Skip to content

Partially revert #4396#4674

Open
LecrisUT wants to merge 1 commit intoteemtee:mainfrom
LecrisUT:chore/revert-flaky/4396
Open

Partially revert #4396#4674
LecrisUT wants to merge 1 commit intoteemtee:mainfrom
LecrisUT:chore/revert-flaky/4396

Conversation

@LecrisUT
Copy link
Contributor

@LecrisUT LecrisUT commented Mar 11, 2026
edited
Loading

@LecrisUT LecrisUT added ci | full test Pull request is ready for the full test execution review | trivial Very easy for review, even for beginners, so don't be afraid to have a look! :-) labels Mar 11, 2026
@github-project-automation github-project-automation bot moved this to backlog in planning Mar 11, 2026
@LecrisUT LecrisUT added the status | blocking other work An important pull request, blocking other pull requests or issues label Mar 11, 2026
@LecrisUT
Copy link
Contributor Author

LecrisUT commented Mar 11, 2026

/packit retest-failed

@bajertom bajertom mentioned this pull request Mar 11, 2026
Merged
17 tasks
@LecrisUT
Partially revert teemtee#4396
9e6c355 
Signed-off-by: Cristian Le <git@lecris.dev>
@LecrisUT LecrisUT force-pushed the chore/revert-flaky/4396 branch from e69aeb4 to 9e6c355 Compare March 12, 2026 13:25
@LecrisUT LecrisUT moved this from backlog to review in planning Mar 12, 2026
psss
psss reviewed Mar 12, 2026
View reviewed changes
tests/test/check/main.fmf
- how: avc
result: xfail
ignore-pattern:
- "type=AVC.*comm=systemd-coredum.*scontext=system_u:system_r:systemd_coredump_t"
Copy link
Contributor

@psss psss Mar 12, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could we add short comment explaining why this ignore-pattern is actually needed?

Copy link
Contributor Author

@LecrisUT LecrisUT Mar 12, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The previous tracker a few lines below

because: https://bugzilla.redhat.com/show_bug.cgi?id=2418343

still applies

@psss psss self-assigned this Mar 12, 2026
@LecrisUT LecrisUT changed the title Revert #4396 Partially revert #4396 Mar 12, 2026
thrix
thrix approved these changes Mar 15, 2026
View reviewed changes
Copy link
Contributor

@thrix thrix left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review: Partially revert #4396

Reviewed against commit 9e6c355.

Summary

Clean, focused PR that:

  1. Removes the blanket AVC xfail on mock/multiple-tests for fedora-44+ since BZ#2415701 is resolved in selinux-policy-43.1-1.fc43
  2. Replaces the blanket AVC xfail on test/check/coredump with targeted ignore-pattern entries for BZ#2418343

The change from result: xfail to specific ignore-pattern is strictly better — it catches real AVC issues while ignoring known false positives.

Observations

1. Default pattern re-inclusion is correct and necessary

The # From default pattern comment on the type=USER_AVC.*received policyload notice entry is accurate — specifying ignore-pattern explicitly replaces the default list (DEFAULT_IGNORE_PATTERNS in avc.py:75), so the default must be re-added manually. If the defaults change in the future, this test would need updating too.

2. The comm=systemd-coredum truncation is correct

The AVC comm field truncates to 15 characters — systemd-coredump (16 chars) becomes systemd-coredum. The .* suffix handles the rest of the line.

3. @psss's open comment

@psss asked for a short comment explaining why the ignore-pattern is needed. The existing because reference to BZ#2418343 is sufficient, but a one-line inline comment like # systemd-coredump AVC, tracked in BZ below wouldn't hurt for scannability.

Verdict

No issues found. LGTM.

Generated-by: Claude Code

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@psss psss psss left review comments

@happz happz happz approved these changes

@thrix thrix thrix approved these changes

Assignees

@psss psss

@therazix therazix

@bajertom bajertom

Labels

ci | full test Pull request is ready for the full test execution review | trivial Very easy for review, even for beginners, so don't be afraid to have a look! :-) status | blocking other work An important pull request, blocking other pull requests or issues

Projects

planning
Status: review

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@LecrisUT @happz @thrix @psss @therazix @bajertom