QA:Testcase selinux-AVCs

From FedoraProject

(Difference between revisions)
Jump to: navigation, search
(init)
 
Line 6: Line 6:
  
 
Check your /var/log/audit/audit.log for selinux denial.
 
Check your /var/log/audit/audit.log for selinux denial.
  ausearch -ts yesterday -m avc
+
  ausearch -ts today -m avc
 
or
 
or
 
  grep den /var/log/audit/audit.log
 
  grep den /var/log/audit/audit.log

Revision as of 10:37, 11 December 2012

Description

This is the test case to check if firewalld is not caused any AVC denial.

How to test

Check your /var/log/audit/audit.log for selinux denial.

ausearch -ts today -m avc

or

grep den /var/log/audit/audit.log

Report results

  1. No AVC errors.
  2. In case there are some errors like bellow, please file the bug to component selinux-policy or paste link with audit.log
     type=AVC msg=audit(1355151140.473:243): avc:  denied  { create } for  pid=7236 comm="firewalld" ....