Bug 607226 - udev lacks ACL rules for IOwarrior devices (with patch)
Summary: udev lacks ACL rules for IOwarrior devices (with patch)
Status: CLOSED WONTFIX
Alias: None
Product: Fedora
Classification: Fedora
Component: udev   
(Show other bugs)
Version: 13
Hardware: All
OS: Linux
low
medium
Target Milestone: ---
Assignee: Harald Hoyer
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Keywords:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2010-06-23 14:41 UTC by Bert DeKnuydt
Modified: 2010-06-25 14:19 UTC (History)
2 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-06-25 11:55:55 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

Description Bert DeKnuydt 2010-06-23 14:41:15 UTC
Description of problem:

Plug in a USB IOwarrior device.  The device-files appears where expected,
but are accessible only by root.  I'd expect them rw by whoever has
console access.

Version-Release number of selected component (if applicable):

udev-151-10.fc13.x86_64

How reproducible:

Always

Steps to Reproduce:
1. plug in e.g. an IO-warrior40 device 
2. see that no acl is set for the currently logged in user(s)
3.
  
Additional info:

This is similar to Bug 45642 once submitted by me, but that was the
hal solution.  

You could also use the more crude /etc/security/console.perms.d/ approach.

Patch:

Add this to /lib/udev/rules.d/70-acl.rules

-----------
# IOWarrior

SUBSYSTEM=="usb", ATTRS{idVendor}=="07c0", ATTRS{idProduct}=="1500", ENV{ACL_MANAGE}="1"
-----------

(And the same for idProduct 1501, 1503, 1511 and 1512, which are other
USB IOWarrior devices; there may be even more)

Comment 1 Harald Hoyer 2010-06-25 11:55:55 UTC
Hmm, please put this rule in your private /etc/udev/rules.d/70-iowarrior-acl.rules

We cannot permit general access by default. This is your private config.

Comment 2 Bert DeKnuydt 2010-06-25 14:19:42 UTC
Well, that's what I did actually.  

But I don't agree with the fact that it should be in private config.  

I see no difference between a iowarrior device and e.g. a USB music player or e.g. DVB stick: the user that can physically plug it in should be able to use it. 

That's of course not a technical issue, so it can be discussed...


Note You need to log in before you can comment on or make changes to this bug.