f76d32b8e8
release can be found at http://library.gnome.org/misc/release-notes/2.28/ . Officially, this is mostly a polishing release in preparation for GNOME 3.0 due in about a year. On the FreeBSD front, though, a lot went into this release. Major thanks goes to kwm and avl who did a lot of the porting work for this release. In particular, kwm brought in Evolution MAPI support for better Microsoft Exchange integration. Avl made sure that the new gobject introspection repository ports were nicely compartmentalized so that large dependencies aren't brought in wholesale. But, every GNOME team member (ahze, avl, bland, kwm, mezz, and myself) contributed to this release. Other major improvements include an updated HAL with better volume probing code, ufsid integration, and support for volume names containing spaces (big thanks to J.R. Oldroyd); a new WebKit; updated AbiWord; an updated Gimp; and a preview of the new GNOME Shell project (thanks to Pawel Worach). The FreeBSD GNOME Team would like to that the following additional contributors to this release whose patches and testing really helped make it a success: Andrius Morkunas Dominique Goncalves Eric L. Chen J.R. Oldroyd Joseph S. Atkinson Li Pawel Worach Romain Tartière Thomas Vogt Yasuda Keisuke Rui Paulo Martin Wilke (and an extra shout out to miwi and pav for pointyhat runs) We would like to send this release out to Alexander Loginov (avl) in hopes that he feels better soon. PR: 136676 136967 138872 (obsolete with new epiphany-webkit) 139160 134737 139941 140097 140838 140929
71 lines
2.8 KiB
C
71 lines
2.8 KiB
C
--- daemon/gdm-session-worker.c.orig 2009-09-21 22:05:27.000000000 +0200
|
|
+++ daemon/gdm-session-worker.c 2009-09-22 12:33:59.000000000 +0200
|
|
@@ -31,6 +31,9 @@
|
|
#include <errno.h>
|
|
#include <grp.h>
|
|
#include <pwd.h>
|
|
+#ifdef HAVE_LOGINCAP
|
|
+#include <login_cap.h>
|
|
+#endif
|
|
|
|
#ifdef HAVE_LOGINDEVPERM
|
|
#include <libdevinfo.h>
|
|
@@ -340,7 +343,7 @@ gdm_session_execute (const char *file,
|
|
* what to search if PATH is unset. POSIX may, dunno.
|
|
*/
|
|
|
|
- path = "/bin:/usr/bin:.";
|
|
+ path = "/bin:/usr/bin:/usr/local/bin:.";
|
|
}
|
|
|
|
len = strlen (file) + 1;
|
|
@@ -1995,15 +1998,16 @@ gdm_session_worker_start_user_session (G
|
|
char *cachedirname;
|
|
char *home_dir;
|
|
int fd;
|
|
+#ifdef HAVE_LOGINCAP
|
|
+ char *login = worker->priv->username;
|
|
+ struct passwd *pwent = getpwnam (login);
|
|
+#endif
|
|
|
|
/* Make sure cachedir gets created before we drop to user */
|
|
cachedirname = gdm_session_worker_create_cachedir (worker);
|
|
g_free (cachedirname);
|
|
|
|
- if (setuid (worker->priv->uid) < 0) {
|
|
- g_debug ("GdmSessionWorker: could not reset uid - %s", g_strerror (errno));
|
|
- _exit (1);
|
|
- }
|
|
+ /* Call setsid() before setusercontext() */
|
|
|
|
if (setsid () < 0) {
|
|
g_debug ("GdmSessionWorker: could not set pid '%u' as leader of new session and process group - %s",
|
|
@@ -2011,6 +2015,28 @@ gdm_session_worker_start_user_session (G
|
|
_exit (2);
|
|
}
|
|
|
|
+#ifdef HAVE_LOGINCAP
|
|
+ if (setusercontext (NULL, pwent, pwent->pw_uid,
|
|
+ LOGIN_SETLOGIN | LOGIN_SETPATH |
|
|
+ LOGIN_SETPRIORITY | LOGIN_SETRESOURCES |
|
|
+ LOGIN_SETUMASK | LOGIN_SETUSER |
|
|
+ LOGIN_SETENV) < 0) {
|
|
+ g_debug ("%s: setusercontext () failed for %s. "
|
|
+ "Aborting.", "gdm_session_worker_start_user_session",
|
|
+ login ? login : "(null)");
|
|
+ }
|
|
+
|
|
+ /* Propagate PATH environment variable from user context to child processes */
|
|
+
|
|
+ gdm_session_worker_set_environment_variable (worker, "PATH", getenv ("PATH"));
|
|
+
|
|
+#else
|
|
+ if (setuid (worker->priv->uid) < 0) {
|
|
+ g_debug ("GdmSessionWorker: could not reset uid - %s", g_strerror (errno));
|
|
+ _exit (1);
|
|
+ }
|
|
+#endif
|
|
+
|
|
environment = gdm_session_worker_get_environment (worker);
|
|
|
|
g_assert (geteuid () == getuid ());
|