-
Notifications
You must be signed in to change notification settings - Fork 32
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Validate Syscheck whodata buffer behavior #3962
Labels
Comments
5 tasks
The manual testing will be not necesary as IT tests have been developed in Issue #3963 that is pending Jenkins Checks |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
This Issue aims to test the new FIM option
whodata_queue_size
that handles a new queue added for handling the messages that FIM receives from audit.Test Cases
Linux Test cases (Manager & Agent)
Configuration test cases
Scenario: Default value
Scenario: Valid values - whodata_queue_size is set to limit values
Scenario: Invalid values - whodata_queue_size is set to limit values
Scenario: Invalid values - whodata_queue_size has characters
Behavior test cases
Scenario: Queue does not overflow and drop events
Scenario: Queue overflows and drop events from single insertion
Scenario: Queue overflows and drop events - 2 Insertions - Drop from first set
Window Test cases Agent
Configuration test cases
Scenario: Default value
Scenario: Valid values - whodata_queue_size is set to limit values
Scenario: Invalid values - whodata_queue_size is set to limit values
Scenario: Invalid values - whodata_queue_size has characters
Behavior test cases
Scenario: Queue does not overflow and drop events
Scenario: Queue overflows and drop events from single insertion
Scenario: Queue overflows and drop events - 2 Insertions - Drop from first set
The text was updated successfully, but these errors were encountered: