nVIDIA binary driver audits generated by OpenGL apps
Andrew Farris
fedora at andrewfarris.com
Fri May 7 03:56:55 UTC 2004
On Thu, 2004-04-29 at 09:20 -0400, Daniel J Walsh wrote:
> diff -u base_user_macros.te~ base_user_macros.te
> --- base_user_macros.te~ 2004-04-29 09:18:03.882721648 -0400
> +++ base_user_macros.te 2004-04-29 09:18:58.802372592 -0400
> @@ -250,6 +250,9 @@
>
> ')dnl end ifdef xdm.te
>
> +# Access the special XServer devices.
> +allow $1_t xserver_misc_device_t:chr_file rw_file_perms;
> +
> # Access the sound device.
> allow $1_t sound_device_t:chr_file { getattr read write ioctl };
Ok, I must have had my policy slightly confused when I reported back
that policy-1.11.2-21 had this fix... it doesn't appear to be there
afterall. The other xserver_misc_devict_t changes are there, but not
this one.
Did this slip through the crack or are nVIDIA driver users targeted for
the relaxed policy perhaps?
--
Andrew Farris, CPE senior (California Polytechnic State University, SLO)
fedora at andrewfarris.com :: lmorgul on irc.freenode.net
"The only thing necessary for the triumph of evil is for good men
to do nothing." (Edmond Burke)
More information about the selinux
mailing list