Summary
systemctl restart ddm is currently destructive to the Treeland display stack because ddm tears down treeland.service during normal daemon shutdown.
That means restarting the display manager is not just restarting the greeter backend; it also tears down the compositor that DDM is managing.
Current code path
In src/daemon/DaemonApp.cpp, SIGTERM and SIGINT are connected to QCoreApplication::quit().
During shutdown, Display objects are destroyed, and Display::~Display() calls stop().
Display::stop() then calls m_treeland->stop(), and TreelandDisplayServer::stop() does:
systemd.call("StopUnit", "treeland.service", "replace");So a normal ddm service stop/restart ends up stopping the system treeland.service as part of DDM teardown.
Why this is a problem
In the Treeland integration path, DDM is not only serving a login prompt. It is also coordinating the compositor-backed greeter/session switching path.
Making ddm restart destructive has a few bad effects:
restart ddm is not a control-plane-only operation- crash recovery and package upgrade restarts become much riskier than they need to be
- active Treeland-managed session state can be disrupted even though the user did not ask to stop the compositor
Reproduction / reasoning
This is directly visible from the current shutdown path:
ddm.service receives stop/restartDaemonApp quits on SIGTERMDisplay::~Display() runsDisplay::stop() runsTreelandDisplayServer::stop() calls StopUnit("treeland.service")
This does not depend on a special failure path. It is the normal stop path.
Proposed direction
DDM should distinguish between:
- intentionally shutting down the whole display/compositor stack
- restarting or crashing the DDM daemon itself
Possible fixes:
- Do not unconditionally call
StopUnit("treeland.service") from Display::~Display() / Display::stop() on daemon shutdown.
- Keep
treeland.service running across DDM restart and reconnect from the new DDM instance.
- If a full teardown is still needed in some cases, gate it behind an explicit mode instead of the generic destructor path.
Related follow-up
There is a second resilience gap in the same area: DdeSeatdControl drops its event socket on error and does not attempt to reconnect, so an unexpected dde-seatd restart/crash can leave DDM alive but blind to future VT change events.
Files
src/daemon/DaemonApp.cppsrc/daemon/Display.cppsrc/daemon/TreelandDisplayServer.cpp
Summary
systemctl restart ddmis currently destructive to the Treeland display stack becauseddmtears downtreeland.serviceduring normal daemon shutdown.That means restarting the display manager is not just restarting the greeter backend; it also tears down the compositor that DDM is managing.
Current code path
In
src/daemon/DaemonApp.cpp,SIGTERMandSIGINTare connected toQCoreApplication::quit().During shutdown,
Displayobjects are destroyed, andDisplay::~Display()callsstop().Display::stop()then callsm_treeland->stop(), andTreelandDisplayServer::stop()does:So a normal
ddmservice stop/restart ends up stopping the systemtreeland.serviceas part of DDM teardown.Why this is a problem
In the Treeland integration path, DDM is not only serving a login prompt. It is also coordinating the compositor-backed greeter/session switching path.
Making
ddmrestart destructive has a few bad effects:restart ddmis not a control-plane-only operationReproduction / reasoning
This is directly visible from the current shutdown path:
ddm.servicereceives stop/restartDaemonAppquits onSIGTERMDisplay::~Display()runsDisplay::stop()runsTreelandDisplayServer::stop()callsStopUnit("treeland.service")This does not depend on a special failure path. It is the normal stop path.
Proposed direction
DDM should distinguish between:
Possible fixes:
StopUnit("treeland.service")fromDisplay::~Display()/Display::stop()on daemon shutdown.treeland.servicerunning across DDM restart and reconnect from the new DDM instance.Related follow-up
There is a second resilience gap in the same area:
DdeSeatdControldrops its event socket on error and does not attempt to reconnect, so an unexpecteddde-seatdrestart/crash can leave DDM alive but blind to future VT change events.Files
src/daemon/DaemonApp.cppsrc/daemon/Display.cppsrc/daemon/TreelandDisplayServer.cpp