[Swan-commit] Changes to ref refs/heads/main
Andrew Cagney
cagney at vault.libreswan.fi
Wed Apr 7 13:30:16 UTC 2021
New commits:
commit c9783475af893389cc5aaf034a2a12b7c5088775
Author: Andrew Cagney <cagney at gnu.org>
Date: Wed Apr 7 08:46:00 2021 -0400
testing selinux: drop another selinux sanitizer - temp-selinux-ignore.sed
Pull back the curtain on the selinux records being found by
post-mortem.sh but then hidden by a sanitizer.
For instance, ikev2-labeled-ipsec-03-multi-acquires-enforced, currently
fails because post-mortem.sh detects the record:
type=AVC msg=audit(1617773741.748:165): avc: denied { setcontext } for pid=752 comm="pluto" ...
but the sanitizer then hides it (all records are dumped into
OUTPUT/*.avsearch.log).
Presumably, either:
- the record is an expected and the test should check for
and then flush the record; that way post-mortem.sh can't
see it (this might be tricky)
or:
- something needs fixing and post-mortem DTRT
More information about the Swan-commit
mailing list