Pushed out udev-024-3 to Fedora Core Development:
- added central config file for udev
/etc/sysconfig/udev which contains
# set USE_UDEV to yes, if you want to use udev # USE_UDEV="yes" # if selinux file attributes # should be restored (leave to yes, if unsure) UDEV_SELINUX="yes" # if console permissions (pam_console) # should be restored (leave to yes, if unsure) UDEV_CONSOLE="yes" # if dbus messages should be sent UDEV_DBUS="no" # if actions should be logged UDEV_LOG="no"
for that, I had to make /etc/hotplug.d/default/udev.hotplug a shell script, which tests for USE_UDEV and then exec's udevsend - added dbus, selinux and pam_console support through these scripts:
/etc/dev.d/default/dbus.dev /etc/dev.d/default/pam_console.dev /etc/dev.d/default/selinux.dev
- dbus.dev calls /usr/sbin/udev_dbus which has Kay's latest dbus patch.
- pam_console.dev calls pam_console_setowner, which is basically a modified pam_console_apply, which only modifies one file. (no glob on /dev, thus no readdir on /dev every time)
- selinux.dev just calls
# restorecon $DEVNAME
which makes udev_selinux somehow obsolete. There have be selinux policies written yet to let udev execute scripts from /etc/dev.d.
- set up the config file to use directories for permissions and rules
and wrote some basic rules and permissions as used by us
/etc/udev/permissions.d/ /etc/udev/permissions.d/00-udev.permissions /etc/udev/rules.d/ /etc/udev/rules.d/00-udev.rules
The directories can be used as a drop in for vendors and customers.