Skip to content
Snippets Groups Projects
Commit f0b96a1d authored by Frederic Danis's avatar Frederic Danis
Browse files

apparmor: Update apparmor-session-lockdown-no-deny test


Replace aa_log_extract_tokens.pl by aa_log_extract_tokens.sh to remove
dependencies on auditd and libapparmor-perl packages.

Fixes: APERTIS-6233

Signed-off-by: default avatarFrédéric Danis <frederic.danis@collabora.com>
parent e37212c5
No related branches found
No related tags found
No related merge requests found
......@@ -17,6 +17,7 @@ metadata:
macro_install_packages_preconditions: apertis-tests-apparmor-report
apparmor-utils
aa-status
expected:
- "aa-status should show at least the following processes in complain mode:"
......@@ -32,18 +33,14 @@ metadata:
- "Note that there may be processes in other modes, such as in enforce mode,
uncontained, or complain mode. Also note that the confinement status of
profiles is irrelevant."
- "The aa_log_extract_tokens.pl command above should have no output."
- "The aa_log_extract_tokens.sh command above should have no output."
run:
steps:
- "First of all clean the auditd logs to ensure only new messages are seen:"
- $ echo -n | sudo tee /var/log/audit/audit.log
- "Then reboot the image."
- $ sudo reboot
- "Ensure pulseaudio is running:"
- $ pactl stat
- "No need to check the output of the command."
- "Now ensure AppArmor is enabled and working, by running aa-status:"
- $ sudo aa-status
- "Then ensure the audit log file has no AppArmor complaints:"
- $ sudo cat /var/log/audit/audit.log | sudo aa_log_extract_tokens.pl REJECTING
- $ sudo journalctl -b -t audit -o cat | ./aa_log_extract_tokens.sh DENIED
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment