QA:Testcase selinux-AVCs

From FedoraProject

(Difference between revisions)
Jump to: navigation, search
Line 4: Line 4:
  
 
=How to test=
 
=How to test=
Its expected you cleaned audit.log and run any of our test cases.
+
Its expected you had cleaned audit.log in the beginning of testing today and run any of our test cases.
 
Check your /var/log/audit/audit.log for selinux denial.
 
Check your /var/log/audit/audit.log for selinux denial.
 
  ausearch -m avc
 
  ausearch -m avc

Revision as of 08:01, 12 December 2012

Description

This is the test case to check if firewalld is not caused any AVC denial.

How to test

Its expected you had cleaned audit.log in the beginning of testing today and run any of our test cases. Check your /var/log/audit/audit.log for selinux denial.

ausearch -m avc

or

ausearch -ts today -m avc

or

grep den /var/log/audit/audit.log

Report results

  1. No AVC errors.
  2. In case there are some errors like bellow, please file the bug to component selinux-policy or paste link with audit.log
     type=AVC msg=audit(1355151140.473:243): avc:  denied  { create } for  pid=7236 comm="firewalld" ....