Make DBUS session check more resilient #684
Conversation
We should always ensure that the DBUS session is set to the logged in user, who should not be root.
There was a problem hiding this comment.
Works as advertised. Still can't explain how uid 0 was running those tasks, but the error report was clear that it was happening.
Spent some time reading up on how dbus works, which has changed a bit in versions of systemd, so we may want to revisit this code during the Qubes 4.1 transition (when systemd should go from v231 to v245). I'll post a patch that I tested locally, but am not appending to the PR as part of the merge, since the changes presented work well as they are.
Just noting that, if you look at @emkll's reported output, you'll notice that |
|
Tried this locally: diff --git a/dom0/update-xfce-settings b/dom0/update-xfce-settings
index f1adecf..4d64730 100755
--- a/dom0/update-xfce-settings
+++ b/dom0/update-xfce-settings
@@ -23,12 +23,15 @@ ICONSIZE=64
if ! [ -x "$(command -v xfconf-query)" ]; then
echo "Error: xfconf-query is not installed." >&2
- exit 1
+ exit 2
fi
-# This script requires a valid DBUS session to work. When run non-interactively,
-# we assume that a sesssion is running for the current user.
-export DBUS_SESSION_BUS_ADDRESS="unix:path=/run/user/$(id -u $USER)/bus"
+# This script requires a valid DBUS session to work. When run interactively,
+# DBUS_SESSION_BUS_ADDRESS should already be populated. Otherwise, create
+# a session so that the xfconf-query commands succeed.
+if [[ -z "${DBUS_SESSION_BUS_ADDRESS:-}" ]]; then
+ eval "$(dbus-launch)"
+fiand it handled the edge case of DBUS_SESSION_BUS_ADDRESS not being defined. Which notably it isn't during a |
We should always ensure that the DBUS session is set to the logged in user, who should not be root.
Towards #668
Status
Ready for review
Test plan
stagingdom0viamake clonemake stagingupdate-xfce-settingsruns successfullyupdate-xfce-settingsscript as root