mirrors/meta-security
1
0
Fork 0
mirror of https://git.yoctoproject.org/meta-security synced 2026-05-07 04:58:47 +00:00
Code Issues Projects Releases Wiki Activity

oeqa: openscap test

Browse Source 
Add basic openscap test. This looks for an existing profile and run a basic scan.

Openscap scans return 1 in case of failure, 0 in case of success and 2 when a
vulnerability has been found. As this does not aim to check openscap reports, 2 is
considered as a successful test.

Signed-off-by: Louis Rannou <louis.rannou@non.se.com>
(added to test image)
Signed-off-by: Scott Murray <scott.murray@konsulko.com>
This commit is contained in:
Louis Rannou
2025-11-14 09:26:45 +01:00
committed by Scott Murray
parent 3b0ee6a7b6
commit a043f0b8ed
2 changed files with 49 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
recipes-core/images/security-test-image.bb
+1 -1
View File
@@ -12,7 +12,7 @@ IMAGE_INSTALL:append = "\
${@bb.utils.contains("BBFILE_COLLECTIONS", "integrity", "packagegroup-ima-evm-utils","", d)} \
"
TEST_SUITES = "ssh ping apparmor clamav samhain sssd checksec smack suricata aide firejail"
TEST_SUITES = "ssh ping apparmor clamav openscap samhain sssd checksec smack suricata aide firejail"
TEST_SUITES:append = " parsec tpm2 swtpm ima"
INSTALL_CLAMAV_CVD = "1"