Message ID | 20200820090824.3033-4-pvorel@suse.cz |
---|---|
State | Accepted |
Headers | show |
Series | IMA: verify measurement of certificate imported into a keyring | expand |
Hi, > --- a/testcases/kernel/security/integrity/ima/datafiles/Makefile > +++ b/testcases/kernel/security/integrity/ima/datafiles/Makefile > @@ -1,6 +1,8 @@ > # testcases/kernel/security/integrity/ima/policy testcases Makefile. > +# Copyright (c) Linux Test Project, 2019-2020 > +# Copyright (c) 2020 Microsoft Corporation > # Copyright (C) 2009, Cisco Systems Inc. > # This program is free software; you can redistribute it and/or modify > @@ -20,12 +22,10 @@ > # Ngie Cooper, July 2009 > -top_srcdir ?= ../../../../../.. > +top_srcdir ?= ../../../../../.. > include $(top_srcdir)/include/mk/env_pre.mk > -INSTALL_DIR := testcases/data/ima_policy > +SUBDIRS := ima_* It looks this broke build on out-of-tree build: https://travis-ci.org/github/linux-test-project/ltp/builds/722003659 https://travis-ci.org/github/linux-test-project/ltp/jobs/722003661 https://travis-ci.org/github/linux-test-project/ltp/jobs/722003662 https://travis-ci.org/github/linux-test-project/ltp/jobs/722003663 ... I'm sorry I overlooked that. I'll have look on Monday (unless anybody fixes it). Kind regards, Petr > -INSTALL_TARGETS := measure.policy-invalid *.policy > - > -include $(top_srcdir)/include/mk/generic_leaf_target.mk > +include $(top_srcdir)/include/mk/generic_trunk_target.mk
Hi, > > +SUBDIRS := ima_* I guess this could fix it: SUBDIRS := $(shell ls ima_*) I'm surprised that glob does not work on SUBDIRS. > It looks this broke build on out-of-tree build: > https://travis-ci.org/github/linux-test-project/ltp/builds/722003659 > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003661 > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003662 > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003663 > ... Kind regards, Petr
On Fri, 2020-08-28 at 15:28 +0200, Petr Vorel wrote: > Hi, > > > > +SUBDIRS := ima_* > I guess this could fix it: > SUBDIRS := $(shell ls ima_*) Other LTP makefiles are using "wildcard". Like this - $(wildcard ima_*/)? Mimi > > I'm surprised that glob does not work on SUBDIRS. > > > It looks this broke build on out-of-tree build: > > https://travis-ci.org/github/linux-test-project/ltp/builds/722003659 > > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003661 > > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003662 > > https://travis-ci.org/github/linux-test-project/ltp/jobs/722003663 > > ... > > Kind regards, > Petr
Hi, > > > +SUBDIRS := ima_* > I guess this could fix it: > SUBDIRS := $(shell ls ima_*) This didn't work. Fixed in 4231003f3. Kind regards, Petr
Hi Mimi, > On Fri, 2020-08-28 at 15:28 +0200, Petr Vorel wrote: > > Hi, > > > > +SUBDIRS := ima_* > > I guess this could fix it: > > SUBDIRS := $(shell ls ima_*) > Other LTP makefiles are using "wildcard". Like this - $(wildcard > ima_*/)? Thanks for a tip. But it looks like wildchard doesn't work on out-of-tree either: /usr/src/ltp/include/mk/generic_trunk_target.inc:97: *** SUBDIRS empty -- did you want generic_leaf_target instead?. Stop. It's visible only on powerpc64le-linux-gnu-gcc build, because that is the only one from out-of-tree builds which also does make install. (We removed make install from most of the builds in order 1) avoid sporadic build failures due lack of space on Travis docker 2) safe time.) Thus I fixed it in 4231003f3 with just simple listing the targets: -SUBDIRS := ima_* +SUBDIRS := ima_kexec ima_keys ima_policy Kind regards, Petr
