This repository automatically runs Falco scap-open binary on all supported drivers through Ansible, spawning Firecracker microVMs to test Falco drivers against multiple kernels.
You can find list of machines being used here.
- Install Ansible
- Install Ignite from
therealbobofork (usemainbranch): https://github.com/therealbobo/ignite
Configure an ssh key pair into the /group_vars/all/vars.yml file 👇
#####################
# SSH configuration #
#####################
#Path to the generated SSH private key file
ssh_key_path: "" # <-- Replace here with the key path
ssh_key_name: "" # <-- Replace here with the key name
#Path to the private key
prv_key_path: "{{ssh_key_path}}/{{ssh_key_name}}"
#path to the public key used to ssh to the machines, if this key does not exist then a new one is generated with the same name
pub_key_path: "{{ssh_key_path}}/{{ssh_key_name}}.pub"You need to provide the path to the key pair (ssh_key_path) and the name of the key pair (ssh_key_name)
From the ansible-playbooks directory you can run tests on all machines by typing:
ansible-playbook main-playbook.yml --ask-become To rerun tests:
ansible-playbook scap-open.yml --ask-become ansible-playbook clean-up.yml --ask-become