Your message dated Fri, 25 Sep 2009 16:34:53 +0000
with message-id <[email protected]>
and subject line Bug#532786: fixed in halevt 0.1.5-1
has caused the Debian Bug report #532786,
regarding Automount broken due to missing PolicyKit permission for halevt user
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
532786: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=532786
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: halevt
Version: 0.1.3-3
Severity: normal
Automounting of removable media is not working.
I get the following output in /var/log/messages when I insert a USB thumb
drive:
--- snip ---
Jun 11 16:36:44 localhost halevt: Running: halevt-mount -u
/org/freedesktop/Hal/devices/volume_uuid_2E64_5372 -o sync -m 002
--- snip ---
which shows that halevt is correctly handling the event, but halevt-mount
fails to mount the drive as it is not mounted as "/media/disk".
Running the command as halevt fails with:
--- snip ---
r...@kinakuta:/# su - halevt -c "halevt-mount -u
/org/freedesktop/Hal/devices/volume_uuid_2E64_5372 -o sync -m 002"
Mount error for /org/freedesktop/Hal/devices/volume_uuid_2E64_5372:
DBus Error org.freedesktop.Hal.Device.PermissionDeniedByPolicy:
org.freedesktop.hal.storage.mount-removable no <-- (action, result)
--- snip ---
The problem seems to be that PolicyKit is denying the
"org.freedesktop.hal.storage.mount-removable" action for the halevt user.
--- snip ---
hal...@kinakuta:~$ polkit-auth
org.freedesktop.hal.device-access.cdrom
org.freedesktop.hal.device-access.floppy
org.freedesktop.hal.device-access.joystick
org.freedesktop.hal.device-access.mouse
org.freedesktop.hal.device-access.video
Session57:
unix-user = '115'
realname = ''
seat = 'Seat1'
session-type = ''
active = FALSE
x11-display = ''
x11-display-device = ''
display-device = '/dev/pts/3'
remote-host-name = ''
is-local = TRUE
on-since = '2009-06-11T14:49:56.720567Z'
login-session-id = '4294967295'
--- snip ---
This clearly shows that the halevt user is missing the required permissions
and does not obtain them by the "active = TRUE" default policy, because the
session is recognised as inactive. (Yes, i edited /etc/passwd to allow shell
login)
I therefore added the following stanza to /etc/PolicyKit/PolicyKit.conf and
restarted DBUS:
--- snip ---
<config version="1.0">
...
<match action="org.freedesktop.hal.storage.mount-removable">
<match user="halevt">
<return result="yes"/>
</match>
</match>
...
</config>
--- snip ---
and it works:
--- snip ---
Jun 11 17:03:11 localhost halevt: Running: halevt-mount -u
/org/freedesktop/Hal/devices/volume_uuid_2E64_5372 -o sync -m 002
Jun 11 17:03:11 localhost halevt: Running: halevt-mount -s
r...@kinakuta:/home/babilen# ls /media/
cdrom cdrom0 disk
--- snip ---
The same effect can be achieved by using "polkit-gnome-authorization". Does
anybody know where the rules set with that tool are saved?
I am also a bit unsure about plugdev vs. PolicyKit with halevt. It looks like
the maintainer thought that it is sufficient that the halevt user has
"plugdev" as primary group to have automounting working, but this assumption
seems to be wrong.
with kind regards
Wolodja Wentland
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.26-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages halevt depends on:
ii adduser 3.110 add and remove users and groups
ii hal 0.5.12~git20090406.46dc48-2 Hardware Abstraction Layer
ii libboolstuff 0.1.12-1 library for operating on boolean e
ii libc6 2.9-12 GNU C Library: Shared libraries
ii libdbus-1-3 1.2.12-1 simple interprocess messaging syst
ii libdbus-glib 0.80-4 simple interprocess messaging syst
ii libglib2.0-0 2.20.1-2 The GLib library of C routines
ii libhal1 0.5.12~git20090406.46dc48-2 Hardware Abstraction Layer - share
ii libxml2 2.7.3.dfsg-1 GNOME XML library
halevt recommends no packages.
