[systemd-bugs] [Bug 81105] New: systemd reuses SELinux kernel AV

Wed Jul 9 06:38:22 PDT 2014

https://bugs.freedesktop.org/show_bug.cgi?id=81105

          Priority: medium
            Bug ID: 81105
          Assignee: systemd-bugs at lists.freedesktop.org
           Summary: systemd reuses SELinux kernel AV
        QA Contact: systemd-bugs at lists.freedesktop.org
          Severity: normal
    Classification: Unclassified
                OS: All
          Reporter: l.bigonville at edpnet.be
          Hardware: Other
            Status: NEW
           Version: unspecified
         Component: general
           Product: systemd

Hello,

When trying help at creating a SELinux policy for systemd I found that systemd
was associating userspace permissions the "system" security class (a kernel
class).

According to one of the writer of the refpolicy it is not a good idea to mix
kernel and userspace permissions:

http://oss.tresys.com/pipermail/refpolicy/2014-July/007237.html

I'm not sure what should be done here, maybe a new "systemd" class should be
created for this? Any idea?

Also, as a side note I didn't found any documentation about all these
permissions and their usage. Did I overlooked something?

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/systemd-bugs/attachments/20140709/43d82d56/attachment.html>