[PATCH] Apply ACLs even if acl list reading failed
Lubomir Kundrak
lkundrak at redhat.com
Wed Mar 5 23:00:17 PST 2008
On Wed, 2008-03-05 at 22:20 +0100, Lubomir Kundrak wrote:
> List of applied ACLs can get corrupted, and that prevents hal-acl-tool
> from ever touching it again and fixing. Trivial fix attached.
>
> If that was due to a crash, etc, it is not valid any longer anyways. In
> that case probably it would make sense to relocate /var/lib/hal/acl-list
> into /var/run/hal, and let it be removed by operating system startup
> scripts.
Attaching simple diff that moves acl-list to /var/run from /var/lib, as
FHS suggests:
> This directory contains system information data describing the system
> since it was booted. Files under this directory must be cleared
> (removed or truncated as appropriate) at the beginning of the boot
> process.
Note that packagers will probably want to move the acl list in post
installation scriptlet when updating.
--
Lubomir Kundrak (Red Hat Security Response Team)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hal-0.5.11-acllist-dir.patch
Type: text/x-patch
Size: 3501 bytes
Desc: not available
Url : http://lists.freedesktop.org/archives/hal/attachments/20080306/a8d0d6aa/attachment.bin
More information about the hal
mailing list