Bug 427808
Summary: | Plugging in an 'old USB CD drive' generates AVCs | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Tom London <selinux> |
Component: | udev | Assignee: | Harald Hoyer <harald> |
Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | rawhide | CC: | dwalsh |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2008-04-13 15:35:00 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Tom London
2008-01-07 17:24:24 UTC
When I tried this on my machine, udev wanted to write /etc/udev/rules.d/70-persistent-cd.rules Which I think should be done in a post install not in the running of udev. no, writing /etc/udev/rules.d/70-persistent-cd.rules is intented. OK. So this file (others too?) are appended as new/different devices are plugged in. Here is current contents of 70-persistent-cd.rules: # This file was automatically generated by the /lib/udev/write_cd_rules # program, probably run by the cd-aliases-generator.rules rules file. # # You can modify it, as long as you keep each rule on a single line # and set the $GENERATED variable. # DVD-RAM_UJ-842 (pci-0000:00:1f.1-scsi-0:0:0:0) ENV{ID_CDROM}=="?*", ENV{ID_PATH}=="pci-0000:00:1f.1-scsi-0:0:0:0", SYMLINK+="cdrom", ENV{GENERATED}="1" ENV{ID_CDROM}=="?*", ENV{ID_PATH}=="pci-0000:00:1f.1-scsi-0:0:0:0", SYMLINK+="cdrw", ENV{GENERATED}="1" ENV{ID_CDROM}=="?*", ENV{ID_PATH}=="pci-0000:00:1f.1-scsi-0:0:0:0", SYMLINK+="dvd", ENV{GENERATED}="1" ENV{ID_CDROM}=="?*", ENV{ID_PATH}=="pci-0000:00:1f.1-scsi-0:0:0:0", SYMLINK+="dvdrw", ENV{GENERATED}="1" # IBM_USB_CD-ROM_Drive (pci-0000:00:1d.7-usb-0:6.3:1.0-scsi-0:0:0:0) ENV{ID_CDROM}=="?*", ENV{ID_SERIAL}=="TEAC_IBM_USB_CD-ROM_Drive_0000000005300129", SYMLINK+="cdrom1", ENV{GENERATED}="1" # IBM_USB_CD-ROM_Drive (pci-0000:00:1d.7-usb-0:6.3:1.0-scsi-0:0:0:0) ENV{ID_CDROM}=="?*", ENV{ID_PATH}=="pci-0000:00:1d.7-usb-0:6.3:1.0-scsi-0:0:0:0", SYMLINK+="cdrom2", ENV{GENERATED}="1" This is a Thinkpad X60. I have 2 'docks', one at home, one at work, each with a different CD/DVD drive (one is a DVD-ROM, the other a DVD-RW). This message was produced when I hot-plugged in a portable USB CD-ROM (an old, USB1 device). Seems a bit funny to be adding this to 'persistent' list, but I presume its description would need to be added somewhere... Harald, I know it is intended, I am questioning why? And why in /etc? /etc should usually be considered a read/only directory, And things that change should be in /var. /var/lib. /var/run, /var/cache. I can write SELinux rules to allow the cd rules to be written for this file and protect the others. But if this is really not a configuration file then it should be moved to another directory. SELinux likes to be able to write to entire directories instead of certain files in a directory. Hmm, I know. I'll talk to the udev author. This is a configuration file. The admin can configure persistent names. New devices are automatically added, if they appear. I can no longer reproduce this. Shall I presume it is fixed and close? close this bug. if it ever reoccures, then you can always reopen this bug. |