Description

We currently test container runtime security with KubeArmor running in Kubernetes. However, KubeArmor also has the capability to secure Kubernetes nodes. As well as run in non-kubernetes mode and protect hosts.
So, we need to add tests for KubeArmor's host security functionalities.
The existing ginkgo test suite can be used for reference of what all has to be tested and can be extended further to test host functionalities.

Possible scenarios

• KubeArmorHostSecurityPolicy (hsp) enforcement
• Host visibility annotations/settings
• Host default posture

More scenarios from our deprecated bash test suite

Environments

• BPF LSM enforcer
• AppArmor