36 lines
1.1 KiB
Plaintext
36 lines
1.1 KiB
Plaintext
summary: run keylime e2e tests
|
|
|
|
# define context to filter out all test requiring TPM device
|
|
context:
|
|
swtpm: yes
|
|
|
|
prepare:
|
|
- how: shell
|
|
script:
|
|
- rm -f /etc/yum.repos.d/tag-repository.repo
|
|
- dnf config-manager --set-enabled updates-testing updates-testing-modular
|
|
- how: shell
|
|
order: 90
|
|
script:
|
|
- sed -i "s/tpm_hash_alg =.*/tpm_hash_alg = sha256/" /etc/keylime.conf
|
|
|
|
discover:
|
|
how: fmf
|
|
url: https://github.com/RedHat-SP-Security/keylime-tests
|
|
ref: main
|
|
test:
|
|
- /setup/configure_tpm_emulator
|
|
# change IMA policy to simple and run one attestation scenario
|
|
# this is to utilize also a different parser
|
|
- /setup/configure_kernel_ima_module/ima_policy_simple
|
|
- /functional/basic-attestation-on-localhost
|
|
# now change IMA policy to signing and run all tests
|
|
- /setup/configure_kernel_ima_module/ima_policy_signing
|
|
- "/functional/.*"
|
|
# now set zeromq as a default revocation notifier and test it
|
|
- /setup/configure_default_revocation_notifier/zeromq
|
|
- /functional/basic-attestation-on-localhost
|
|
|
|
execute:
|
|
how: tmt
|