From: guido@trentalancia.net (Guido Trentalancia)
Date: Sun, 30 Apr 2017 20:13:19 +0200
Subject: [refpolicy] [PATCH 3/7] init: smoother system boot
In-Reply-To: <201704301606.08179.russell@coker.com.au>
References: <1493489850.7586.11.camel@trentalancia.net>
	<201704301606.08179.russell@coker.com.au>
Message-ID: <9784FD6E-35E1-428D-A765-B66FEAD38D5B@trentalancia.net>
To: refpolicy@oss.tresys.com
List-Id: refpolicy.oss.tresys.com

Hi!

I don't think so. It is the file descriptor of the pseudo terminal.

It is required for printing out boot stage information (such as status of launched services) to the correct terminal... 

I hope this helps. 

Regards, 

Guido 

On the 30th of April 2017 08:06:08 CEST, Russell Coker <russell@coker.com.au> wrote:
>On Sun, 30 Apr 2017 04:17:30 AM Guido Trentalancia via refpolicy wrote:
>> +kernel_use_fds(initrc_t)
>
>Why is this needed?
>
>If a kernel fd is inherited by init_t and then passed on to initrc_t
>then it's 
>probably a fd leak which should be fixed.
>
>Maybe this is a candidate for ifdef(`hide_broken_symptoms',`...