From Fedora Project Wiki
No edit summary |
No edit summary |
||
| Line 17: | Line 17: | ||
# No AVC errors in profiles. | # No AVC errors in profiles. | ||
# In case there are some errors like bellow, please fill the bug: | # In case there are some errors like bellow, please fill the bug: | ||
#:<pre>type=SYSCALL msg=audit(10/10/2012 08:11:23.095:165) : arch=x86_64 syscall=statfs success=no exit=-13(Permission denied) | #:<pre>type=SYSCALL msg=audit(10/10/2012 08:11:23.095:165) : arch=x86_64 syscall=statfs success=no exit=-13(Permission denied) ...</pre> | ||
</pre> | |||
. | . | ||
}} | }} | ||
[[Category:Power_Management_Test_Cases]] | [[Category:Power_Management_Test_Cases]] | ||
Revision as of 12:24, 10 October 2012
Description
This test case tests tests all profiles enable and try to fing if there happen selinux AVCs in all profiles
Setup
- Check that you have
tuned package$ rpm -q tuned
- There must be installed tuned version 2 or newer (but not 1) and tuned-utils subpackage.
- If not install it:
# yum install tuned tuned-utils
How to test
- Start tuned (via systemd):
# systemctl start tuned.service
- Do test for all available profiles in tuned:
for I in `tuned-adm list | grep "^- " | cut -d ' ' -f 2` ; do dd if=/dev/null of=/var/log/audit/audit.log >& /dev/null; tuned-adm active ; tuned-adm profile $I ; sleep 5; ausearch -m avc -m user_avc -i ; done
Expected Results
- No AVC errors in profiles.
- In case there are some errors like bellow, please fill the bug:
type=SYSCALL msg=audit(10/10/2012 08:11:23.095:165) : arch=x86_64 syscall=statfs success=no exit=-13(Permission denied) ...
.