Control: retitle -1 does not cleanup sessions when user logs out Cameron Norman [2014-09-28 14:35 -0700]: > While this is true, it seems that device permissions are actually removed > correctly.
Not here actually. At least under current Ubuntu, when I log out my "test" user, the automatic ACL on /dev/kvm persists as long as the corresponding logind session remains in "closing" state. This might look differently in other scenarios, but that it happens in some scenarios is IMHO enough to justify the high severity. I adjust the bug title as the "org.freedesktop.systemd1.Scope" part was implemented a while ago. Indeed the cgroups get cleaned up properly, just nothing tells logind about that as there is currently no notify_on_release being set/used. I'm looking into that now. Thanks, Martin -- Martin Pitt | http://www.piware.de Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org)
signature.asc
Description: Digital signature
