QA:Testcase selinux-AVCs

From FedoraProject

(Difference between revisions)
Jump to: navigation, search
Line 6: Line 6:
  
 
Check your /var/log/audit/audit.log for selinux denial.
 
Check your /var/log/audit/audit.log for selinux denial.
 +
ausearch -m avc
 +
or
 
  ausearch -ts today -m avc
 
  ausearch -ts today -m avc
 
or
 
or

Revision as of 10:38, 11 December 2012

Description

This is the test case to check if firewalld is not caused any AVC denial.

How to test

Check your /var/log/audit/audit.log for selinux denial.

ausearch -m avc

or

ausearch -ts today -m avc

or

grep den /var/log/audit/audit.log

Report results

  1. No AVC errors.
  2. In case there are some errors like bellow, please file the bug to component selinux-policy or paste link with audit.log
     type=AVC msg=audit(1355151140.473:243): avc:  denied  { create } for  pid=7236 comm="firewalld" ....