bottlerocket avc denial absence test

bottlerocket-os / bottlerocket-test-system

A system for testing Bottlerocket

Other

18 stars 21 forks source link

bottlerocket avc denial absence test #432

Open webern opened 2 years ago

webern commented 2 years ago

When running a normal container workload we want to check and make sure no selinux avc denials occur. This probably needs to be modeled as a workload test, and it cannot happen on the same node as a test that is checking that avc denials do occur (#433).

depends on:

webern commented 2 years ago

@bcressey this is of interest to you

bottlerocket-os / bottlerocket-test-system

bottlerocket avc denial absence test #432

419

429