Miloslav Trmač (m...@volny.cz) said: > > A concrete action that we are going to take is to split the polkit daemon > > into its own subpackage. Then minimal / certifiable installs can contain > > clients that are using the polkit libraries, without pulling in the daemon. > > Polkit clients are already expected to handle this situation and fall back > > to allow only uid 0. All of this is documented in > > Hm, I don't like that much. Having two completely separate > authorization code paths in many software components makes it very > likely that the less frequently used code path will be buggy at least > in some components.
Applications are already supposed to be able to cope with polkitd not being present; it's not really an authorization code path as much as it is just good defensive coding. Bill -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
