Bug 514798

Summary: Add user ACLs for /dev/rfkill
Product: [Fedora] Fedora Reporter: Bastien Nocera <bnocera>
Component: gnome-bluetoothAssignee: Harald Hoyer <harald>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: rawhideCC: bnocera, harald, libbe
Target Milestone: ---Keywords: Reopened
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-08-11 12:00:23 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 473303    

Description Bastien Nocera 2009-07-30 19:58:00 UTC
For gnome-bluetooth's killswitch code to work, the user on the local console needs to have access to /dev/rfkill.

Comment 1 Harald Hoyer 2009-07-31 11:09:30 UTC
posted to the hotplug mailing list

Comment 2 Harald Hoyer 2009-08-10 10:23:30 UTC
rejected

http://www.spinics.net/lists/hotplug/msg02404.html

Comment 3 Bastien Nocera 2009-08-10 10:56:10 UTC
I still need this as a stop-gap in the udev packages in Fedora 12, until we come up with a proper way to implement it.

The HAL provided killswitch interface stopped working with the new rfkill infrastructure in the kernel. So I ported this to the new infrastructure.

Unless somebody comes up and writes a daemon in the next day, what you'll end up with is a half-broken interface.

Comment 4 Harald Hoyer 2009-08-11 11:05:06 UTC
then add /lib/udev/rules.d/gnome-bluetooth.rules with:
KERNEL=="rfkill", ENV{ACL_MANAGE}="1"

and take responsibility for all security issues.

Comment 5 Bastien Nocera 2009-08-11 12:00:23 UTC
Done in rawhide, will request tagging for alpha.