GNOME Bugzilla – Bug 693679
broken /var/run/gdm permissions
Last modified: 2013-02-20 17:13:27 UTC
Just in case, 0770 root:gdm on /var/run/gdm/ is a bit lacking for pam_xauth performing with a logged-in user's privileges (which is the case in e.g. ALT Linux) when xauth cookies are stored under that directory (since 2.22.0). The heisenbug I've observed on regular-gnome3.iso and regular-cinnamon.iso resulted in permissions being either 0770 root:root (things like consolehelper break) or 0711 root:root (things work). The details on that particular bug are written down at https://bugzilla.altlinux.org/show_bug.cgi?id=28549 (in Russian, I can translate if that helps) but looks like there's a race condition somewhere (it's a systemd based livecd so no real surprise). The relevant code snippet is: --- /* Set up /var/run/gdm */ g_mkdir_with_parents (GDM_RAN_ONCE_MARKER_DIR, 0755); g_chmod (GDM_RAN_ONCE_MARKER_DIR, S_IRWXU | S_IRWXG); --- http://git.gnome.org/browse/gdm/tree/daemon/main.c?h=gnome-3-6#n496 I haven't found out yet where 0711 would get set up sometimes but the above part seems to stem from 2.29.0 judging by NEWS; didn't spot a relevant bugreport here so far. What's wrong with 0711 in this particular context?
No reason i can think of. let's just use 0711
Created attachment 236941 [details] [review] daemon: use 0711 mode for directories /var/run/gdm was ending up 0770 in some cases, which is causing problems. This commit changes everything to use 0711 across the board.
Thank you! Should be OK given that this subset works for me: https://bugzilla.altlinux.org/attachment.cgi?id=5735 (ALT#28549)