolution
No-Sensitive-Data-In-Logs	❌ Error	hypershift-hostedcluster-fips-check-commands.sh echoes ${node} and “FIPS enabled/not enabled” per hosted cluster node, logging internal hostnames in CI logs.	Stop printing per-node hostnames (e.g., remove ${node} from echo lines) and log only aggregate pass/fail results or masked identifiers.

✅ Passed checks (14 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title describes the main objective: migrating FIPS testing on AWS and AKS to upstream. This aligns with the changeset, which adds upstream FIPS conformance tests and removes QE-specific FIPS tests.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names	✅ Passed	Repo changes are CI YAML/step-registry; searched all .go files for Ginkgo It/Describe/Context/When dynamic-title patterns and found none.
Test Structure And Quality	✅ Passed	Repo has no Ginkgo test code: 11 *_test.go files total, none contain ginkgo/Ginkgo keywords; no Go files contain ginkgo-like patterns (Describe/It/BeforeEach). PR only changes CI YAML/steps.
Microshift Test Compatibility	✅ Passed	PR changes include only CI/config/step-registry updates; scanning changed *.go files for ginkgo constructs (g.It/Describe/Context/When) found none.
Single Node Openshift (Sno) Test Compatibility	✅ Passed	PR 80394 only changes hypershift periodic YAML + fips-check step-registry scripts/workflow; no added Ginkgo/e2e Go test files (no test/.go changes found).
Topology-Aware Scheduling Compatibility	✅ Passed	Inspected hypershift periodic/main YAML, tests-private nightly YAML, and fips-check scripts for anti-affinity/topologySpread/node-role selectors/maxUnavailable:0; no such scheduling constraints wer...
Ote Binary Stdout Contract	✅ Passed	PR changes are YAML/step scripts; repo contains no Go sources for openshift-tests extension/OTE binaries (0 .go under those dirs), so no stdout JSON contract violations were introduced.
Ipv6 And Disconnected Network Test Compatibility	✅ Passed	Inspected PR-mentioned files: only hypershift CI YAML configs and fips-check bash/workflow changes; no new Go/Ginkgo e2e tests or IPv4-only networking/external internet connectivity found.
No-Weak-Crypto	✅ Passed	Scanned the hypershift FIPS-check/periodic and workflow YAML/scripts touched by the PR for MD5/SHA1/DES/RC4/3DES/Blowfish/ECB tokens (word-boundary); none found, and no custom crypto or secret comp...
Container-Privileges	✅ Passed	Scanned the PR’s referenced hypershift/step-registry CI configs for privileged/hostPID/hostNetwork/hostIPC/SYS_ADMIN/allowPrivilegeEscalation/runAsUser:0 keywords; none found (0 hits).
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[mgencur]

/pj-rehearse periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-aws-ovn-conformance-fips

[openshift-merge-bot]

@mgencur: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[mgencur]

/pj-rehearse periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-aws-ovn-conformance-fips

[openshift-merge-bot]

@mgencur: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In
`@ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-commands.sh`:
- Around line 13-21: The script currently loops over the result of oc get nodes
and silently passes if that list is empty; capture the node list into a variable
(e.g., nodes="$(oc get nodes -o jsonpath='{.items[*].metadata.name}')" or
similar), check if that variable is empty/unset before entering the for loop,
and if so print an explicit error ("no nodes returned") and set failed=1 and
exit non-zero (or return non-zero) so the job fails; then iterate over the nodes
variable (not invoking oc again for the list) and keep the existing per-node
check using oc debug node/"${node}" and the fips variable. Ensure you reference
and update the existing variables node, nodes, fips, and failed in the script.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Central YAML (inherited)

Review profile: CHILL

Plan: Enterprise

Run ID: c515c388-df95-446b-85fb-2a2400027ef4

📥 Commits

Reviewing files that changed from the base of the PR and between 71055bd and 0b41b36.

