From Fedora Project Wiki

(Initial)
 
(remove httpd dependency)
Line 5: Line 5:
 
* If you don't have an account on [https://bugzilla.redhat.com Bugzilla], [https://bugzilla.redhat.com/createaccount.cgi create] one.
 
* If you don't have an account on [https://bugzilla.redhat.com Bugzilla], [https://bugzilla.redhat.com/createaccount.cgi create] one.
 
|actions=
 
|actions=
# Following packages are required: audit, setroubleshoot-server, httpd. Run following command to install them  {{command|su -c 'yum -y install audit setroubleshoot-server httpd'}}
+
# Following packages are required: audit, setroubleshoot-server. Run following command to install them  {{command|su -c 'yum -y install audit setroubleshoot-server'}}
 
# Start audit daemon - {{command|systemctl start auditd.service}}
 
# Start audit daemon - {{command|systemctl start auditd.service}}
 
# Check whether selinux is in ''Enforcing'' mode via {{command|getenforce}} command. If not run {{command|setenforce Enforcing}}
 
# Check whether selinux is in ''Enforcing'' mode via {{command|getenforce}} command. If not run {{command|setenforce Enforcing}}
# To generate selinux denial, edit ''/etc/httpd/conf/httpd.conf'' and find line with '''Listen 80''' directive. Then update the port number to 81 and save the file
+
# To generate selinux denial, run {{command|su -}} to log-in as root, then run the following command: {{command|cd /root; passwd --help >& output.txt}}.
# Start or restart http daemon via {{command|systemctl start httpd.service}} command
+
# New SELinux security alert pop-up should be displayed.
# Daemon should fail to initialize with "Job failed." message and New SELinux security alert pop-up should be displayed.
 
 
# Click the ''Show'' button on the displayed pop-up or click on the tray icon. Alternatively you can run {{command|sealert -b}} to open the alert browser.
 
# Click the ''Show'' button on the displayed pop-up or click on the tray icon. Alternatively you can run {{command|sealert -b}} to open the alert browser.
# Find httpd denial (use ''List all alerts'' if there are more alerts detected) and click the ''Troubleshoot'' button.
+
# Find passwd denial (use ''List all alerts'' if there are more alerts detected) and click the ''Troubleshoot'' button.
 
# Select the solution which enables the ''Report Bug'' button, select the button and proceed with ''Submit report''
 
# Select the solution which enables the ''Report Bug'' button, select the button and proceed with ''Submit report''
 
# Try to report the problem via Bugzilla, at ''Confirm data to report'' page edit the ''reason'' field to contain "ABRT testing, please disregard"
 
# Try to report the problem via Bugzilla, at ''Confirm data to report'' page edit the ''reason'' field to contain "ABRT testing, please disregard"

Revision as of 12:56, 23 September 2011

Description

  • This test case tests libreport integration with sealert tool
  • Bugzilla account is required for this test
  • If you don't have an account on Bugzilla, create one.


How to test

  1. Following packages are required: audit, setroubleshoot-server. Run following command to install them su -c 'yum -y install audit setroubleshoot-server'
  2. Start audit daemon - systemctl start auditd.service
  3. Check whether selinux is in Enforcing mode via getenforce command. If not run setenforce Enforcing
  4. To generate selinux denial, run su - to log-in as root, then run the following command: cd /root; passwd --help >& output.txt.
  5. New SELinux security alert pop-up should be displayed.
  6. Click the Show button on the displayed pop-up or click on the tray icon. Alternatively you can run sealert -b to open the alert browser.
  7. Find passwd denial (use List all alerts if there are more alerts detected) and click the Troubleshoot button.
  8. Select the solution which enables the Report Bug button, select the button and proceed with Submit report
  9. Try to report the problem via Bugzilla, at Confirm data to report page edit the reason field to contain "ABRT testing, please disregard"
  10. Proceed to reporting using "Forward"/"Apply" buttons
  11. Close newly created bug with CLOSED NOTABUG
  12. If reporting is unsuccessful, please include the reporting log. Reporting log can be cut and pasted from the GUI report window.

Expected Results

  1. Log message should appear, with information about the crash and a link to the reported bug
  2. A bug entry should be filed in Bugzilla, the entry should be assigned to the selinux-policy package.

After completing this test case, please close the bug as NOTABUG.