From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-156505-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	by finch.gentoo.org (Postfix) with ESMTP id 6464D13877A
	for <garchives@archives.gentoo.org>; Sun, 15 Jun 2014 09:08:13 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 697B4E0D59;
	Sun, 15 Jun 2014 09:08:09 +0000 (UTC)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 23455E0CC2
	for <gentoo-user@lists.gentoo.org>; Sun, 15 Jun 2014 09:08:08 +0000 (UTC)
Received: from compute2.internal (compute2.nyi.mail.srv.osa [10.202.2.42])
	by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id A3A8A20B70
	for <gentoo-user@lists.gentoo.org>; Sun, 15 Jun 2014 05:08:07 -0400 (EDT)
Received: from web2 ([10.202.2.212])
  by compute2.internal (MEProxy); Sun, 15 Jun 2014 05:08:07 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=fastmail.fm; h=
	message-id:from:to:mime-version:content-transfer-encoding
	:content-type:subject:date; s=mesmtp; bh=xQb3mmbbyRKf2PdycoVB8lu
	COjk=; b=W9FbxJ6g9P1KUpBbJlZ86569VNmLE/vHArxsEBHbchQg39mXPhHU81h
	jM2qRhfkZ0wS7qRiaZLnA13xFH32mET+0XozMQpi898MdkO5Lv5Wf2kYIxtOdH1U
	LuDXhsz+MEQzxrv8xeUgMVBoN9h+MHWr46aEpe0wy+lRwEonda44=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=
	messagingengine.com; h=message-id:from:to:mime-version
	:content-transfer-encoding:content-type:subject:date; s=smtpout;
	 bh=xQb3mmbbyRKf2PdycoVB8luCOjk=; b=gpRJzvejxpmefrEAKnM+BG++X6dg
	6CgGRmBgU8WuY2Ubct0LSUP6yUFSRqvTOuryxW8a5w+n564IVDetQES7Zcj4ji/8
	TttmxsFuizM3RYXqE+HuSLgFBHV7xFH7XgQ1aJ6Yb78NTZt0XSnJZVDLuuSqOaMP
	TNrmlSAnUa0BDkc=
Received: by web2.nyi.mail.srv.osa (Postfix, from userid 99)
	id 7AFF85401A4; Sun, 15 Jun 2014 05:08:07 -0400 (EDT)
Message-Id: <1402823287.24720.128922517.5D9CE96C@webmail.messagingengine.com>
X-Sasl-Enc: ouSWdVXPH3GMtiOD8X0OcFVcPO24HdfouD99zSTMR8Xr 1402823287
From: Francesco Turco <fturco@fastmail.fm>
To: gentoo-user@lists.gentoo.org
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain
X-Mailer: MessagingEngine.com Webmail Interface - ajax-fec27723
Subject: [gentoo-user] gnome-keyring-daemon processes running as root
Date: Sun, 15 Jun 2014 11:08:07 +0200
X-Archives-Salt: 3b5dbe9a-7016-4132-a62a-d5da1b3a60e9
X-Archives-Hash: f4d3e6889cbcb949982c0a7196a02962

Hello. I'm a GNOME 3.12 user with a couple of problems that could depend
on GNOME keyring running as root instead of a non-privileged user.

This is the situation before logging in with GDM:

$ ps aux | grep keyring
root       458  0.0  0.0 115220  2808 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --daemonize --login
fturco     474  0.0  0.0  10572  2212 tty1     S+   10:53   0:00 grep
--colour=auto keyring

This is the situation after logging in with GDM:

$ ps aux | grep keyring
root       458  0.0  0.0 115220  2808 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --daemonize --login
root       495  0.0  0.0 115220  2784 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --daemonize --login
root       499  0.0  0.0 115248  3672 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --daemonize --login
root       534  0.0  0.1 294352  8692 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --start --components=ssh
root       550  0.0  0.1 359888  8636 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --start --components=pkcs11
root       558  0.0  0.1 359888  8480 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --start --components=secrets
root       568  0.0  0.1 294356  8560 ?        Sl   10:53   0:00
/usr/bin/gnome-keyring-daemon --start --components=gpg
fturco     753  0.0  0.0  10576  2236 pts/0    S+   10:54   0:00 grep
--colour=auto keyring

As you can see I have many gnome-keyring-daemon processes running as
root. I also noted that on my system /usr/bin/gnome-keyring-daemon has
the setuid bit set:

$ ls -l /usr/bin/gnome-keyring-daemon 
-rws--x--x 1 root root 940184 Jun  8 16:18 /usr/bin/gnome-keyring-daemon

Some directories are owned by root:

$ ls -ld /run/user/1000/keyring/
drwx------ 2 root fturco 100 Jun 15 10:55 /run/user/1000/keyring/

$ ls -ld /home/fturco/.local/share/keyrings
drwx------ 2 root fturco 4096 Jun  9 18:53
/home/fturco/.local/share/keyrings

Is all of this normal?

P.S. At the beginning I hinted at a couple of problem I'm having: 1) I
cannot access my e-mail account with Evolution; 2) I also cannot connect
to my VPN with Network Manager. In both cases I get the following error
message in journalctl:

> Error calling StartServiceByName for org.freedesktop.secrets: Timeout was reached 

There are two bugs on GNOME bugzilla describing these problems, one for
Evolution and the other one for Network Manager:

- https://bugzilla.gnome.org/show_bug.cgi?id=728469
- https://bugzilla.gnome.org/show_bug.cgi?id=731372

Thank you.