📒 Files selected for processing (14)

• ci-operator/config/openshift/hypershift/openshift-hypershift-main.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.16__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.17__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.18__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.19__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.20__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.21__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.22__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.23__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-5.0__periodics.yaml
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/OWNERS
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-commands.sh
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-ref.metadata.json
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-ref.yaml

🚧 Files skipped from review as they are similar to previous changes (12)

• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.21__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.20__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.23__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-main.yaml
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/OWNERS
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-5.0__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.22__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.16__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.19__periodics.yaml
• ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-ref.metadata.json
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.17__periodics.yaml
• ci-operator/config/openshift/hypershift/openshift-hypershift-release-4.18__periodics.yaml

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Fail explicitly when no nodes are returned instead of passing by default.

If oc get nodes yields an empty set, this check currently reports success without validating any node. For a conformance gate, that is a false positive.

Suggested patch

 failed=0
-for node in $(oc get nodes -o jsonpath='{.items[*].metadata.name}'); do
+nodes="$(oc get nodes -o jsonpath='{.items[*].metadata.name}')"
+if [[ -z "${nodes}" ]]; then
+  echo "FIPS check FAILED: no nodes returned from hosted cluster"
+  exit 1
+fi
+
+for node in ${nodes}; do
   fips=$(oc debug node/"${node}" -- cat /proc/sys/crypto/fips_enabled 2>/dev/null || echo "error")
   if [[ "${fips}" == "1" ]]; then
     echo "  ${node}: FIPS enabled"

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	for node in $(oc get nodes -o jsonpath='{.items[*].metadata.name}'); do
	fips=$(oc debug node/"${node}" -- cat /proc/sys/crypto/fips_enabled 2>/dev/null || echo "error")
	if [[ "${fips}" == "1" ]]; then
	echo " ${node}: FIPS enabled"
	else
	echo " ${node}: FIPS NOT enabled (got: ${fips})"
	failed=1
	fi
	done
	nodes="$(oc get nodes -o jsonpath='{.items[*].metadata.name}')"
	if [[ -z "${nodes}" ]]; then
	echo "FIPS check FAILED: no nodes returned from hosted cluster"
	exit 1
	fi
	for node in ${nodes}; do
	fips=$(oc debug node/"${node}" -- cat /proc/sys/crypto/fips_enabled 2>/dev/null || echo "error")
	if [[ "${fips}" == "1" ]]; then
	echo " ${node}: FIPS enabled"
	else
	echo " ${node}: FIPS NOT enabled (got: ${fips})"
	failed=1
	fi
	done

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In
`@ci-operator/step-registry/hypershift/hostedcluster/fips-check/hypershift-hostedcluster-fips-check-commands.sh`
around lines 13 - 21, The script currently loops over the result of oc get nodes
and silently passes if that list is empty; capture the node list into a variable
(e.g., nodes="$(oc get nodes -o jsonpath='{.items[*].metadata.name}')" or
similar), check if that variable is empty/unset before entering the for loop,
and if so print an explicit error ("no nodes returned") and set failed=1 and
exit non-zero (or return non-zero) so the job fails; then iterate over the nodes
variable (not invoking oc again for the list) and keep the existing per-node
check using oc debug node/"${node}" and the fips variable. Ensure you reference
and update the existing variables node, nodes, fips, and failed in the script.

[mgencur]

/hold
Depends on openshift/origin#31288 (the current PR needs some changes to skip the test for older branches, and to skip the new CI step for new branches where this pull/31288 is available).

