[Bug 538064] New: GDM/Gnome not starting
http://bugzilla.novell.com/show_bug.cgi?id=538064 Summary: GDM/Gnome not starting Classification: openSUSE Product: openSUSE 11.2 Version: Milestone 7 Platform: x86-64 OS/Version: openSUSE 11.1 Status: NEW Severity: Blocker Priority: P5 - None Component: GNOME AssignedTo: bnc-team-gnome@forge.provo.novell.com ReportedBy: holgi@novell.com QAContact: qa@suse.de Found By: Component Test Created an attachment (id=317622) --> (http://bugzilla.novell.com/attachment.cgi?id=317622) gdm.tgz I installed Gnome with autosetup and automatic login of a new created local user (clean home) but instead of stating GDM or Gnome I just see the busy mouse symbol... So the system is unuseable. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c1 --- Comment #1 from Holger Sickenberg <holgi@novell.com> 2009-09-10 07:20:35 MDT --- Created an attachment (id=317623) --> (http://bugzilla.novell.com/attachment.cgi?id=317623) y2logs.tgz -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User coolo@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c2 --- Comment #2 from Stephan Kulow <coolo@novell.com> 2009-09-10 07:21:47 MDT --- gnome install worked on my system and the clock jump is something that is triggered by the kernel-desktop, not specific to GNOME -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c3 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO CC| |vuntz@novell.com Info Provider| |holgi@novell.com --- Comment #3 from Vincent Untz <vuntz@novell.com> 2009-09-10 07:27:48 MDT --- What processes from your user are running when this is happening? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c4 Holger Sickenberg <holgi@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|holgi@novell.com | --- Comment #4 from Holger Sickenberg <holgi@novell.com> 2009-09-10 07:33:03 MDT --- 1770 col 20 0 133m 6124 4760 S 0 0.1 0:00.29 gnome-session 2146 col 20 0 24020 812 512 S 0 0.0 0:00.00 dbus-launch 2167 col 20 0 21144 928 644 S 0 0.0 0:00.01 dbus-daemon 2417 col 20 0 46328 6208 2324 S 0 0.1 0:00.17 gconfd-2 2533 col 20 0 63380 1488 876 S 0 0.0 0:00.00 gnome-keyring-d 2641 col 20 0 195m 4524 3088 S 0 0.1 0:00.11 pulseaudio 2642 col 20 0 200m 18m 8720 S 0 0.2 0:00.20 python 3297 col 20 0 89856 3404 2656 S 0 0.0 0:00.01 gconf-helper -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c5 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |holgi@novell.com --- Comment #5 from Vincent Untz <vuntz@novell.com> 2009-09-10 08:35:06 MDT --- Can you change /usr/bin/gnome to launch gnome-session with --debug (last line of the script), and then attach, hrm, .xsession-errors, I guess? (or find a way to redirect the output to a file) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c6 --- Comment #6 from Holger Sickenberg <holgi@novell.com> 2009-09-10 09:55:00 MDT --- Created an attachment (id=317667) --> (http://bugzilla.novell.com/attachment.cgi?id=317667) xsession-errors -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c7 --- Comment #7 from Holger Sickenberg <holgi@novell.com> 2009-09-10 09:55:38 MDT --- Created an attachment (id=317668) --> (http://bugzilla.novell.com/attachment.cgi?id=317668) photo1.jpg -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c8 Holger Sickenberg <holgi@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|holgi@novell.com | --- Comment #8 from Holger Sickenberg <holgi@novell.com> 2009-09-10 09:57:08 MDT --- Created an attachment (id=317669) --> (http://bugzilla.novell.com/attachment.cgi?id=317669) photo2.jpg With --debug gnome starts and prints to error messages (photo1) additional output -> photo2 xsession-errors attached -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flag| |SHIP_STOPPER+ -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c10 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |holgi@novell.com --- Comment #10 from Vincent Untz <vuntz@novell.com> 2009-09-14 08:27:59 MDT --- Indeed, all apps are basically failing with "Unable to open display ':0.0'" or "Cannot open display: No protocol specified". The error messages in photo1 are just panel applets not being started -- that could be because of the same issue. In photo2, we just see that PA cannot start for the same reason (although, interestingly, it says that a PA daemon is already running). So a few questions from there: + is it an install from scratch? An upgrade? + are all packages from factory? + does it happen if you remove autologin from gdm? + does it happen if you try to log in KDE or XFCE or...? