[Audit-test-developer] [PATCH 2/3] Fix tp/setcon test to use cc_mls_policy

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

From: Miroslav Vadkerti <mva...@re...>

The test now expects cc_mls_policy instead of lspp_policy.
Added check for failure syscall record.

Signed-off-by: Miroslav Vadkerti <mva...@re...>
---
 audit/trustedprograms/tests/test_setcon.bash |    5 ++++-
 1 files changed, 4 insertions(+), 1 deletions(-)

diff --git a/audit/trustedprograms/tests/test_setcon.bash b/audit/trustedprograms/tests/test_setcon.bash
index 58a0b71..3eef50a 100755
--- a/audit/trustedprograms/tests/test_setcon.bash
+++ b/audit/trustedprograms/tests/test_setcon.bash
@@ -38,7 +38,7 @@
 
 source testcase.bash || exit 2
 
-lspp_policy="lspp_policy"
+lspp_policy="cc_mls_policy"
 current_con=staff_u:lspp_test_r:lspp_harness_t:s0-s15:c0.c1023
 new_pass=staff_u:lspp_test_r:lspp_harness_t:SystemHigh
 new_fail_self=staff_u:lspp_test_r:lspp_test_generic_t:Secret
@@ -93,6 +93,9 @@ case $op:$? in
     fail_self:0)
 	exit_fail "runcon returned zero status" ;;
     fail_self:*)
+	augrok -q --seek=$log_mark type==SYSCALL syscall=write \
+		subj=$fail_self_con auid=$auid success=no \
+		|| exit_fail "syscall audit record missing"
 	exit_pass ;;
 esac
 
-- 
1.7.1





[Audit-test-developer] [PATCH 2/3] Fix tp/setcon test to use cc_mls_policy

Test suite for Linux audit and related security functionality

[Audit-test-developer] [PATCH 2/3] Fix tp/setcon test to use cc_mls_policy