[PATCH] Apply ACLs even if acl list reading failed
lkundrak at redhat.com
Wed Mar 5 23:00:17 PST 2008
On Wed, 2008-03-05 at 22:20 +0100, Lubomir Kundrak wrote:
> List of applied ACLs can get corrupted, and that prevents hal-acl-tool
> from ever touching it again and fixing. Trivial fix attached.
> If that was due to a crash, etc, it is not valid any longer anyways. In
> that case probably it would make sense to relocate /var/lib/hal/acl-list
> into /var/run/hal, and let it be removed by operating system startup
Attaching simple diff that moves acl-list to /var/run from /var/lib, as
> This directory contains system information data describing the system
> since it was booted. Files under this directory must be cleared
> (removed or truncated as appropriate) at the beginning of the boot
Note that packagers will probably want to move the acl list in post
installation scriptlet when updating.
Lubomir Kundrak (Red Hat Security Response Team)
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 3501 bytes
Desc: not available
Url : http://lists.freedesktop.org/archives/hal/attachments/20080306/a8d0d6aa/attachment.bin
More information about the hal