From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 05159138334 for ; Fri, 22 Mar 2019 21:17:29 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 1DF3DE0909; Fri, 22 Mar 2019 21:17:26 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id A4790E08F0 for ; Fri, 22 Mar 2019 21:17:25 +0000 (UTC) Received: from pomiot (d202-252.icpnet.pl [109.173.202.252]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: mgorny) by smtp.gentoo.org (Postfix) with ESMTPSA id E0D7F335D19; Fri, 22 Mar 2019 21:17:23 +0000 (UTC) Message-ID: <3b64a5c156e24753d3a941c065be344542428b77.camel@gentoo.org> Subject: Re: [gentoo-dev] State of elogind integration and the default +elogind local USE flag on xorg-server. From: =?UTF-8?Q?Micha=C5=82_G=C3=B3rny?= To: gentoo-dev@lists.gentoo.org Date: Fri, 22 Mar 2019 22:17:09 +0100 In-Reply-To: <5aa7ae5e-94d8-2428-ccd5-ea4c04ebf5e4@gentoo.org> References: <5aa7ae5e-94d8-2428-ccd5-ea4c04ebf5e4@gentoo.org> Organization: Gentoo Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-0EErrsoPh0YoEmJKk6Qi" User-Agent: Evolution 3.30.5 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 X-Archives-Salt: 534cc56d-fca7-45e9-9006-9bdafb5b685d X-Archives-Hash: a34b8ea817c71096b56f35d3ef53b6e5 --=-0EErrsoPh0YoEmJKk6Qi Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Fri, 2019-03-22 at 21:32 +0100, Piotr Karbowski wrote: > Hi, >=20 > I'd like to discuss here the current state of elogind integration as a > whole, and the follow-up work that is now required, after I've put a > default on local USE flag +elogind on xorg-server while dropping default > suid flag in my commit yesterday. >=20 > The motivation on the changes was to follow up the removal of default > +suid that happened in November last years, that sadly had to be > reverted. Now with elogind integration, non-systemd users got all that > they need to run Xorg as a unprivileged user. >=20 > The status of xorg-server at this very moment is that it no longer > defaults to be merged with suid, however, now it defaults to +elogind. > This have the following implications: >=20 > - User will be prompted that pambase requires +elogind, which is not > enabled by default -- meaning that simple `emerge xorg-server` will > prompt user to add package.use entry. This could be solved by always > having the elogind bits enabled, the same way a gnome-keyring is, so the > pam_elogind.so is used if present. This shouldn't have any negative > effect on for instance systemd users, as systemd cannot be installed at > the same time as elogind. >=20 > - systemd users that does not use systemd profiles will be required to > alter package.use or make.conf USE flags definition to drop -elogind > there, as otherwise xorg-server will refuse to be merged due to > at-most-one-of ( elogind systemd ) condition there. However those > systemd users that do use systemd profiles will not run into any things > to do, as systemd's use.mask have elogind there. >=20 > - The desktop profiles enables +consolekit, which conflicts with elogind > -- the users of those profiles will need to adjust USE flags. >=20 > - OpenRC/non-systemd users are now able to run X without suid, as > elogind is the entity that wraps the SETMASTER, no more "ioctl > permission denied" on starting X as unprivileged user. >=20 > After speaking with some of you on #-dev and #-desktop I know that the > opinions on that vary, arguably enabling elogind local USE flag on > xorg-server was somewhat ahead of time, leaving some users in > unfavorable position where the xorg-server installation will require > them to manually modify package.use/make.conf. >=20 > Some of the ideas that were pointed on IRC (forgive me if I missed some): >=20 > - We should go back to +suid -elogind default. > - We should actually NOT put suid on Xorg if USE=3D"suid elogind" but put > suid bit with USE=3D"suid -elogind". This is a horrible idea. While some people think it's cool to have flags magically fit a random definition of a 'sane thing' in insane combinations, it's confusing to everyone. > - We should only ever enable elogind in desktop profiles. >=20 > Personally I'd like to stay without enabling suid by default on > xorg-server, as otherwise hardly anyone will ever drop the suid from it, > which would be a big step back. Gentoo tried to drop suid from > xorg-server a handful of times, let's make the current one a final one :) >=20 > I'd like to propose doing the following: >=20 > - Keywording elogind on missing archs > - Making elogind a global USE flag > - Switching desktop profiles to elogind from consolekit while still > preserving -suid +elogind on xorg-server for those that does not use > desktop profiles (systemd profiles users not affected) > - Making pambase always install the configuration for pam_elogind.so, > the same way it does for pam_gnome_keyring.so at this very moment, > effectively removing elogind USE flag from it. >=20 > What do you all think about? >=20 My suggestion would be to focus on having sane defaults in all profiles, and sane flags. AFAIU logind makes sense on desktop profiles. So enable it globally in desktop profiles, then replace it with systemd in systemd subprofiles. Don't do USE defaults. People who don't use desktop profiles can live with having to fine-tune xorg-server. Worst case, in the generic case use REQUIRED_USE to force them to choose one of the options. --=20 Best regards, Micha=C5=82 G=C3=B3rny --=-0EErrsoPh0YoEmJKk6Qi Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNATURE----- iQKTBAABCgB9FiEEXr8g+Zb7PCLMb8pAur8dX/jIEQoFAlyVUNVfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDVF QkYyMEY5OTZGQjNDMjJDQzZGQ0E0MEJBQkYxRDVGRjhDODExMEEACgkQur8dX/jI EQq3MRAAhHlEqkb2tP1zKnCRl/o0bhIoRzCgGSn1Gjfar56SzqyYZR/1WaLKy+oM bLa3HrYv/LDj0jq/RwQOb121n+s4nclb2+ffYEan8p1rDtbqxtx3UExQGPWXRbUG YL51hPtav7UjKxV/BKMU/X7waDJvUoY4nNERfcOWgNyDl13ZT+CaJJFobEOBgYQV 5Wfbp9MIIaHdMiMcQiWtQWoBhH1PUShzH8DryFF5pTQKiDA6Bg2EjfXD8PNbNGmw T6hBm6l2zAfTojBIIeJ8UxpPscfvMlx2ojHRPXkOc2w0zY8/j/z9qwdBgj/M2Xi7 hDHZSkSZg0Z1W0itZXigrYsGrbcZncBtOCyzwc2f+2mPMkqRAr1NVC23HfUTaKhR vtjaAS/3dObCunydp1bOOKG0KYgFdjkaAYe+6vHSICAEXwZBa7ZZMqo/VppE6ryi ce6cN8B6d1FRMxfT9F0kXd1/wWlkDvYc6qxeB4hMJEBV1YQhEuxu6mkmks2SniZJ EGl34MKiu3ssxZnjeByWp4yO7H0B6CEWCnu3a8AVzQnP4DiYootNo4FwV070hBTo 2PFQH51bBYH3o9piMPPNvMAF/BCWlAC0BYq1ZrD47zHwr30i6kKZW7MBgA4hmle5 KED4RUXOqX3XKGuCLl89tWeKkj07T0rAaaUnzB3Nu4OClI0wAa8= =RdoY -----END PGP SIGNATURE----- --=-0EErrsoPh0YoEmJKk6Qi--