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c11 --- Comment #11 from Holger Sickenberg <holgi@novell.com> 2009-09-14 09:23:28 MDT --- + clean install of Milestone 7 (openSUSE-DVD-x86_64-Build0268) + no, from DVD (openSUSE-DVD-x86_64-Build0268) + gdm comes up fine + login manually from gdm works fine A guess from my side. The hostname is set to "linux-something" by automatic installation but will change to "colfax" later by dhcp. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User holgi@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c12 Holger Sickenberg <holgi@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|holgi@novell.com | --- Comment #12 from Holger Sickenberg <holgi@novell.com> 2009-09-14 09:23:51 MDT --- reset of need info -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User coolo@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c13 --- Comment #13 from Stephan Kulow <coolo@novell.com> 2009-09-16 09:07:48 MDT --- wow, why should this appear out of the sudden with M7? Vincent, did you remove gdm-xauthlocalhostname.patch by chance? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-gnome@forge.provo. |vuntz@novell.com |novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User dominique.leuenberger@tmf-group.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c14 Dominique Leuenberger <dominique.leuenberger@tmf-group.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dominique.leuenberger@tmf-g | |roup.com --- Comment #14 from Dominique Leuenberger <dominique.leuenberger@tmf-group.com> 2009-09-18 16:19:06 MDT --- That patch was removed / fixed upstream in an alternative way with the update to 2.26.1 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User coolo@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c15 --- Comment #15 from Stephan Kulow <coolo@novell.com> 2009-09-25 05:45:41 MDT --- I claim it's not fixed upstream. It's easy to verify: 1. boot a GNOME live cd 2. click away 700 annoying popups 3. start a terminal 4. hostname -> "linux" 5. try xset q -> output 6. sudo hostname newone 7. hostname -> "newone" 8. xset q -> "unable to open display" Now why the patch is necessary: 9. export XAUTHLOCALHOSTNAME=linux 10. xset q -> output -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User coolo@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c16 --- Comment #16 from Stephan Kulow <coolo@novell.com> 2009-09-25 05:46:12 MDT --- (Holger, can you make sure my #15 becomes a testopia testcase? :) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c17 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |eich@novell.com --- Comment #17 from Vincent Untz <vuntz@novell.com> 2009-09-28 02:37:59 MDT --- Egbert: do you know why setting XAUTHLOCALHOSTNAME is not done in the X11 scripts that start a session? (will probably take back the parts of the old patches that deal with this anyway, so that the issue is fixed asap) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c18 --- Comment #18 from Vincent Untz <vuntz@novell.com> 2009-09-28 06:53:06 MDT --- Egbert: also, I guess this change should be done upstream, right? Is there any doc I can link to that gives a good rationale for it? (https://bugzilla.gnome.org/show_bug.cgi?id=555464 would be a related upstream bug) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c19 --- Comment #19 from Vincent Untz <vuntz@novell.com> 2009-09-28 06:56:59 MDT --- Fix submitted to openSUSE:Factory (#21201). Keeping the bug NEEDINFO for Egbert's answers, but it should be closed afterwards. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Flag|SHIP_STOPPER+ |SHIP_STOPPER- -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User eich@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c20 Egbert Eich <eich@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |eich@novell.com --- Comment #20 from Egbert Eich <eich@novell.com> 2009-09-30 08:49:43 MDT --- (In reply to comment #17)
Egbert: do you know why setting XAUTHLOCALHOSTNAME is not done in the X11 scripts that start a session (like /etc/X11/xdm/Xsession)?
Do you mean in .xinitrc or in the (x)dm session script? It could be done in xinitrc i guess but this file rarely gets updated by the user. Also the display manager has the host name at the time the authorization was set. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c21 --- Comment #21 from Vincent Untz <vuntz@novell.com> 2009-09-30 08:57:23 MDT --- (In reply to comment #20)
(In reply to comment #17)
Egbert: do you know why setting XAUTHLOCALHOSTNAME is not done in the X11 scripts that start a session (like /etc/X11/xdm/Xsession)?