halevt suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: halevt
Source-Version: 0.1.5-1
We believe that the bug you reported is fixed in the latest version of
halevt, which is due to be installed in the Debian FTP archive:
halevt_0.1.5-1.diff.gz
to pool/main/h/halevt/halevt_0.1.5-1.diff.gz
halevt_0.1.5-1.dsc
to pool/main/h/halevt/halevt_0.1.5-1.dsc
halevt_0.1.5-1_amd64.deb
to pool/main/h/halevt/halevt_0.1.5-1_amd64.deb
halevt_0.1.5.orig.tar.gz
to pool/main/h/halevt/halevt_0.1.5.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mike O'Connor <[email protected]> (supplier of updated halevt package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 24 Sep 2009 02:07:26 -0400
Source: halevt
Binary: halevt
Architecture: source amd64
Version: 0.1.5-1
Distribution: unstable
Urgency: low
Maintainer: Mike O'Connor <[email protected]>
Changed-By: Mike O'Connor <[email protected]>
Description:
halevt - Generic handler for HAL events
Closes: 524299 527960 528770 528773 532786 540620 540628 542710
Changes:
halevt (0.1.5-1) unstable; urgency=low
.
* New Upstream Version (Closes: #527960, #542710, #540628, #524299, #528773)
* remove halevt-mount patch as it is included upstream
* update init script patch as the bashisms were fixed upstream
# add dependency on policykit and use policykit to grant/revoke privileges
for mounting removable drives on install/remove. (Closes: #532786)
(Thanks: Wolodja Wentland)
* change update-rc.d to install halevt after hal (Closes: #528770)
(Closes: #540620)
* update to Standards-Version 3.8.2 (had to stop using /var/run/halevt/)
* add halevt.xml to debian/ which was removed upstream
Checksums-Sha1:
3c4ada7463e7c43ce6b303cb9dacaefe5fd06aef 1104 halevt_0.1.5-1.dsc
59c3d1e16153d8be5d65e9106e8e2c29b630f77b 348710 halevt_0.1.5.orig.tar.gz
b1b1d3ff83e7ede38e6266a5b08356b58f8dc1f7 7783 halevt_0.1.5-1.diff.gz
f3b13c5c81ef596657e44d0ef3d984b996fa0a3a 61124 halevt_0.1.5-1_amd64.deb
Checksums-Sha256:
0a4f102e3409664354de51c11cd1c4622632c7295f08ea0af4cfaddbb812c3a6 1104
halevt_0.1.5-1.dsc
1a438a621a91bf46ff629455ab98d4af62cb4ffcb6618ebcd8bdb8e7501d871f 348710
halevt_0.1.5.orig.tar.gz
6e8e542ff2f63dc077071626a636b33316fc86a83fab616d5d3f83153e7d88ad 7783
halevt_0.1.5-1.diff.gz
a8d3d87c5277607282396ddb5e82833e950d91f62a2ece24b78225678228fd1d 61124
halevt_0.1.5-1_amd64.deb
Files:
13f55364d558503f9ac8739bc4b828b1 1104 admin optional halevt_0.1.5-1.dsc
7faf2e2fdfe9535e64304c361e1fd0e7 348710 admin optional halevt_0.1.5.orig.tar.gz
f8f1c2b3e3bdc8a2d8e44cfe455028a8 7783 admin optional halevt_0.1.5-1.diff.gz
dcd06d5a9748bcc4fee8ccede183368b 61124 admin optional halevt_0.1.5-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkq813QACgkQ9Cbhsr6b+NqMxACfXPXGGWcftm34uO+3W+N6REBJ
CV8AoI9z7vbWAz2tGXCHTxc4/s+okq96
=ggOZ
-----END PGP SIGNATURE-----
--- End Message ---
