Bug#975710: marked as done (flatpak: Starts gvfs-daemon when logging in as root)

Debian Bug Tracking System Sun, 03 Jan 2021 09:21:17 -0800

Your message dated Sun, 03 Jan 2021 17:19:43 +0000
with message-id <[email protected]>
and subject line Bug#975710: fixed in flatpak 1.8.4-2
has caused the Debian Bug report #975710,
regarding flatpak: Starts gvfs-daemon when logging in as root
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
975710: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975710
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: flatpak
Version: 1.8.3-2
Severity: minor
Tags: patch

When I log into my machine with ssh as root, gvfs-daemon is indirectly started
by flatpak using DBUS activation, in root's systemd user session.

Maybe consider this patch for /etc/profile.d/flatpak.sh ?

--- flatpak.sh.orig 2020-11-24 13:01:00.000000000 +0100
+++ flatpak.sh  2020-11-25 13:40:09.055342009 +0100
@@ -5,7 +5,7 @@
         (
             unset G_MESSAGES_DEBUG
             echo "${XDG_DATA_HOME:-"$HOME/.local/share"}/flatpak"
-            flatpak --installations
+            GIO_USE_VFS=local flatpak --installations
         ) | (
             new_dirs=
             while read -r install_path

Thanks for your consideration,

-- Mourad DC

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.9.0-2-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages flatpak depends on:
ii  adduser                3.118
ii  bubblewrap             0.4.1-1
ii  dbus                   1.12.20-1
ii  libappstream-glib8     0.7.17-1
ii  libarchive13           3.4.3-2
ii  libc6                  2.31-4
ii  libdconf1              0.38.0-1
ii  libfuse2               2.9.9-3
ii  libgdk-pixbuf-2.0-0    2.40.0+dfsg-7
ii  libgdk-pixbuf2.0-0     2.40.0+dfsg-7
ii  libglib2.0-0           2.66.3-1
ii  libgpgme11             1.14.0-1+b1
ii  libjson-glib-1.0-0     1.6.0-1
ii  libmalcontent-0-0      0.9.0-2
ii  libostree-1-1          2020.8-2
ii  libpolkit-agent-1-0    0.117-1
ii  libpolkit-gobject-1-0  0.117-1
ii  libseccomp2            2.5.0-3
ii  libsoup2.4-1           2.72.0-2
ii  libsystemd0            246.6-5
ii  libxau6                1:1.0.8-1+b2
ii  libxml2                2.9.10+dfsg-6.2
ii  libzstd1               1.4.5+dfsg-4
ii  xdg-dbus-proxy         0.1.2-1

Versions of packages flatpak recommends:
ii  desktop-file-utils                                   0.26-1
ii  gtk-update-icon-cache                                3.24.23-2
ii  hicolor-icon-theme                                   0.17-2
ii  libpam-systemd                                       246.6-5
ii  p11-kit                                              0.23.21-2
ii  policykit-1                                          0.117-1
ii  shared-mime-info                                     2.0-1
ii  xdg-desktop-portal                                   1.8.0-2
ii  xdg-desktop-portal-gtk [xdg-desktop-portal-backend]  1.8.0-1

Versions of packages flatpak suggests:
ii  avahi-daemon    0.8-3
pn  malcontent-gui  <none>

-- Configuration Files:
/etc/profile.d/flatpak.sh changed:
if command -v flatpak > /dev/null; then
    # set XDG_DATA_DIRS to include Flatpak installations
    new_dirs=$(
        (
            unset G_MESSAGES_DEBUG
            echo "${XDG_DATA_HOME:-"$HOME/.local/share"}/flatpak"
            GIO_USE_VFS=local flatpak --installations
        ) | (
            new_dirs=
            while read -r install_path
            do
                share_path=$install_path/exports/share
                case ":$XDG_DATA_DIRS:" in
                    (*":$share_path:"*) :;;
                    (*":$share_path/:"*) :;;
                    (*) new_dirs=${new_dirs:+${new_dirs}:}$share_path;;
                esac
            done
            echo "$new_dirs"
        )
    )
    export XDG_DATA_DIRS
    
XDG_DATA_DIRS="${new_dirs:+${new_dirs}:}${XDG_DATA_DIRS:-/usr/local/share:/usr/share}"
fi

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: flatpak
Source-Version: 1.8.4-2
Done: Simon McVittie <[email protected]>

We believe that the bug you reported is fixed in the latest version of
flatpak, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon McVittie <[email protected]> (supplier of updated flatpak package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 03 Jan 2021 15:37:04 +0000
Source: flatpak
Architecture: source
Version: 1.8.4-2
Distribution: unstable
Urgency: medium
Maintainer: Utopia Maintenance Team 
<[email protected]>
Changed-By: Simon McVittie <[email protected]>
Closes: 975710
Changes:
 flatpak (1.8.4-2) unstable; urgency=medium
 .
   * Mark patch for #972138 as having been applied upstream
   * Add patch to avoid gvfs-daemon being started when logging in as root.
     Thanks to Mourad De Clerck (Closes: #975710)
   * Add package-specific info from bubblewrap to bug reports.
     In particular, this will tell us whether it's setuid.
Checksums-Sha1:
 ef4499802e125204928612a7dc4be13235367a6f 3607 flatpak_1.8.4-2.dsc
 2e3df203cfd42c150f34341a35e4ce3ca4ad5fb6 30488 flatpak_1.8.4-2.debian.tar.xz
 f47fd9ba51e556c2937d3b6499c3bc539fa360e0 11532 flatpak_1.8.4-2_source.buildinfo
Checksums-Sha256:
 4ff9c233d3e6f182c4d9b021383847e8646e99045e994821352a3a3eaf6bb6b9 3607 
flatpak_1.8.4-2.dsc
 e84e4853234ca33edbf9ecb20078ae46ee47073642e0c721bb7f0086deafb74c 30488 
flatpak_1.8.4-2.debian.tar.xz
 e5ca2d275ded19d89a46b657da208a356164bac32267bc3875afb4a69844ad26 11532 
flatpak_1.8.4-2_source.buildinfo
Files:
 1c448371d685b94d0500a6d41d63f0a6 3607 admin optional flatpak_1.8.4-2.dsc
 351027ff05cf346677b2a6cd990a3cf5 30488 admin optional 
flatpak_1.8.4-2.debian.tar.xz
 65b8dedb4cc2d0bb377ff5424e900bd1 11532 admin optional 
flatpak_1.8.4-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=3f8C
-----END PGP SIGNATURE-----

--- End Message ---

Bug#975710: marked as done (flatpak: Starts gvfs-daemon when logging in as root)

Reply via email to