Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Address privilege dropping #1449

Merged
merged 15 commits into from Oct 20, 2021
Merged

Address privilege dropping #1449

merged 15 commits into from Oct 20, 2021

Conversation

aleixpol
Copy link
Contributor

Our sddm-helper needs to stay a root process as it's in charge of dealing with PAM. Alternatively the pam calls in PamBackend will fail.

To do so, we get helper processes to run xorg+greeter for x11-user and wayland-compositor+greeter for wayland. Obviously for general x11 don't need a helper as it runs as root.

@davidedmundson
Copy link
Member

It's a definite major regression that needs fixing before release.
My patch to drop priveleges early is flawed, I found a few modules that need pam_close_session to be as root, and it's in the documentation.

Direction wise, I don't think we have a choice, so ++

Review wise, I think we can squash a lot of these commits.

@aleixpol aleixpol mentioned this pull request Oct 8, 2021
Open
davidedmundson
davidedmundson reviewed Oct 19, 2021
View reviewed changes
src/helper/HelperApp.cpp Show resolved Hide resolved
src/helper/HelperApp.cpp Outdated Show resolved Hide resolved
src/helper/xorguserhelper.cpp Show resolved Hide resolved
src/helper/HelperStartWayland.cpp Outdated Show resolved Hide resolved
src/helper/HelperStartWayland.cpp Outdated Show resolved Hide resolved
@philmmanjaro philmmanjaro mentioned this pull request Oct 19, 2021
Closed
davidedmundson and others added 15 commits October 20, 2021 02:46
@davidedmundson @aleixpol
Revert "Move utmp logic to Display"
f936ffe 
This reverts commit 4c99b78.
@davidedmundson @aleixpol
add asserts
b68f544
@davidedmundson @aleixpol
Teardown on exit
b5c3eab
@davidedmundson @aleixpol
revert QProcess inheritance
d440a76
@aleixpol
Move launching X11-User and Wayland into a separate process
215d384
@aleixpol
XOrgUserHelper: Initialise environment
e55d994
@aleixpol
Make sure helpers have debug handlers
b41cabf 
Or otherwise all information gets lost.
@aleixpol
x11user: Quit helper with the session
63b5b74
@aleixpol
x11 user: we also need to launch the server on non-greeter sessions
98c8757
@aleixpol
UserSession::stop: Improve how we stop processes
b446daf 
* Wait a bit longer for non-greeter sessions in case they need to wrap
the session up
* Wait again after killing
@aleixpol
Stop the session process as soon as we know it's getting closed
339da8a
@aleixpol
When not on rootful X, we don't need a new VT every time
1c3f288
@aleixpol
Only create a new VT if we really need it
a1696c7
@aleixpol
Make some local variables const
591a532
@aleixpol
Let UserSession cache its processId on its own
725e312
@aleixpol
Copy link
Contributor Author

@davidedmundson addressed your comments, I didn't fold the changes into where they were added for the cases where it was coming from the reverted code.

@aleixpol aleixpol merged commit c7e8a9f into sddm:develop Oct 20, 2021
@Mc-Pain Mc-Pain mentioned this pull request Oct 21, 2021
Open
@yan12125
Copy link

This PR seems to break login for rootless X11. I got the following error from journalctl:

Failed to take control of /dev/tty7: Operation not permitted

@aleixpol
Copy link
Contributor Author

This PR seems to break login for rootless X11

Would you be able to create an issue and provide how you have it configured so I can reproduce and address it?

@aleixpol aleixpol deleted the fix_priv_drop branch October 21, 2021 16:16
@yan12125
Copy link

Ah, someone beats me :) #1456

@yan12125 yan12125 mentioned this pull request Oct 21, 2021
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@davidedmundson davidedmundson davidedmundson approved these changes

@plfiorini plfiorini Awaiting requested review from plfiorini

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@aleixpol @davidedmundson @yan12125 @alschaapman