Your message dated Thu, 23 Oct 2014 09:18:59 +0000
with message-id <e1xhexr-0007uf...@franck.debian.org>
and subject line Bug#763134: fixed in acpi-support 0.142-5
has caused the Debian Bug report #763134,
regarding acpi-support-base: /usr/share/acpi-support/power-funcs broken from
line 24 if consolekit installed and no dbus running
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
763134: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=763134
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: acpi-support-base
Version: 0.140-5+deb7u3
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
*** Please consider answering these questions, where appropriate ***
* What led up to the situation?
* What exactly did you do (or not do) that was effective (or
ineffective)?
* What was the outcome of this action?
* What outcome did you expect instead?
*** End of the template - remove these lines ***
-- System Information:
Debian Release: 7.6
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages acpi-support-base depends on:
ii acpid 1:2.0.16-1+deb7u1
Versions of packages acpi-support-base recommends:
pn consolekit <none>
Versions of packages acpi-support-base suggests:
ii acpi-support 0.140-5+deb7u3
-- no debconf information
---
getXuser() is broken:
block starting at line 24 in /usr/share/acpi-support/power-funcs:
----
24 if [ -x /usr/bin/ck-list-sessions ]; then
25 uid=$(ck-list-sessions | awk 'BEGIN { unix_user = ""; }
/^Session/ { unix_user = ""; } /unix-user =/ { gsub(/'\''/,"",$3);
unix_user = $3; } /x11-display = '\'$display\''/ { print unix_user; exit
(0); }')
26
27 if [ "$uid" ]; then
28 IFS=:
29 set -- $(getent passwd $uid)
30 user=$1
31 unset IFS
32 fi
33 else
----
just testing if /usr/bin/ck-list-sessions is executable doesn't do the
trick.
until just now i had consolekit installed (some dependency somewhere), but
dbus was (and still is and will be) not running. this leads to an error in
line 25, ultimately no $user is set. the pinky check is not executed (but
would work just fine).
finally XAUTHORITY and XUSER are exported as blanks.
this breaks at least /usr/share/acpi-support/screenblank
debug output:
----
[04:00:22] root@schleppi ~ # /bin/sh -x /usr/share/acpi-support/screenblank
-- source added by me for testing
+ . /usr/share/acpi-support/power-funcs
--
+ umask 022
+
PATH=/sbin:/usr/sbin:/usr/local/sbin:/sbin:/usr/sbin:/usr/local/sbin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/bin/X11
+ POWERSTATE=/var/lib/acpi-support/powerstate
+ HDPARM=/sbin/hdparm -q
+ LIDSTATE=/var/lib/acpi-support/lidstate
+ d=/tmp/.X11-unix
+ displaynum=0
+ getXuser
+ local plist display uid user startx pid userhome IFS
+ [ 0 ]
+ display=:0
+ user=
+ [ -x /usr/bin/ck-list-sessions ]
+ ck-list-sessions
+ awk BEGIN { unix_user = ""; } /^Session/ { unix_user = ""; } /unix-user =/ {
gsub(/'/,"",$3); unix_user = $3; } /x11-display =
':0'/ { print unix_user; exit (0); }
** Message: Failed to connect to the D-Bus daemon: Failed to connect to socket
/var/run/dbus/system_bus_socket: No such file or
directory
+ uid=
+ [ ]
+ [ -z ]
+ pgrep -n startx
+ :
+ startx=
+ [ -z ]
+ [ x != x ]
+ export XAUTHORITY=
+ XUSER=
+ export XUSER
+ [ x != x ]
+ [ -x = xtrue ]
----
result: X not locked as expected after sleep/hibernate. free local and
possible remote (root)shells etc...
regards
waijb
--- End Message ---
--- Begin Message ---
Source: acpi-support
Source-Version: 0.142-5
We believe that the bug you reported is fixed in the latest version of
acpi-support, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 763...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Michael Meskes <mes...@debian.org> (supplier of updated acpi-support package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 21 Oct 2014 18:40:40 +0200
Source: acpi-support
Binary: acpi-support acpi-support-base acpi-fakekey
Architecture: source all amd64
Version: 0.142-5
Distribution: unstable
Urgency: medium
Maintainer: Debian Acpi Team <pkg-acpi-de...@lists.alioth.debian.org>
Changed-By: Michael Meskes <mes...@debian.org>
Description:
acpi-fakekey - tool to generate fake key events
acpi-support - scripts for handling many ACPI events
acpi-support-base - scripts for handling base ACPI events such as the power
button
Closes: 754450 761458 762176 763134
Changes:
acpi-support (0.142-5) unstable; urgency=medium
.
* /etc/acpi/power.sh needs to figure out which pm-powersave option to use.
Both, plugging and unplugging, create an ac and a battery event.
(Closes: #761458)
* Make power-funcs work even if ck-list-sessions does not return anything
useful. (Closes: #762176, 763134)
* Bumped Standards-Version to 3.9.6, no changes needed.
* Only accept systemd as power management daemon for some events as it
doesn't handle e.g. battery events. (Closes: #754450)
Checksums-Sha1:
5b55249ce117aca95c4c2cf4d1182cbb4a47753a 2096 acpi-support_0.142-5.dsc
3bd8675aea50672ac470e55638b91db68deb2cde 49740 acpi-support_0.142-5.diff.gz
7caf04e264c71d2ce6e7078bc54b126619d262de 48618 acpi-support_0.142-5_all.deb
211e9df3ba0e2a8c07afbc686d2cce8e5d2b9009 23680
acpi-support-base_0.142-5_all.deb
708a1e2e63264376709fb8fb34373fcd249e2673 25600 acpi-fakekey_0.142-5_amd64.deb
Checksums-Sha256:
850faba3c99fedc4babe4f30fb20f2e204f41d6d76afed49727c9a5acd82c13e 2096
acpi-support_0.142-5.dsc
960a2521ff9155a3af710e4c21229622589a5f91710e0b4671b406b99ecde81e 49740
acpi-support_0.142-5.diff.gz
e2685ba3221e54c420b690680f630cdfb75fd428444e1cd3408d703380aca039 48618
acpi-support_0.142-5_all.deb
78ac6318484f1edf59a66898ee2b6bbf79e08ab7087477483fcdc9030ed46973 23680
acpi-support-base_0.142-5_all.deb
37484d0a580738e3945e39b78acf6aff61f7db019b092ac987a26c243d72aa6f 25600
acpi-fakekey_0.142-5_amd64.deb
Files:
783ba0e48fa4a9dabe1ef4d6c938a51f 2096 admin optional acpi-support_0.142-5.dsc
aa7c4c7f7b0de2ff55961c9f8e07de36 49740 admin optional
acpi-support_0.142-5.diff.gz
ac11ca092e6663e09f1982cf2c7bc7e7 48618 admin optional
acpi-support_0.142-5_all.deb
8e2630e0b60e54ecb692b85847bf3fb0 23680 admin optional
acpi-support-base_0.142-5_all.deb
40111d565dec842280969965c3884c60 25600 admin optional
acpi-fakekey_0.142-5_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=A4n/
-----END PGP SIGNATURE-----
--- End Message ---