Do you mean in .xinitrc or in the (x)dm session script?
I'm thinking of the scripts in /etc/X11/
It could be done in xinitrc i guess but this file rarely gets updated by the user. Also the display manager has the host name at the time the authorization was set.
Well, the thing is that we set XAUTHLOCALHOSTNAME to localhost, so no need to know the host name... -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User eich@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c22 --- Comment #22 from Egbert Eich <eich@novell.com> 2009-09-30 09:23:09 MDT --- (In reply to comment #18)
Egbert: also, I guess this change should be done upstream, right? Is there any doc I can link to that gives a good rationale for it?
(https://bugzilla.gnome.org/show_bug.cgi?id=555464 would be a related upstream bug)
This issue has been discussed in bnc98627. There was an upstream mail thread where Keith Packard himself proposed a different solution which however didn't solve the issue in question. The discussion did not continue after that. Therefore this code wasn't upstreamed. I may give it another try some day. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User eich@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c23 --- Comment #23 from Egbert Eich <eich@novell.com> 2009-09-30 09:37:48 MDT --- (In reply to comment #21)
(In reply to comment #20)
(In reply to comment #17)
Egbert: do you know why setting XAUTHLOCALHOSTNAME is not done in the X11 scripts that start a session (like /etc/X11/xdm/Xsession)?
Do you mean in .xinitrc or in the (x)dm session script?
I'm thinking of the scripts in /etc/X11/
I don't have scripts in this directory. There are scripts in subdirectories.
Well, the thing is that we set XAUTHLOCALHOSTNAME to localhost, so no need to know the host name...
Not so good: You need to add localhost to the Xauthority file to make this work. If home directories are exported over nfs and shared between different systems with sessions running simultaneously you will get into trouble. This is the whole point of having a unique host name. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c24 --- Comment #24 from Vincent Untz <vuntz@novell.com> 2009-09-30 10:15:43 MDT --- Oh. I thought that XAUTHLOCALHOSTNAME was upstream in X. So no way the patch can go upstream for gdm :/ (In reply to comment #23)
Well, the thing is that we set XAUTHLOCALHOSTNAME to localhost, so no need to know the host name...
Not so good: You need to add localhost to the Xauthority file to make this work.
Yes, that's what we do.
If home directories are exported over nfs and shared between different systems with sessions running simultaneously you will get into trouble. This is the whole point of having a unique host name.
So the right thing would be to just use the hostname we have during authentication for the entry in Xauthority and for XAUTHLOCALHOSTNAME, even if it changes afterwards? If yes, then we'll have to update the patch (but for 11.3, I guess) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User eich@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c25 --- Comment #25 from Egbert Eich <eich@novell.com> 2009-10-06 10:28:39 MDT --- (In reply to comment #24)
So the right thing would be to just use the hostname we have during authentication for the entry in Xauthority and for XAUTHLOCALHOSTNAME, even if it changes afterwards?
Yes, that's the whole point of having this variable :) In case the hostname changes afterwards the authentication mechanism will still use the one that has been used when the keys were generated. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 Egbert Eich <eich@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|eich@novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User vuntz@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c26 --- Comment #26 from Vincent Untz <vuntz@novell.com> 2009-10-06 10:42:05 MDT --- I won't change this now for 11.2 -- we have something working and I'm pretty sure I'd mess things with my change, so I prefer to wait for 11.3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 User aj@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=538064#c27 --- Comment #27 from Andreas Jaeger <aj@novell.com> 2009-11-04 09:16:26 MST --- So, can this get dwongraded from BLOCKER? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=538064 http://bugzilla.novell.com/show_bug.cgi?id=538064#c28 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P1 - Urgent |P2 - High Severity|Blocker |Normal --- Comment #28 from Vincent Untz <vuntz@novell.com> 2010-01-18 21:41:46 UTC --- Err, yeah, this is not a blocker anymore. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c29 Stefan Dirsch <sndirsch@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |sndirsch@novell.com --- Comment #29 from Stefan Dirsch <sndirsch@novell.com> 2010-09-18 11:21:05 UTC --- (In reply to comment #26)
I won't change this now for 11.2 -- we have something working and I'm pretty sure I'd mess things with my change, so I prefer to wait for 11.3.