diff --git a/testcases/kernel/security/integrity/ima/datafiles/Makefile b/testcases/kernel/security/integrity/ima/datafiles/Makefile index 369407112..6857ccfee 100644 --- a/testcases/kernel/security/integrity/ima/datafiles/Makefile +++ b/testcases/kernel/security/integrity/ima/datafiles/Makefile @@ -1,6 +1,8 @@ # # testcases/kernel/security/integrity/ima/policy testcases Makefile. # +# Copyright (c) Linux Test Project, 2019-2020 +# Copyright (c) 2020 Microsoft Corporation # Copyright (C) 2009, Cisco Systems Inc. # # This program is free software; you can redistribute it and/or modify @@ -20,12 +22,10 @@ # Ngie Cooper, July 2009 # -top_srcdir ?= ../../../../../.. +top_srcdir ?= ../../../../../.. include $(top_srcdir)/include/mk/env_pre.mk -INSTALL_DIR := testcases/data/ima_policy +SUBDIRS := ima_* -INSTALL_TARGETS := measure.policy-invalid *.policy - -include $(top_srcdir)/include/mk/generic_leaf_target.mk +include $(top_srcdir)/include/mk/generic_trunk_target.mk diff --git a/testcases/kernel/security/integrity/ima/datafiles/ima_kexec/Makefile b/testcases/kernel/security/integrity/ima/datafiles/ima_kexec/Makefile new file mode 100644 index 000000000..5e0d632a7 --- /dev/null +++ b/testcases/kernel/security/integrity/ima/datafiles/ima_kexec/Makefile @@ -0,0 +1,11 @@ +# SPDX-License-Identifier: GPL-2.0-or-later +# Copyright (c) Linux Test Project, 2020 + +top_srcdir ?= ../../../../../../.. + +include $(top_srcdir)/include/mk/env_pre.mk + +INSTALL_DIR := testcases/data/ima_kexec +INSTALL_TARGETS := *.policy + +include $(top_srcdir)/include/mk/generic_leaf_target.mk diff --git a/testcases/kernel/security/integrity/ima/datafiles/kexec.policy b/testcases/kernel/security/integrity/ima/datafiles/ima_kexec/kexec.policy similarity index 100% rename from testcases/kernel/security/integrity/ima/datafiles/kexec.policy rename to testcases/kernel/security/integrity/ima/datafiles/ima_kexec/kexec.policy diff --git a/testcases/kernel/security/integrity/ima/datafiles/ima_keys/Makefile b/testcases/kernel/security/integrity/ima/datafiles/ima_keys/Makefile new file mode 100644 index 000000000..452321843 --- /dev/null +++ b/testcases/kernel/security/integrity/ima/datafiles/ima_keys/Makefile @@ -0,0 +1,11 @@ +# SPDX-License-Identifier: GPL-2.0-or-later +# Copyright (c) Linux Test Project, 2020 + +top_srcdir ?= ../../../../../../.. + +include $(top_srcdir)/include/mk/env_pre.mk + +INSTALL_DIR := testcases/data/ima_keys +INSTALL_TARGETS := *.policy + +include $(top_srcdir)/include/mk/generic_leaf_target.mk diff --git a/testcases/kernel/security/integrity/ima/datafiles/keycheck.policy b/testcases/kernel/security/integrity/ima/datafiles/ima_keys/keycheck.policy similarity index 100% rename from testcases/kernel/security/integrity/ima/datafiles/keycheck.policy rename to testcases/kernel/security/integrity/ima/datafiles/ima_keys/keycheck.policy diff --git a/testcases/kernel/security/integrity/ima/datafiles/ima_policy/Makefile b/testcases/kernel/security/integrity/ima/datafiles/ima_policy/Makefile new file mode 100644 index 000000000..953e21556 --- /dev/null +++ b/testcases/kernel/security/integrity/ima/datafiles/ima_policy/Makefile @@ -0,0 +1,11 @@ +# SPDX-License-Identifier: GPL-2.0-or-later +# Copyright (c) Linux Test Project, 2020 + +top_srcdir ?= ../../../../../../.. + +include $(top_srcdir)/include/mk/env_pre.mk + +INSTALL_DIR := testcases/data/ima_policy +INSTALL_TARGETS := *.policy-invalid *.policy + +include $(top_srcdir)/include/mk/generic_leaf_target.mk diff --git a/testcases/kernel/security/integrity/ima/datafiles/measure.policy b/testcases/kernel/security/integrity/ima/datafiles/ima_policy/measure.policy similarity index 100% rename from testcases/kernel/security/integrity/ima/datafiles/measure.policy rename to testcases/kernel/security/integrity/ima/datafiles/ima_policy/measure.policy diff --git a/testcases/kernel/security/integrity/ima/datafiles/measure.policy-invalid b/testcases/kernel/security/integrity/ima/datafiles/ima_policy/measure.policy-invalid similarity index 100% rename from testcases/kernel/security/integrity/ima/datafiles/measure.policy-invalid rename to testcases/kernel/security/integrity/ima/datafiles/ima_policy/measure.policy-invalid