hal/fdi/policy/10osvendor 10-security-policy.fdi, NONE,
1.1 Makefile.am, 1.8, 1.9
David Zeuthen
david at freedesktop.org
Sat Jan 21 08:54:06 PST 2006
- Previous message: hal/hald-runner main.c,1.1,1.2 runner.c,1.2,1.3
- Next message: hal/hald debug-hald.sh, 1.5, 1.6 hald.c, 1.46, 1.47 hald_dbus.c,
1.52, 1.53 hald_runner.c, 1.3, 1.4 hald_runner.h, 1.1,
1.2 run-hald.sh, 1.8, 1.9 valgrind-hald.sh, 1.2, 1.3
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Update of /cvs/hal/hal/fdi/policy/10osvendor
In directory gabe:/tmp/cvs-serv14173/fdi/policy/10osvendor
Modified Files:
Makefile.am
Added Files:
10-security-policy.fdi
Log Message:
2006-01-21 David Zeuthen <davidz at redhat.com>
* hald-runner/runner.c (find_program): Simply use glib convience
g_find_program_in_path() on the basename of the desired helper since
our allowed paths are now in $PATH
* hald-runner/main.c (main): Print out allowed paths
* hald/linux2/blockdev.c (add_blockdev_probing_helper_done): Fix up
indenting
* hald/hald_runner.h: Modify prototype of hald_runner_start_runner to
not take the path to the runner
* hald/hald_runner.c (hald_runner_start_runner): Use the flag
G_SPAWN_SEARCH_PATH to search for hald-runner. Export HALD_RUNNER_PATH
as PATH for the runner. Always include standard locations, e.g.
$(libexecdir) and $(datadir)/hal/scripts.
* hald/hald_dbus.c (hald_exec_method_cb): Check if there really
was an error
* hald/hald.c (usage): Remove usage for --with-runner
(main): Remove --with-runner option; just search $PATH for it
* hald/run-hald.sh, hald/debug-hald.sh, hald/valgrind-hald.sh:
Set $HALD_RUNNER_PATH and modify $PATH to include local hald-runner
* tools/hal-system-storage-mount: Read and enforce security policy
as specified in fdi/policy/10osvendor/10-security-policy.fdi
* fdi/policy/10osvendor/Makefile.am (dist_fdi_DATA):
Add 10-security-policy.fdi
* fdi/policy/10osvendor/10-security-policy.fdi: New file
--- NEW FILE: 10-security-policy.fdi ---
<?xml version="1.0" encoding="ISO-8859-1"?> <!-- -*- SGML -*- -->
<deviceinfo version="0.2">
<device>
<match key="info.udi" string="/org/freedesktop/Hal/devices/computer">
<append key="security_policy.system.storage.allow_uid_mount_fixed" type="strlist">0</append>
<clear key="security_policy.system.storage.allow_uid_mount_nonfixed" type="strlist" />
</match>
</device>
</deviceinfo>
Index: Makefile.am
===================================================================
RCS file: /cvs/hal/hal/fdi/policy/10osvendor/Makefile.am,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -d -r1.8 -r1.9
--- Makefile.am 12 Dec 2005 22:42:26 -0000 1.8
+++ Makefile.am 21 Jan 2006 16:54:03 -0000 1.9
@@ -2,6 +2,7 @@
fdidir = $(datadir)/hal/fdi/policy/10osvendor
dist_fdi_DATA = \
+ 10-security-policy.fdi \
10-storage-policy.fdi \
10-power-mgmt-policy.fdi \
10-laptop-panel-mgmt-policy.fdi \
- Previous message: hal/hald-runner main.c,1.1,1.2 runner.c,1.2,1.3
- Next message: hal/hald debug-hald.sh, 1.5, 1.6 hald.c, 1.46, 1.47 hald_dbus.c,
1.52, 1.53 hald_runner.c, 1.3, 1.4 hald_runner.h, 1.1,
1.2 run-hald.sh, 1.8, 1.9 valgrind-hald.sh, 1.2, 1.3
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the hal-commit
mailing list