So has this been addressed for 11.3 or are there any plans to address it for 11.4? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c30 Vincent Untz <vuntz@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|GNOME |GNOME Version|Milestone 7 |Factory Product|openSUSE 11.2 |openSUSE 11.4 Target Milestone|--- |Factory --- Comment #30 from Vincent Untz <vuntz@novell.com> 2010-09-21 15:10:48 UTC --- (In reply to comment #29)
(In reply to comment #26)
I won't change this now for 11.2 -- we have something working and I'm pretty sure I'd mess things with my change, so I prefer to wait for 11.3.
So has this been addressed for 11.3 or are there any plans to address it for 11.4?
No, the real fix for XAUTHLOCALHOSTNAME hasn't been written. I must admit I don't really understand why XAUTHLOCALHOSTNAME is something that only openSUSE have... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c31 --- Comment #31 from Stefan Dirsch <sndirsch@novell.com> 2010-09-24 02:25:33 UTC --- (In reply to comment #30)
I must admit I don't really understand why XAUTHLOCALHOSTNAME is something that only openSUSE have...
Vincent, please see Egbert's comment #22. Apparently we are the only Linux distributor being interested in providing a solution for changing hostnames. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c32 --- Comment #32 from Vincent Untz <vuntz@novell.com> 2010-09-24 07:45:51 UTC --- Yes, that comment is simply saying that we should try to push it upstream again :-) And indeed, we should. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c33 --- Comment #33 from Egbert Eich <eich@novell.com> 2010-09-28 13:23:09 UTC --- I finally found the original email tread discussing this (that there once used to be an xorg-arch email list has escaped my memory): http://lists.x.org/archives/xorg-arch/2005-August/thread.html the suggestion made by Adam Jackson in the final message in this thread solves the problem. It is not network transparent, though but this is not much of a concern today any more. The issues described in 'man 7 Xsecurity' (section SERVER INTERPRETED ACCESS TYPES) regarding ssh may not be an issue under Linux - I haven't tested this though. ATM I cannot think of any relevant scenario (on Linux and as long as we disallow and don't support remote X connections thru TCP) right now which would fail if access control is made user based. So maybe we should check if a simple: xhost +si:localuser:$(whoami) solves the issue for us (and doesn't leave any corner cases behind). If so we should then nuke the patches for XAUTHLOCALHOSTNAME instead. Vincent: could you whack gdm to use server interpreted access control. We can then deploy this on openSUSE and see if people report bugs. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c34 --- Comment #34 from Vincent Untz <vuntz@novell.com> 2010-09-28 13:52:45 UTC --- (In reply to comment #33)
So maybe we should check if a simple: xhost +si:localuser:$(whoami) solves the issue for us (and doesn't leave any corner cases behind). If so we should then nuke the patches for XAUTHLOCALHOSTNAME instead. Vincent: could you whack gdm to use server interpreted access control. We can then deploy this on openSUSE and see if people report bugs.
