Ubuntu
consolekit package

dbus policy doesn't allow OpenSessionWithParameters

Bug #534514 reported by Michael Terry on 2010-03-08

8

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	ConsoleKit	Invalid	Medium	freedesktop-bugs #26327
	consolekit (Ubuntu)	Invalid	Undecided	Unassigned

Bug Description

Binary package hint: consolekit

The dbus policy file that allows all the dbus API calls does not include OpenSessionWithParameters (even though it includes OpenSession and all the other calls).

It seems like just an oversight. I reported it upstream (bug linked) and am attaching a debdiff for lucid.

See original description

Tags:

Revision history for this message

In freedesktop.org Bugzilla #26327, Michael Terry (mterry) wrote on 2010-03-08:

#1

Created an attachment (id=33864)
Trivial fix

Here's the trivial patch from downstream bug https://bugs.launchpad.net/consolekit/+bug/534514

Revision history for this message

In freedesktop.org Bugzilla #26327, Martin Pitt (pitti) wrote on 2010-03-08:

#2

This is a dangerous function for normal users, since they can elevate their privileges with that. Only root processes (like gdm) should call this function. Not allowing it for normal users is deliberate.

Revision history for this message

Michael Terry (mterry) wrote on 2010-03-08:

#3

Binary package hint: consolekit

The dbus policy file that allows all the dbus API calls does not include OpenSessionWithParameters (even though it includes OpenSession and all the other calls).

It seems like just an oversight. I reported it upstream (bug linked) and am attaching a debdiff for lucid.

Revision history for this message

Michael Terry (mterry) wrote on 2010-03-08:

#4

ck-open-session.debdiff Edit (2.1 KiB, text/plain)

Changed in consolekit (Ubuntu):
assignee:	nobody → Canonical Desktop Team (canonical-desktop-team)

Revision history for this message

Martin Pitt (pitti) wrote on 2010-03-08:

#5

This is a dangerous function for normal users, since they can elevate their privileges with that. Only root processes (like gdm) should call this function. Not allowing it for normal users is deliberate.

Changed in consolekit (Ubuntu):
assignee:	Canonical Desktop Team (canonical-desktop-team) → nobody
status:	New → Invalid

Bug Watch Updater (bug-watch-updater) on 2010-03-08

Changed in consolekit:
status:	Unknown → Confirmed

Bug Watch Updater (bug-watch-updater) on 2010-03-09

Changed in consolekit:
status:	Confirmed → Invalid

Bug Watch Updater (bug-watch-updater) on 2010-09-13

Changed in consolekit:
importance:	Unknown → Medium

Bug Watch Updater (bug-watch-updater) on 2011-01-25

Changed in consolekit:
importance:	Medium → Unknown

Bug Watch Updater (bug-watch-updater) on 2011-02-03

Changed in consolekit:
importance:	Unknown → Medium

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

ck-open-session.debdiff Edit

Add patch

Remote bug watches

freedesktop-bugs #26327
[RESOLVED NOTABUG] Edit

Bug watches keep track of this bug in other bug trackers.