elfutils/elfutils-0.192-skip-ima-test.patch

From 36bd0ffe72f63a187902679823dfd50510bf7300 Mon Sep 17 00:00:00 2001
From: Aaron Merey <amerey@redhat.com>
Date: Fri, 13 Dec 2024 11:14:39 -0500
Subject: [PATCH] run-debuginfod-ima-verification.sh: Skip test 4

Test 4 requires `rpmsign --delfilesign` to remove IMA signatures.
RHEL 9 rpmsign does not currently support delfilesign, so skip this
test for now.
---
 tests/run-debuginfod-ima-verification.sh | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/tests/run-debuginfod-ima-verification.sh b/tests/run-debuginfod-ima-verification.sh
index d582af5f..a5e6eeb2 100755
--- a/tests/run-debuginfod-ima-verification.sh
+++ b/tests/run-debuginfod-ima-verification.sh
@@ -127,17 +127,17 @@ RC=0
 testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID || RC=1
 test $RC -ne 0
 
-echo Test 4: A rpm without a signature will fail
-cp signed.rpm R/signed.rpm
-rpmsign --delfilesign R/signed.rpm
-rm -rf $DEBUGINFOD_CACHE_PATH # clean it from previous tests
-kill -USR1 $PID1
-wait_ready $PORT1 'thread_work_total{role="traverse"}' 4
-wait_ready $PORT1 'thread_work_pending{role="scan"}' 0
-wait_ready $PORT1 'thread_busy{role="scan"}' 0
-RC=0
-testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID || RC=1
-test $RC -ne 0
+#echo Test 4: A rpm without a signature will fail
+#cp signed.rpm R/signed.rpm
+#rpmsign --delfilesign R/signed.rpm
+#rm -rf $DEBUGINFOD_CACHE_PATH # clean it from previous tests
+#kill -USR1 $PID1
+#wait_ready $PORT1 'thread_work_total{role="traverse"}' 4
+#wait_ready $PORT1 'thread_work_pending{role="scan"}' 0
+#wait_ready $PORT1 'thread_busy{role="scan"}' 0
+#RC=0
+#testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID || RC=1
+#test $RC -ne 0
 
 echo Test 5: Only tests 1,2 will result in extracted signature
 [[ $(curl -s http://127.0.0.1:$PORT1/metrics | grep 'http_responses_total{extra="ima-sigs-extracted"}' | awk '{print $NF}') -eq 2 ]]
-- 
2.47.1
0.192-5 - Enable debuginfod IMA verification - Add elfutils-0.192-fix-configure-conditional.patch - Add elfutils-0.192-skip-ima-test.patch Resolves: RHEL-69472 2024-12-12 22:01:41 +00:00			`From 36bd0ffe72f63a187902679823dfd50510bf7300 Mon Sep 17 00:00:00 2001`
			`From: Aaron Merey <amerey@redhat.com>`
			`Date: Fri, 13 Dec 2024 11:14:39 -0500`
			`Subject: [PATCH] run-debuginfod-ima-verification.sh: Skip test 4`

			Test 4 requires `rpmsign --delfilesign` to remove IMA signatures.
			`RHEL 9 rpmsign does not currently support delfilesign, so skip this`
			`test for now.`
			`---`
			`tests/run-debuginfod-ima-verification.sh \| 22 +++++++++++-----------`
			`1 file changed, 11 insertions(+), 11 deletions(-)`

			`diff --git a/tests/run-debuginfod-ima-verification.sh b/tests/run-debuginfod-ima-verification.sh`
			`index d582af5f..a5e6eeb2 100755`
			`--- a/tests/run-debuginfod-ima-verification.sh`
			`+++ b/tests/run-debuginfod-ima-verification.sh`
			`@@ -127,17 +127,17 @@ RC=0`
			`testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID \|\| RC=1`
			`test $RC -ne 0`

			`-echo Test 4: A rpm without a signature will fail`
			`-cp signed.rpm R/signed.rpm`
			`-rpmsign --delfilesign R/signed.rpm`
			`-rm -rf $DEBUGINFOD_CACHE_PATH # clean it from previous tests`
			`-kill -USR1 $PID1`
			`-wait_ready $PORT1 'thread_work_total{role="traverse"}' 4`
			`-wait_ready $PORT1 'thread_work_pending{role="scan"}' 0`
			`-wait_ready $PORT1 'thread_busy{role="scan"}' 0`
			`-RC=0`
			`-testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID \|\| RC=1`
			`-test $RC -ne 0`
			`+#echo Test 4: A rpm without a signature will fail`
			`+#cp signed.rpm R/signed.rpm`
			`+#rpmsign --delfilesign R/signed.rpm`
			`+#rm -rf $DEBUGINFOD_CACHE_PATH # clean it from previous tests`
			`+#kill -USR1 $PID1`
			`+#wait_ready $PORT1 'thread_work_total{role="traverse"}' 4`
			`+#wait_ready $PORT1 'thread_work_pending{role="scan"}' 0`
			`+#wait_ready $PORT1 'thread_busy{role="scan"}' 0`
			`+#RC=0`
			`+#testrun ${abs_top_builddir}/debuginfod/debuginfod-find executable $RPM_BUILDID \|\| RC=1`
			`+#test $RC -ne 0`

			`echo Test 5: Only tests 1,2 will result in extracted signature`
			`[[ $(curl -s http://127.0.0.1:$PORT1/metrics \| grep 'http_responses_total{extra="ima-sigs-extracted"}' \| awk '{print $NF}') -eq 2 ]]`
			`--`
			`2.47.1`