It shouldn't be done in gdm, but in the X startup scripts so that it works with all display managers, probably in /etc/X11/xdm/Xsession. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c35 --- Comment #35 from Dr. Werner Fink <werner@novell.com> 2010-09-28 15:07:10 UTC --- Does this mean we should add an xhost line to /etc/X11/xdm/Xsession .. hmmm ... I do not like this -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c36 --- Comment #36 from Egbert Eich <eich@novell.com> 2010-09-28 15:20:20 UTC --- Is /etc/X11/xdm/Xsession really used by all display managers? @Werner: the line that you need to add is not anything like 'xhost +'. Instead the user who is currently logged in needs to be added using the 'server interpreted' method. On Linux the Xserver can identify to which user a process belongs which is trying to connect (please check 'man 7 Xsecurity'). If you or anyone else sees issues with that approach which I don't see ATM please educate me what they are so that I have arguments to support my old patches upstream. To me the patches currently only matter when the OS doesn't support secure determination of the owner of a connecting process or when TCP transport is allowed. The upstream community today cares for neither and thus will reject any additional code which solely benefits either cases. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c37 --- Comment #37 from Dr. Werner Fink <werner@novell.com> 2010-09-28 15:31:46 UTC --- man 7 security: [...] localuser & localgroup On systems which can determine in a secure fashion the creden- tials of a client process, the "localuser" and "localgroup" authentication methods provide access based on those creden- tials. The format of the values provided is platform specific. For POSIX & UNIX platforms, if the value starts with the charac- ter '#', the rest of the string is treated as a decimal uid or gid, otherwise the string is defined as a user name or group name. If your system supports this method and you use it, be warned that some programs that proxy connections and are setuid or set- gid may get authenticated as the uid or gid of the proxy pro- cess. For instance, some versions of ssh will be authenticated as the user root, no matter what user is running the ssh client, so on systems with such software, adding access for localuser:root may allow wider access than intended to the X display. .. what happend about forwarded X11 and TCP connections by ssh/sshd? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c38 --- Comment #38 from Vincent Untz <vuntz@novell.com> 2010-09-28 15:35:21 UTC --- (In reply to comment #36)
Is /etc/X11/xdm/Xsession really used by all display managers?
In theory, yes. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c39 --- Comment #39 from Egbert Eich <eich@novell.com> 2010-09-28 15:49:14 UTC --- (In reply to comment #37)
... what happend about forwarded X11 and TCP connections by ssh/sshd?
This may be an issue but maybe not. Check my comment #33 and what you have just quoted. I still need to check this. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c40 Stefan Dirsch <sndirsch@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |sndirsch@novell.com --- Comment #40 from Stefan Dirsch <sndirsch@novell.com> 2010-12-12 13:37:25 UTC --- Discussed to death? WONTFIX? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c41 Ursan Marius Bogdan <creation1985@yahoo.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |creation1985@yahoo.com --- Comment #41 from Ursan Marius Bogdan <creation1985@yahoo.com> 2012-01-24 11:16:28 UTC --- This has been fixed in 12.1, Gnome 3.2 loads fine even under my slow Vbox machine. I think is safe to close this bug. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c42 Vincent Untz <vuntz@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Component|GNOME |GNOME Version|Factory |12.3 Beta 1 InfoProvider| |dimstar@opensuse.org Product|openSUSE 11.4 |openSUSE Factory Target Milestone|Factory |--- --- Comment #42 from Vincent Untz <vuntz@suse.com> 2013-01-17 18:11:29 UTC --- I finally updated the patch in gdm to correctly set XAUTHLOCALHOSTNAME (see comment 24) in GNOME:Next. This is completely untested, though, and I'm unsure if we should push it for 12.3, as it could break stuff without some real testing. Dominique: could you possibly use the hackaton to test this in 12.3? I applied the patch in home:vuntz:branches:GNOME:Factory/gdm. To test, you really just need to login and see if you can use the desktop :-) Ideally, you'd also change the hostname at runtime, and start new apps to see if they can still use the display. In the worst case, this will wait, and we'll see what happens once we merge GNOME:Next in Factory ;-) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c43 Vincent Untz <vuntz@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED InfoProvider|dimstar@opensuse.org | Resolution| |FIXED --- Comment #43 from Vincent Untz <vuntz@suse.com> 2013-01-18 19:02:09 UTC --- Dominique tested this and it seems to work nicely. So submitted to G:F for 12.3: sr#149143. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=538064 https://bugzilla.novell.com/show_bug.cgi?id=538064#c44 --- Comment #44 from Dominique Leuenberger <dimstar@opensuse.org> 2013-01-18 19:04:09 UTC --- Verified; tests executed: with original GDM from Factory: - open gnome-terminal - start xterm (no warnings given) - su => change hostname using 'hostname <newname>' - close su shell - start xterm: xterm starts, but a bunch of warnings appear with GDM packages from home:vuntz:branches:GNOME:Factory - open gnome-terminal - start xterm (no warnings given) - su => change hostname using 'hostname <newname>' - close su shell - start xterm: xterm starts, no warnings appear. ==> The result is good. please forward the package to Factory -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com