generated from linux-system-roles/template
-
Notifications
You must be signed in to change notification settings - Fork 5
/
packit-ci.fmf
47 lines (41 loc) · 1.41 KB
/
packit-ci.fmf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
summary: run ansible system roles test with IMA policy setup
environment:
DOCKERFILE_AGENT: Dockerfile.agent
DOCKERFILE_SYSTEMD: Dockerfile.systemd
NETAVARK_FW: nftables
context:
swtpm: yes
agent: rust
prepare:
- how: shell
script:
- ln -s $(pwd) /var/tmp/keylime_server-role-sources
- systemctl disable --now dnf-makecache.service || true
- systemctl disable --now dnf-makecache.timer || true
- dnf makecache
discover:
- name: Configure_simple_IMA_policy
how: fmf
url: https://github.com/RedHat-SP-Security/keylime-tests
ref: "@.tmt/dynamic_ref.fmf"
test:
- /setup/configure_swtpm_device
- /setup/configure_kernel_ima_module/ima_policy_simple
- name: Run_keylime_server_role_tests
how: fmf
url: https://github.com/RedHat-SP-Security/keylime_server-role-tests.git
ref: main
test:
- /setup/install-upstream-keylime_server-role
- "/functional/.*"
adjust:
- when: distro != rhel-9 and distro == centos-stream-9 and distro != rhel-10 and distro == centos-stream-10
enabled: false
because: keylime_server role is RHEL-9 and RHEL-10 only
- when: distro == rhel-9 or distro == centos-stream-9
prepare+:
- how: shell
script:
- rpm -Uv https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm https://dl.fedoraproject.org/pub/epel/epel-next-release-latest-9.noarch.rpm || true
execute:
how: tmt