Bug 1980438 - [BZ] Disable gvfs plugins when listing flatpak installations
Summary: [BZ] Disable gvfs plugins when listing flatpak installations
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: flatpak
Version: 8.2
Hardware: All
OS: Linux
medium
medium
Target Milestone: beta
: ---
Assignee: Debarshi Ray
QA Contact: Martin Krajnak
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-07-08 16:33 UTC by amit yadav
Modified: 2022-05-10 14:02 UTC (History)
3 users (show)

Fixed In Version: flatpak-1.8.5-5.el8
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2022-05-10 13:38:30 UTC
Type: Bug
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github flatpak flatpak pull 4049 0 None Merged profile.d: Disable gvfs plugins when listing flatpak installations 2021-10-04 23:05:03 UTC
Github flatpak flatpak pull 4449 0 None open [flatpak-1.8.x] profile.d: Disable gvfs plugins when listing flatpak installations 2021-10-04 23:05:16 UTC
Red Hat Product Errata RHSA-2022:1792 0 None None None 2022-05-10 13:38:37 UTC

Description amit yadav 2021-07-08 16:33:43 UTC 
Description of problem:

The gvfs-daemon process is starting by default for the root user, even if the root user is not logged into the system console. 

$ runlevel 
5 3

$ ps aux | grep gvfs
root        2895  0.0  0.6 312916  9408 ?        Ssl  18:26   0:00 /usr/libexec/gvfsd
root        3510  0.0  0.0  12136  1152 pts/0    R+   18:27   0:00 grep --color=auto gvfs

As per the journal logs, the gvfs-daemon process for root was started by "flatpak --installations". 

$ less var/log/messages |grep gvfs-daemon
Mar 24 05:42:14 hostname dbus-daemon[62961]: [session uid=0 pid=62961] Activating via systemd: service name='org.gtk.vfs.Daemon' unit='gvfs-daemon.service' requested by ':1.1' (uid=0 pid=62949 comm="gdk-pixbuf-query-loaders-64 --update-cache " label="unconfined_u:unconfined_r:rpm_script_t:s0-s0:c0.c1023")
May 28 11:44:23 hostname dbus-daemon[43240]: [session uid=0 pid=43240] Activating via systemd: service name='org.gtk.vfs.Daemon' unit='gvfs-daemon.service' requested by ':1.1' (uid=0 pid=43238 comm="flatpak --installations ")

The issue is reproducible on RHEL8.2 and above systems.

Version-Release number of selected component (if applicable):
gvfs-1.36.2-8.el8.x86_64
flatpak-1.6.2-2.el8.x86_64

How reproducible:
Always

Steps to Reproduce:
1. Reboot the system in multi-user.target
2. Login into the system via ssh and check the status.

    # ps aux | grep gvfs

Actual results:
gvfsd process starts for root user

Expected results:
gvfsd process should not start 

Additional info:

As per the following link the problem was caused by the flatpak installations and the fix is available in the upstream:

    https://github.com/flatpak/flatpak/commit/f69a35ceec7322e02007b45d676e0b6f1e9376b0
Comment 1 Debarshi Ray 2021-10-04 23:34:03 UTC 
Built flatpak-1.8.5-5.el8:
https://brewweb.engineering.redhat.com/brew/taskinfo?taskID=40130214
Comment 6 errata-xmlrpc 2022-05-10 13:38:30 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: flatpak security and bug fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:1792
Note You need to log in before you can comment on or make changes to this bug.