Bug 1257145
Summary: | Test case failure: /CoreOS/udev/Security/bz174845-CVE-2005-3631-dev_input-incorrect-permissions | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Karel Volný <kvolny> |
Component: | systemd | Assignee: | systemd-maint |
Status: | CLOSED DUPLICATE | QA Contact: | qe-baseos-daemons |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 7.2 | CC: | harald, lnykryn, systemd-maint-list, udev-maint-list |
Target Milestone: | rc | Keywords: | Regression, Reopened |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2015-10-07 14:12:33 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Karel Volný
2015-08-26 11:07:58 UTC
Due to the systemd rebase we now have a newer systemd, which has assigned group "input" assigned to /dev/input/* and thus permission 0660. This follows the systemd upstream behaviour and is the same on newer Fedora. As Harald mentioned this is expected behavior. (In reply to Harald Hoyer from comment #3) > Due to the systemd rebase we now have a newer systemd, which has assigned > group "input" assigned to /dev/input/* and thus permission 0660. this is a change of behaviour within the scope of one major release of RHEL I believe it deserves better explanation than "due to systemd", especially considering the fact that it had already been decided to set the permissions in some different way in the past - what has changed so that the previous decision is now wrong? if nothing else, this has to be documented > if nothing else, this has to be documented It is. https://access.redhat.com/articles/1611383 A new system group "input" has been introduced, and all input device nodes get this group assigned. This enables for system-level software to get access to input devices and complements what is already provided for "audio" and "video". (In reply to Lukáš Nykrýn from comment #6) > > if nothing else, this has to be documented > > It is. > > https://access.redhat.com/articles/1611383 ah, ok, thanks once upon a time, there used to be such info in Doc text in Bugzilla ... *** This bug has been marked as a duplicate of bug 1199644 *** |