Commit Graph

16 Commits

Author SHA1 Message Date
Chris PeBenito cb68df0873 tests.yml: Add policy diff on PRs.
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2024-06-27 09:32:25 -04:00
Chris PeBenito 99258825ce tests.yml: Divide into reusable workflows.
Keep artifacts from each to allow analysis when there are failures.

Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2024-06-27 09:31:38 -04:00
Chris PeBenito 2ef9838dba tests.yml: Add sechecker testing.
Add initial privilege and integrity tests.

Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
2024-04-29 14:20:24 -04:00
Christian Göttsche 36c741c3c3 ci: bump SELint version to 1.5.0
Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
2024-01-10 17:02:12 +01:00
Chris PeBenito ee3610e3df tests.yml: Pin ubuntu 20.04.
Fix this issue:

Version 3.5 was not found in the local cache
Error: The version '3.5' with architecture 'x64' was not found for Ubuntu 22.04.

Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
2022-12-12 09:29:25 -05:00
Dave Sugar 847cffd32e Add 'DIRECT_INITRC' config to automated tests
Signed-off-by: Dave Sugar <dsugar100@gmail.com>
2022-10-07 20:55:29 -04:00
Chris PeBenito 0da5dff449 tests.yml: Remove irrelevant comment.
Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
2022-09-20 09:54:06 -04:00
Chris PeBenito 87119401a8
Revise userspace and SELint versions in CI
Revert checkpolicy to 3.1 and set SELint to 1.3.0.
2022-09-20 09:31:23 -04:00
Christian Göttsche e9429e0885 ci: build SELint from source
Disable newly added check C-008:

    usermanage.te:      581: (C): Identifier samba_domain_controller in expression for conditional block not found in own module, but in module samba (candidate for global declaration or interface) (C-008)
    mplayer.te:         122: (C): Identifier xserver_allow_dri in expression for conditional block not found in own module, but in module xserver (candidate for global declaration or interface) (C-008)
    nscd.te:            125: (C): Identifier samba_domain_controller in expression for conditional block not found in own module, but in module samba (candidate for global declaration or interface) (C-008)
    xguest.te:           44: (C): Identifier user_exec_noexattrfile in expression for conditional block not found in own module, but in module userdomain (candidate for global declaration or interface) (C-008)
    xguest.te:           48: (C): Identifier user_rw_noexattrfile in expression for conditional block not found in own module, but in module userdomain (candidate for global declaration or interface) (C-008)
    userdomain.if:     1278: (C): Identifier usbguard_user_modify_rule_files in expression for conditional block not found in own module, but in module usbguard (candidate for global declaration or interface) (C-008)
    Found the following issue counts:
    C-008: 6

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
2022-09-17 17:40:44 +02:00
Christian Göttsche 312457b21d ci: update dependencies
Update checkout action to v3
Update python-setup action to v4
Update SELinux userspace to 3.3

Also print basic output from apt-get to debug potential flaky failures.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
2022-09-17 17:35:00 +02:00
Chris PeBenito 7c3d94dd28 Run Ci tests in parallel.
Signed-off-by: Chris PeBenito <chpebeni@linux.microsoft.com>
2022-09-14 14:18:25 -04:00
Kenton Groombridge 082fbdfcb8 github: test install of udica templates
Signed-off-by: Kenton Groombridge <me@concord.sh>
2022-05-07 09:21:17 -04:00
Christian Göttsche 0e06f23e07 Revert "tests.yml: Disable policy_module() selint checks."
This reverts commit 5781a2393c.

SELint 1.2.1 supports the new policy_module syntax.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
2022-01-30 14:27:08 +01:00
Chris PeBenito 5781a2393c tests.yml: Disable policy_module() selint checks.
It does not support single-parameter policy_module().

Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2022-01-06 09:20:18 -05:00
Chris PeBenito d7c3c78c2d Drop criteria on github actions.
Either they do not have the desired effects or they are broken.

Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2020-12-08 12:31:00 -05:00
Chris PeBenito e7b9598865 Switch to GitHub actions for CI actions.
Signed-off-by: Chris PeBenito <pebenito@ieee.org>
2020-12-03 10:07:05 -05:00