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: mgencur
Once this PR has been reviewed and has the lgtm label, please assign enxebre, memodi for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• ci-operator/config/openshift/hypershift/OWNERS
• ci-operator/config/openshift/openshift-tests-private/OWNERS
• ci-operator/jobs/openshift/hypershift/OWNERS
• ci-operator/jobs/openshift/openshift-tests-private/OWNERS
• ci-operator/step-registry/hypershift/OWNERS [mgencur]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-merge-bot]

[REHEARSALNOTIFIER]
@mgencur: the pj-rehearse plugin accommodates running rehearsal tests for the changes in this PR. Expand 'Interacting with pj-rehearse' for usage details. The following rehearsable tests have been affected by this change:

Test name	Repo	Type	Reason
pull-ci-openshift-cluster-version-operator-main-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-5.1-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-5.0-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.23-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.22-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.21-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.20-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.19-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.18-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.17-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.16-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.15-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-version-operator-release-4.14-e2e-hypershift-conformance	openshift/cluster-version-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.19-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.18-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.17-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.16-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.15-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.14-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.13-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-csi-snapshot-controller-operator-release-4.12-e2e-hypershift-conformance	openshift/cluster-csi-snapshot-controller-operator	presubmit	Registry content changed
pull-ci-openshift-cluster-storage-operator-release-4.13-e2e-hypershift-ovn-conformance	openshift/cluster-storage-operator	presubmit	Registry content changed
pull-ci-openshift-openshift-controller-manager-master-e2e-hypershift-conformance	openshift/openshift-controller-manager	presubmit	Registry content changed
pull-ci-openshift-openshift-controller-manager-release-5.1-e2e-hypershift-conformance	openshift/openshift-controller-manager	presubmit	Registry content changed
pull-ci-openshift-openshift-controller-manager-release-5.0-e2e-hypershift-conformance	openshift/openshift-controller-manager	presubmit	Registry content changed

A total of 245 jobs have been affected by this change. The above listing is non-exhaustive and limited to 25 jobs.

A full list of affected jobs can be found here

Interacting with pj-rehearse

Comment: /pj-rehearse to run up to 5 rehearsals
Comment: /pj-rehearse skip to opt-out of rehearsals
Comment: /pj-rehearse {test-name}, with each test separated by a space, to run one or more specific rehearsals
Comment: /pj-rehearse more to run up to 10 rehearsals
Comment: /pj-rehearse max to run up to 25 rehearsals
Comment: /pj-rehearse auto-ack to run up to 5 rehearsals, and add the rehearsals-ack label on success
Comment: /pj-rehearse list to get an up-to-date list of affected jobs
Comment: /pj-rehearse abort to abort all active rehearsals
Comment: /pj-rehearse network-access-allowed to allow rehearsals of tests that have the restrict_network_access field set to false. This must be executed by an openshift org member who is not the PR author

Once you are satisfied with the results of the rehearsals, comment: /pj-rehearse ack to unblock merge. When the rehearsals-ack label is present on your PR, merge will no longer be blocked by rehearsals.
If you would like the rehearsals-ack label removed, comment: /pj-rehearse reject to re-block merging.

[mgencur]

/pj-rehearse periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-aws-ovn-conformance-fips periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-azure-aks-ovn-conformance-fips

[openshift-merge-bot]

@mgencur: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[mgencur]

/pj-rehearse periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-aws-ovn-conformance-fips periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-azure-aks-ovn-conformance-fips

[openshift-merge-bot]

@mgencur: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[openshift-ci]

@mgencur: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/rehearse/periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-aws-ovn-conformance-fips	40fa34d	link	unknown	/pj-rehearse periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-aws-ovn-conformance-fips
ci/rehearse/periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-azure-aks-ovn-conformance-fips	40fa34d	link	unknown	/pj-rehearse periodic-ci-openshift-hypershift-release-5.0-periodics-e2e-azure-aks-ovn-conformance-fips
ci/rehearse/periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-azure-aks-ovn-conformance-fips	40fa34d	link	unknown	/pj-rehearse periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-azure-aks-ovn-conformance-fips
ci/rehearse/periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-aws-ovn-conformance-fips	40fa34d	link	unknown	/pj-rehearse periodic-ci-openshift-hypershift-release-4.22-periodics-e2e-aws-ovn-conformance-fips

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.