2009-03-02 22:36:26

by Daniel Walsh

[permalink] [raw]
Subject: [refpolicy] system_udev.patch

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://people.fedoraproject.org/~dwalsh/SELinux/F11/system_udev.patch

Add file context for /var/run/PackageKit/udev

Switch interfaces to use udev_tbl_t

udev can exec helper apps

Searches dbugfs

Reads software raid, sends audit messages

Reads also lib

Executes the clock

Reads devicekit pid file.

Executes lvm commands

Search rm log files

We run it unconfined on Fedora.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAkmsX2oACgkQrlYvE4MpobNiUwCgwRX2BipvynvZr2pUtZvqvE5m
7P8An20CYCm/IzoEf3YBAWHTJnyyb4Nf
=pmiP
-----END PGP SIGNATURE-----


2009-03-19 18:21:38

by cpebenito

[permalink] [raw]
Subject: [refpolicy] system_udev.patch

On Mon, 2009-03-02 at 17:36 -0500, Daniel J Walsh wrote:
> http://people.fedoraproject.org/~dwalsh/SELinux/F11/system_udev.patch
>
> Add file context for /var/run/PackageKit/udev
>
> Switch interfaces to use udev_tbl_t
>
> udev can exec helper apps
>
> Searches dbugfs
>
> Reads software raid, sends audit messages
>
> Reads also lib
>
> Executes the clock
>
> Reads devicekit pid file.
>
> Executes lvm commands
>
> Search rm log files
>
> We run it unconfined on Fedora.

Merged.

--
Chris PeBenito
Tresys Technology, LLC
(410) 290-1411 x150