A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
Switch branches/tags
Nothing to show
Clone or download
pcmoore lost_reset: restore the backlog_limit and backlog_wait_time after tes…
…ting

Save the audit kernel status configuration before running the
lost_reset test and restore the backlog_limit and backlog_wait_time
settings if they exist on the system.

Signed-off-by: Paul Moore <paul@paul-moore.com>
Latest commit 49eb176 Nov 20, 2018

README.md

Basic Audit Regression Test Suite for the Linux Kernel

https://github.com/linux-audit/audit-testsuite

The audit-testsuite project provides a simple, self-contained regression test suite for the Linux Kernel's audit subsystem.

Online Resources

The test suite's source repository currently lives on GitHub at the following URL:

Installation

The audit-testsuite requires the audit userspace, a C compiler (gcc), Perl 5, and some additional Perl modules (see the list below). Some tests also require 32-bit glibc packages.

To install all these dependencies on your distribution on x86_64 architecture please follow the instructions below.

RHEL / Centos

# yum install audit \
              gcc \
              glibc.i686 \
              glibc-devel.i686 \
              libgcc.i686 \
              perl \
              perl-Test \
              perl-Test-Harness \
              perl-File-Which \
              perl-Time-HiRes \
              nmap-ncat

Fedora

# dnf install audit \
              gcc \
              glibc.i686 \
              glibc-devel.i686 \
              perl \
              perl-Test \
              perl-Test-Harness \
              perl-File-Which \
              perl-Time-HiRes \
              nmap-ncat

Debian Based Systems

# apt-get install auditd \
                  build-essential \
                  libc6-i386 \
                  perl-modules \
                  netcat

Execution

Please notice that tests are changing kernel audit rules and hence it might be a good idea to back them up prior testing and restore them afterwards. The tests need to be executed as root.

All of the commands listed below should be executed from the audit-testsuite top level directory.

Build the Tests

# make

List the Tests

# make list

Execute the Entire Test Suite

# make test

Execute a Subset of the Test Suite

# TESTS="test1 test2 ..." make -e test

Enable Additional Debugging Output

# ATS_DEBUG=1 make test