Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 424359 - Udev init script creates /run/udev/rules.d and /run/udev/data
Summary: Udev init script creates /run/udev/rules.d and /run/udev/data
Status: VERIFIED FIXED
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: SELinux (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: SE Linux Bugs
URL:
Whiteboard: sec-policy r14
Keywords:
Depends on:
Blocks: 424173
  Show dependency tree
 
Reported: 2012-07-01 11:46 UTC by Sven Vermeulen (RETIRED)
Modified: 2012-07-30 16:37 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Sven Vermeulen (RETIRED) gentoo-dev 2012-07-01 11:46:42 UTC 
The /etc/init.d/udev script creates /run/udev/rules.d and /run/udev/data, which should be labeled udev_tbl_t. However, no transition exists for these directories (from initrc_t) so they remain udev_var_run_t until they are relabeled.

We need to provide named file transitions for those two locations.

Reproducible: Always




Currently a discussion is ongoing on refpolicy ML about naming convention for such transitions.
Comment 1 Sven Vermeulen (RETIRED) gentoo-dev 2012-07-03 19:28:42 UTC 
Looks like this might need a major update (update all *_pid_filetrans to *_generic_pid_filetrans) which I'm in favor off. I'll try to do this in a gradual way (so at least first for udev so that we can have this fixed, then for all others).
Comment 2 Sven Vermeulen (RETIRED) gentoo-dev 2012-07-10 18:56:52 UTC 
Ok, will be in rev14. Seems that the "data" folder is created by udev, not by its init script.
Comment 3 Sven Vermeulen (RETIRED) gentoo-dev 2012-07-10 19:37:23 UTC 
In rev 14, available in hardened-dev overlay
Comment 4 Sven Vermeulen (RETIRED) gentoo-dev 2012-07-17 15:05:06 UTC 
Moved to main tree, ~arch'ed
Comment 5 Sven Vermeulen (RETIRED) gentoo-dev 2012-07-30 16:37:35 UTC 
Stabilized