Your message dated Sat, 09 Jan 2021 22:33:22 +0000 with message-id <[email protected]> and subject line Bug#924516: fixed in geoclue-2.0 2.5.2-1+deb10u1 has caused the Debian Bug report #924516, regarding geoclue-2.0: geoclue gets location despite geolocation features turned off (GNOME Privacy) to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 924516: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924516 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: geoclue-2.0 Version: 2.5.2-1 Severity: normal Dear Maintainer, (Testing Debian 10 Buster) Using GNOME Settings > Privacy, turned off the geolocation features on the desktop; however geoclue still contacts location.services.mozilla.com in the background whenever an application requests location services. When geolocation features are turned off, I would expect this to not occur. I would expect no communications with location.services.mozilla.com to be occurring with this privacy setting. Steps to reproduce: 1) "Turn off the geolocation features of your desktop" (as per GNOME Help) GNOME Settings > Privacy > Location Services = Off # optional - verify from command line that location services are turned off: gsettings get org.gnome.system.location enabled # should return: false 2) Monitor geoclue packets using netfilter option A) using iptables iptables -A OUTPUT -m owner --gid-owner geoclue # Launch GNOME Maps (or other app utilizing geoclue, e.g. GNOME Calendar) iptables -nvxL OUTPUT #Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) # pkts bytes target prot opt in out source destination # 13 1697 all -- * * 0.0.0.0/0 0.0.0.0/0 owner GID match 116 option B) using nftables (alternative) nft add table inet geoclue nft "add chain inet geoclue geoclue { type filter hook output priority 0; }" nft add rule inet geoclue geoclue skuid geoclue counter # Launch GNOME Maps (or other app utilizing geoclue, e.g. GNOME Calendar) nft list ruleset #table inet geoclue { # chain geoclue { # type filter hook output priority 0; policy accept; # skuid "geoclue" counter packets 13 bytes 1697 # } #} ...geoclue is communicating with location.services.mozilla.com when it should not. Work around is to disable and mask geoclue.service. Thank you! -- System Information: Debian Release: buster/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-2-amd64 (SMP w/4 CPU cores) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages geoclue-2.0 depends on: ii adduser 3.118 ii libavahi-client3 0.7-4+b1 ii libavahi-common3 0.7-4+b1 ii libavahi-glib1 0.7-4+b1 ii libc6 2.28-8 ii libglib2.0-0 2.58.3-1 ii libjson-glib-1.0-0 1.4.4-2 ii libmm-glib0 1.10.0-1 ii libnotify4 0.7.7-4 ii libsoup2.4-1 2.64.2-2 Versions of packages geoclue-2.0 recommends: ii avahi-daemon 0.7-4+b1 ii iio-sensor-proxy 2.4-2 ii modemmanager 1.10.0-1 ii wpasupplicant 2:2.7+git20190128+0c1e29f-2 geoclue-2.0 suggests no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: geoclue-2.0 Source-Version: 2.5.2-1+deb10u1 Done: Laurent Bigonville <[email protected]> We believe that the bug you reported is fixed in the latest version of geoclue-2.0, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Laurent Bigonville <[email protected]> (supplier of updated geoclue-2.0 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 25 Dec 2020 17:19:50 +0100 Source: geoclue-2.0 Architecture: source Version: 2.5.2-1+deb10u1 Distribution: buster Urgency: medium Maintainer: Laurent Bigonville <[email protected]> Changed-By: Laurent Bigonville <[email protected]> Closes: 924516 958497 Changes: geoclue-2.0 (2.5.2-1+deb10u1) buster; urgency=medium . * debian/README.Debian: Add information about MLS and a link to the service Privacy Notice page * Check the maximum allowed accuracy level even for system applications. Respect the value of the user preference concerning the usage of their geolocation. This should fix the privacy and GDPR conformity concerns as the user explicitly needs to enable the option. Note that there is no distinction between the system applications anymore, turning on the option is allowing them all to get the location. (Closes: #924516, #958497) * d/p/: Add a patch to make the Mozilla API key configurable * debian/rules: Use the key that has been allocated to debian for MLS queries * d/p: Add an upstream patch to fix the display of the usage indicator * Fix crash if submission-url is not set in the config, patch from upstream Checksums-Sha1: 996a74e4d02b62c7211c7378e62ec3bceb2a90fa 2465 geoclue-2.0_2.5.2-1+deb10u1.dsc 2d541a66cff4eb8e403774f788673d5f097df00c 14068 geoclue-2.0_2.5.2-1+deb10u1.debian.tar.xz 00085f1af2e2ee9caaa615503cb1fa2ed4bd48e3 9660 geoclue-2.0_2.5.2-1+deb10u1_source.buildinfo Checksums-Sha256: 3176a0e3929a49bd8f36b2281f87539efe1a0e1f49890d47d9a9e23c2943346e 2465 geoclue-2.0_2.5.2-1+deb10u1.dsc 6d98621c6e9f68d369fe06334f1f11dd45396682e69103a60b15e186eccd2adc 14068 geoclue-2.0_2.5.2-1+deb10u1.debian.tar.xz 4e1d6c98818859d22e266858fd0b4c740bb630b9dadc23b2f176ee601e27dd87 9660 geoclue-2.0_2.5.2-1+deb10u1_source.buildinfo Files: bc8b7b3eb01c0105b7512af796360e3a 2465 utils optional geoclue-2.0_2.5.2-1+deb10u1.dsc 40c9f88dc8ed7fa3d54062e23236941f 14068 utils optional geoclue-2.0_2.5.2-1+deb10u1.debian.tar.xz cc2f02fa3a98b3ad65c9fbd039d53d49 9660 utils optional geoclue-2.0_2.5.2-1+deb10u1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQFFBAEBCAAvFiEEmRrdqQAhuF2x31DwH8WJHrqwQ9UFAl/mWf8RHGJpZ29uQGRl Ymlhbi5vcmcACgkQH8WJHrqwQ9XlGQf/ar8i3s4/Q3km6PFDRHFcnvo0gBEilTTV PuAOVtac7ksZDB4OPC8eUtmY4W9g+ZgcClEJnnIZrYI5ikPtqwnSWX7nFvYYBbVH 0GMAcewMPnInew1rKall67axtGM2YnuvnBn4HOBOK2zyDVz4yxFBKoK5yifg7pUd 7L62XxXM3CxaFUOZVIsBq29p9Orbg1RGDTo2WST3rjpUq5pYWy9QAVkMK0HQOGvg LU1w4U7N8ktuOw1HKNNKwfRuJok+sMZDbbN2xpLYPIJ99tL7zWf/wUoCAvdc3bRN WP19gcaTPxMzNnLOkTwL9P7FPhFdny99RIpqVP8KvPUxFUHVMbHb6Q== =wMu5 -----END PGP SIGNATURE-----
--- End Message ---
