Bug#975710: marked as done (flatpak: Starts gvfs-daemon when logging in as root)

Debian Bug Tracking System Sun, 03 Jan 2021 08:51:15 -0800

Your message dated Sun, 03 Jan 2021 16:49:16 +0000
with message-id <[email protected]>
and subject line Bug#975710: fixed in flatpak 1.9.3-2
has caused the Debian Bug report #975710,
regarding flatpak: Starts gvfs-daemon when logging in as root
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
975710: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975710
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: flatpak
Version: 1.8.3-2
Severity: minor
Tags: patch

When I log into my machine with ssh as root, gvfs-daemon is indirectly started
by flatpak using DBUS activation, in root's systemd user session.

Maybe consider this patch for /etc/profile.d/flatpak.sh ?

--- flatpak.sh.orig 2020-11-24 13:01:00.000000000 +0100
+++ flatpak.sh  2020-11-25 13:40:09.055342009 +0100
@@ -5,7 +5,7 @@
         (
             unset G_MESSAGES_DEBUG
             echo "${XDG_DATA_HOME:-"$HOME/.local/share"}/flatpak"
-            flatpak --installations
+            GIO_USE_VFS=local flatpak --installations
         ) | (
             new_dirs=
             while read -r install_path

Thanks for your consideration,

-- Mourad DC

-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.9.0-2-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE, 
TAINT_UNSIGNED_MODULE
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages flatpak depends on:
ii  adduser                3.118
ii  bubblewrap             0.4.1-1
ii  dbus                   1.12.20-1
ii  libappstream-glib8     0.7.17-1
ii  libarchive13           3.4.3-2
ii  libc6                  2.31-4
ii  libdconf1              0.38.0-1
ii  libfuse2               2.9.9-3
ii  libgdk-pixbuf-2.0-0    2.40.0+dfsg-7
ii  libgdk-pixbuf2.0-0     2.40.0+dfsg-7
ii  libglib2.0-0           2.66.3-1
ii  libgpgme11             1.14.0-1+b1
ii  libjson-glib-1.0-0     1.6.0-1
ii  libmalcontent-0-0      0.9.0-2
ii  libostree-1-1          2020.8-2
ii  libpolkit-agent-1-0    0.117-1
ii  libpolkit-gobject-1-0  0.117-1
ii  libseccomp2            2.5.0-3
ii  libsoup2.4-1           2.72.0-2
ii  libsystemd0            246.6-5
ii  libxau6                1:1.0.8-1+b2
ii  libxml2                2.9.10+dfsg-6.2
ii  libzstd1               1.4.5+dfsg-4
ii  xdg-dbus-proxy         0.1.2-1

Versions of packages flatpak recommends:
ii  desktop-file-utils                                   0.26-1
ii  gtk-update-icon-cache                                3.24.23-2
ii  hicolor-icon-theme                                   0.17-2
ii  libpam-systemd                                       246.6-5
ii  p11-kit                                              0.23.21-2
ii  policykit-1                                          0.117-1
ii  shared-mime-info                                     2.0-1
ii  xdg-desktop-portal                                   1.8.0-2
ii  xdg-desktop-portal-gtk [xdg-desktop-portal-backend]  1.8.0-1

Versions of packages flatpak suggests:
ii  avahi-daemon    0.8-3
pn  malcontent-gui  <none>

-- Configuration Files:
/etc/profile.d/flatpak.sh changed:
if command -v flatpak > /dev/null; then
    # set XDG_DATA_DIRS to include Flatpak installations
    new_dirs=$(
        (
            unset G_MESSAGES_DEBUG
            echo "${XDG_DATA_HOME:-"$HOME/.local/share"}/flatpak"
            GIO_USE_VFS=local flatpak --installations
        ) | (
            new_dirs=
            while read -r install_path
            do
                share_path=$install_path/exports/share
                case ":$XDG_DATA_DIRS:" in
                    (*":$share_path:"*) :;;
                    (*":$share_path/:"*) :;;
                    (*) new_dirs=${new_dirs:+${new_dirs}:}$share_path;;
                esac
            done
            echo "$new_dirs"
        )
    )
    export XDG_DATA_DIRS
    
XDG_DATA_DIRS="${new_dirs:+${new_dirs}:}${XDG_DATA_DIRS:-/usr/local/share:/usr/share}"
fi

-- no debconf information

--- End Message ---

--- Begin Message ---

Source: flatpak
Source-Version: 1.9.3-2
Done: Simon McVittie <[email protected]>

We believe that the bug you reported is fixed in the latest version of
flatpak, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon McVittie <[email protected]> (supplier of updated flatpak package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 03 Jan 2021 15:37:18 +0000
Source: flatpak
Architecture: source
Version: 1.9.3-2
Distribution: experimental
Urgency: medium
Maintainer: Utopia Maintenance Team 
<[email protected]>
Changed-By: Simon McVittie <[email protected]>
Closes: 975710
Changes:
 flatpak (1.9.3-2) experimental; urgency=medium
 .
   * Add patch to avoid gvfs-daemon being started when logging in as root.
     Thanks to Mourad De Clerck (Closes: #975710)
   * Add package-specific info from bubblewrap to bug reports.
     In particular, this will tell us whether it's setuid.
Checksums-Sha1:
 e626fe643c81b5298fb817a46fc59c52789e942d 3607 flatpak_1.9.3-2.dsc
 c505fd878866bb2a51bfd272f338ec200e0875bc 30420 flatpak_1.9.3-2.debian.tar.xz
 84074c1e149098dafed6fb6ebec3885e6be01841 11532 flatpak_1.9.3-2_source.buildinfo
Checksums-Sha256:
 67524fa55a4e70b207ea6223a6fb6de3c0b0f6b3eda4ceee10300f579b21158a 3607 
flatpak_1.9.3-2.dsc
 e655ec9b305df1e126475570969116ee3129141b4514c574c4dfdb4b30640329 30420 
flatpak_1.9.3-2.debian.tar.xz
 2ca5c7d57888e37f33d7a8ed435a260ce55fc7de5cc98d8eeeaadae1fa4f3068 11532 
flatpak_1.9.3-2_source.buildinfo
Files:
 af9c89736dae7bbe3c3da37c427e12fc 3607 admin optional flatpak_1.9.3-2.dsc
 ff7885cca7befc989a59cd387cb33b2b 30420 admin optional 
flatpak_1.9.3-2.debian.tar.xz
 ce76161a18dddf00b13cb6616f104966 11532 admin optional 
flatpak_1.9.3-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=963S
-----END PGP SIGNATURE-----

--- End Message ---

Bug#975710: marked as done (flatpak: Starts gvfs-daemon when logging in as root)

Reply via email to