[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#56971: greeter user permissions are not enough to talk with seatd
From: |
muradm |
Subject: |
bug#56971: greeter user permissions are not enough to talk with seatd |
Date: |
Thu, 04 Aug 2022 12:45:13 +0300 |
User-agent: |
mu4e 1.8.7; emacs 29.0.50 |
Hi,
As per discussion here:
https://lists.gnu.org/archive/html/guix-devel/2022-08/msg00020.html
Above change reduced permissions of greeter user.
While it is ok for greeters that do not talk to seatd,
greeters talking to seatd lost access to seatd socket.
As result, greeter (e.g. gtkgreet) requiring communication
with seatd is failing to start, causing "black screen"
behavior on active terminal (switching to the other non seatd
related terminal is possible, for manual permissions
adjustment as workaround).
To address this issue, we need more flexible control over
seatd user/group, which creates seatd.sock, and greeter user
which connects to seatd.sock.
Other distros (Arch for instance) introduced "seat" group.
So user which wants to login on system controlled by seatd
should be member of that group.
However, not all greeters require that, so I decided to make
more flexible. Propsed solutions consists of:
* 56690 - gnu: seatd-service-type: Should use seat group.
With this change, if seatd-service-type is present in the
system configuration, "seat" group will be added, and seatd
will run as root/seat. Group is configurable, but default is
"seat".
* 56699 - gnu: greetd-service-type: Add greeter-extra-groups
config field.
With this change, if user wants to use seatd-service-type with
greeter requiring seatd.sock, he can add "seat" group to
greeter-extra-groups field.
Thanks in advance,
muradm
signature.asc
Description: PGP signature
- bug#56971: greeter user permissions are not enough to talk with seatd,
muradm <=
- bug#56971: greeter user permissions are not enough to talk with seatd, Liliana Marie Prikler, 2022/08/04
- bug#56971: greeter user permissions are not enough to talk with seatd, muradm, 2022/08/04
- bug#56971: greeter user permissions are not enough to talk with seatd, Liliana Marie Prikler, 2022/08/05
- bug#56971: greeter user permissions are not enough to talk with seatd, muradm, 2022/08/05
- bug#56971: greeter user permissions are not enough to talk with seatd, Liliana Marie Prikler, 2022/08/05
- bug#56971: greeter user permissions are not enough to talk with seatd, muradm, 2022/08/07
- bug#56971: greeter user permissions are not enough to talk with seatd, Liliana Marie Prikler, 2022/08/08
bug#56971: greeter user permissions are not enough to talk with seatd, Liliana Marie Prikler, 2022/08/26