Bug 607226 - udev lacks ACL rules for IOwarrior devices (with patch)
udev lacks ACL rules for IOwarrior devices (with patch)
Status: CLOSED WONTFIX
Product: Fedora
Classification: Fedora
Component: udev (Show other bugs)
13
All Linux
low Severity medium
: ---
: ---
Assigned To: Harald Hoyer
Fedora Extras Quality Assurance
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2010-06-23 10:41 EDT by Bert DeKnuydt
Modified: 2010-06-25 10:19 EDT (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-06-25 07:55:55 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Bert DeKnuydt 2010-06-23 10:41:15 EDT
Description of problem:

Plug in a USB IOwarrior device.  The device-files appears where expected,
but are accessible only by root.  I'd expect them rw by whoever has
console access.

Version-Release number of selected component (if applicable):

udev-151-10.fc13.x86_64

How reproducible:

Always

Steps to Reproduce:
1. plug in e.g. an IO-warrior40 device 
2. see that no acl is set for the currently logged in user(s)
3.
  
Additional info:

This is similar to Bug 45642 once submitted by me, but that was the
hal solution.  

You could also use the more crude /etc/security/console.perms.d/ approach.

Patch:

Add this to /lib/udev/rules.d/70-acl.rules

-----------
# IOWarrior

SUBSYSTEM=="usb", ATTRS{idVendor}=="07c0", ATTRS{idProduct}=="1500", ENV{ACL_MANAGE}="1"
-----------

(And the same for idProduct 1501, 1503, 1511 and 1512, which are other
USB IOWarrior devices; there may be even more)
Comment 1 Harald Hoyer 2010-06-25 07:55:55 EDT
Hmm, please put this rule in your private /etc/udev/rules.d/70-iowarrior-acl.rules

We cannot permit general access by default. This is your private config.
Comment 2 Bert DeKnuydt 2010-06-25 10:19:42 EDT
Well, that's what I did actually.  

But I don't agree with the fact that it should be in private config.  

I see no difference between a iowarrior device and e.g. a USB music player or e.g. DVB stick: the user that can physically plug it in should be able to use it. 

That's of course not a technical issue, so it can be discussed...

Note You need to log in before you can comment on or make changes to this bug.