tests/kola: Add lockdown LSM test #3326
Conversation
travier
force-pushed
the
lockdown-lsm
branch
2 times, most recently
from
4f6d317 to
709c6cd
Compare
tests/kola/security/lockdown
Outdated
| #!/bin/bash | ||
| ## kola: | ||
| ## exclusive: false | ||
| ## description: Verify that the lockdown LSM is set to integrity. |
There was a problem hiding this comment.
This needs some special tagging so it only runs on Secure Boot, but I don't think we have something yet, so it'll likely need some kola work.
And also architectures: x86_64.
|
Will rebase / update once https://bodhi.fedoraproject.org/updates/FEDORA-2025-cca2fcc70c lands in FCOS. |
|
Updated to account for both Secure Boot and non-SB runs. This should work on all architectures but running it only on x86_64 and aarch64 makes sense.
Hum, do you mean that we should add a special kola tag so that it runs this test in a SB enabled VM? We indeed don't run the general kola tests with SB enabled AFAIK. |
See: https://bugzilla.redhat.com/show_bug.cgi?id=2333706
Will fail until https://bugzilla.redhat.com/show_bug.cgi?id=2333706 is fixed.