==== 2.21.2 ==== 2007-11-12 William Jon McCann * NEWS: Update for 2.21.2. 2007-11-09 William Jon McCann * daemon/gdm-display-access-file.c: (gdm_display_access_file_class_init), (gdm_display_access_file_new), (gdm_display_access_file_add_display): * daemon/gdm-display-access-file.h: Add emacs mode lines, split lines. 2007-11-09 William Jon McCann * common/gdm-common.c: (gdm_string_hex_decode): * common/gdm-common.h: * daemon/Makefile.am: * daemon/auth.c: * daemon/auth.h: * daemon/gdm-display.c: (_create_access_file_for_user), (gdm_display_real_create_authority), (gdm_display_real_add_user_authorization), (gdm_display_real_remove_user_authorization), (gdm_display_get_x11_cookie), (gdm_display_get_x11_authority_file), (gdm_display_real_unmanage), (gdm_display_set_property), (gdm_display_get_property), (gdm_display_class_init), (gdm_display_finalize): * daemon/gdm-display.h: * daemon/gdm-factory-slave.c: (gdm_factory_slave_run): * daemon/gdm-local-display-factory.c: (create_display_for_device): * daemon/gdm-manager.c: (gdm_manager_init), (gdm_manager_finalize): * daemon/gdm-product-slave.c: (gdm_product_slave_create_server): * daemon/gdm-server.c: (_gdm_server_set_auth_file), (gdm_server_set_property), (gdm_server_get_property), (gdm_server_class_init), (gdm_server_new): * daemon/gdm-server.h: * daemon/gdm-simple-slave.c: (gdm_simple_slave_run): * daemon/gdm-slave.c: (gdm_slave_connect_to_x11_display), (gdm_slave_real_start), (gdm_slave_set_property), (gdm_slave_get_property), (gdm_slave_class_init): * daemon/gdm-static-display.c: (gdm_static_display_add_user_authorization), (gdm_static_display_remove_user_authorization): * daemon/gdm-xdmcp-display-factory.c: (gdm_xdmcp_handle_request): * daemon/gdm-xdmcp-display.c: (gdm_xdmcp_display_create_authority), (gdm_xdmcp_display_add_user_authorization), (gdm_xdmcp_display_remove_user_authorization), (gdm_xdmcp_display_unmanage): * daemon/gdm-display-access-file.c: * daemon/gdm-display-access-file.h: With this patch we now invoke the X server with the -auth argument and disable machine wide access to the X server. This patch also drops the md5 hashing of random bytes to create cookies and instead just creates cookies directly (like the X server would if we asked the X server to generate the cookies for us). Patch from: Ray Strode 2007-11-07 William Jon McCann * daemon/Makefile.am: * daemon/test-hal-seats.c: (list_seats): Build the test hal seats tool 2007-11-07 William Jon McCann * daemon/gdm-factory-slave.c: (greeter_reset_timeout), (queue_greeter_reset), (on_session_setup_complete), (on_session_setup_failed), (on_session_reset_complete), (on_session_reset_failed), (on_session_authenticated), (on_session_authentication_failed), (on_session_authorized), (on_session_authorization_failed), (on_session_accredited), (on_session_accreditation_failed), (on_greeter_begin_verification), (on_greeter_begin_verification_for_user), (gdm_factory_slave_start): * daemon/gdm-product-slave.c: (on_session_setup_complete), (on_session_setup_failed), (on_session_reset_complete), (on_session_reset_failed), (on_session_authenticated), (on_session_authentication_failed), (on_session_authorized), (on_session_authorization_failed), (on_session_accredited), (on_session_accreditation_failed), (on_relay_setup), (on_relay_setup_for_user), (on_relay_authenticate), (on_relay_authorize), (on_relay_establish_credentials), (on_relay_renew_credentials), (create_new_session), (relay_dbus_handle_message): * daemon/gdm-session-direct.c: (send_dbus_void_signal), (on_authentication_failed), (on_session_start_failed), (gdm_session_direct_handle_setup_complete), (gdm_session_direct_handle_setup_failed), (gdm_session_direct_handle_reset_complete), (gdm_session_direct_handle_reset_failed), (gdm_session_direct_handle_authenticated), (gdm_session_direct_handle_authentication_failed), (gdm_session_direct_handle_authorized), (gdm_session_direct_handle_authorization_failed), (gdm_session_direct_handle_accredited), (gdm_session_direct_handle_accreditation_failed), (gdm_session_direct_handle_start_failed), (session_worker_message), (do_introspect), (gdm_session_direct_init), (worker_exited), (worker_died), (gdm_session_direct_open), (send_setup), (send_setup_for_user), (gdm_session_direct_setup), (gdm_session_direct_setup_for_user), (gdm_session_direct_authenticate), (gdm_session_direct_authorize), (gdm_session_direct_accredit), (gdm_session_direct_close), (gdm_session_iface_init): * daemon/gdm-session-direct.h: * daemon/gdm-session-private.h: * daemon/gdm-session-relay.c: (send_dbus_string_signal), (send_dbus_void_signal), (gdm_session_relay_setup), (gdm_session_relay_setup_for_user), (gdm_session_relay_authenticate), (gdm_session_relay_authorize), (gdm_session_relay_accredit), (gdm_session_relay_answer_query), (handle_setup_complete), (handle_setup_failed), (handle_authenticated), (handle_authentication_failed), (handle_authorized), (handle_authorization_failed), (handle_accredited), (handle_accreditation_failed), (handle_session_started), (handle_session_stopped), (handle_opened), (session_handle_child_message), (do_introspect), (gdm_session_iface_init): * daemon/gdm-session-worker.c: (gdm_session_execute), (gdm_session_worker_update_username), (gdm_session_worker_initialize_pam), (gdm_session_worker_accredit_user), (session_worker_child_watch), (gdm_session_worker_start_user_session), (do_setup), (do_authenticate), (do_authorize), (do_accredit), (do_open_session), (do_start_session), (state_change_idle), (on_setup), (on_setup_for_user), (on_authenticate), (on_authorize), (on_establish_credentials), (on_renew_credentials), (worker_dbus_handle_message): * daemon/gdm-session.c: (gdm_session_setup), (gdm_session_setup_for_user), (gdm_session_authenticate), (gdm_session_authorize), (gdm_session_accredit), (gdm_session_class_init), (_gdm_session_setup_complete), (_gdm_session_setup_failed), (_gdm_session_reset_complete), (_gdm_session_reset_failed), (_gdm_session_authenticated), (_gdm_session_authentication_failed), (_gdm_session_authorized), (_gdm_session_authorization_failed), (_gdm_session_accredited), (_gdm_session_accreditation_failed), (_gdm_session_session_start_failed): * daemon/gdm-session.h: * daemon/gdm-simple-slave.c: (greeter_reset_timeout), (queue_greeter_reset), (on_session_setup_complete), (on_session_setup_failed), (on_session_reset_complete), (on_session_reset_failed), (on_session_authenticated), (on_session_authentication_failed), (on_session_authorized), (on_session_authorization_failed), (on_session_accredited), (on_session_accreditation_failed), (create_new_session), (on_greeter_begin_verification), (on_greeter_begin_verification_for_user): * daemon/test-session.c: (on_open), (on_session_setup_complete), (on_session_setup_failed), (on_session_reset_complete), (on_session_reset_failed), (on_session_authenticated), (on_session_authentication_failed), (on_session_authorized), (on_session_authorization_failed), (on_session_accredited), (on_session_accreditation_failed), (on_session_started), (on_session_exited), (on_session_died), (main): Split up the Verification step in the GdmSession interface into component parts: setup, authenticate, authorize, accredit. 2007-11-06 William Jon McCann * daemon/gdm-session-worker.c: (send_dbus_void_method), (send_authenticated), (send_session_startup_failed), (send_authentication_failed), (send_authorization_failed), (send_accreditation_failed), (gdm_session_worker_initialize_pam), (gdm_session_worker_authenticate_user), (gdm_session_worker_accredit_user), (gdm_session_worker_start_user_session), (gdm_session_worker_open_user_session), (do_initialize), (do_authenticate), (do_authorize), (do_accredit), (do_open_session), (do_start_session), (state_change_idle), (queue_state_change), (on_start_program), (on_begin_verification), (on_begin_verification_for_user): Make worker internally use a state machine. 2007-11-06 William Jon McCann * daemon/gdm-session-worker.c: (gdm_session_worker_uninitialize_pam), (gdm_session_worker_authenticate_user), (gdm_session_worker_authorize_user), (gdm_session_worker_give_user_credentials), (gdm_session_worker_open_user_session), (gdm_session_worker_start_program): * daemon/gdm-session-worker.h: Make a bit more like a state machine. This will make it easier to separate the steps but make sure they occur in the proper order. 2007-11-05 William Jon McCann * gui/simple-greeter/gdm-user-chooser-widget.c: (choose_user_id), (on_user_added), (on_user_removed), (on_user_is_logged_in_changed): * gui/simple-greeter/gdm-user-manager.c: (on_user_sessions_changed), (on_user_icon_changed), (create_user), (add_new_user_for_pwent), (get_current_seat_id), (get_uid_from_session_id), (seat_session_added), (seat_session_removed), (on_proxy_destroy), (get_seat_proxy), (gdm_user_manager_get_user), (reload_passwd), (gdm_user_manager_init), (gdm_user_manager_finalize): * gui/simple-greeter/gdm-user-private.h: * gui/simple-greeter/gdm-user.c: (session_compare), (_gdm_user_add_session), (_gdm_user_remove_session): Use ConsoleKit to drive populate the list of sessions for each user. 2007-11-04 William Jon McCann * gui/simple-greeter/gdm-user-chooser-widget.c: (on_user_added), (on_user_is_logged_in_changed): * gui/simple-greeter/gdm-user.c: (gdm_user_get_num_sessions), (gdm_user_init): More session list stuff. 2007-11-04 William Jon McCann * gui/simple-greeter/gdm-user-manager.c: (reload_passwd): * gui/simple-greeter/gdm-user-private.h: * gui/simple-greeter/gdm-user.c: (_gdm_user_add_session), (_gdm_user_remove_session), (gdm_user_get_property), (gdm_user_class_init): * gui/simple-greeter/gdm-user.h: Add back the session list to GdmUser. 2007-11-02 William Jon McCann * data/gdm.conf: Block Settings.SetValue by default in the dbus security policy. 2007-11-02 William Jon McCann * common/gdm-settings-keys.h: * common/gdm-settings.c: (gdm_settings_set_value): * common/test-settings-client.c: (test_settings_client): Remove obsolete config keys. Add examples for using dbus-send. Fix return value of SetValue. 2007-11-01 William Jon McCann * Makefile.am: * data/Makefile.am: Fix build. 2007-11-01 William Jon McCann * config/.cvsignore: Remove config dir. 2007-11-01 William Jon McCann * config/Init.in: * config/Makefile.am: * config/PostLogin: * config/PostSession.in: * config/PreSession.in: * config/Xsession.in: * config/gdm: * config/gdm-autologin: * config/gdm.conf-custom.in: * configure.ac: * data/Makefile.am: Move stuff from config to data. 2007-11-01 William Jon McCann * config/Makefile.am: * config/gdm.conf-custom.in: * config/gdm.conf.in: * data/gdm.schemas.in.in: Kill config options that we don't use. 2007-10-31 William Jon McCann * configure.ac: Fix typo 2007-10-31 William Jon McCann * configure.ac: Add Xau and Xext to XLIB_LIBS when x11.pc isn't found. Fixes #492022 more 2007-10-31 William Jon McCann * configure.ac: * daemon/Makefile.am: If x11.pc doesn't exist then try a fallback. Fixes #492022 2007-10-31 William Jon McCann * daemon/gdm-session-direct.c: (gdm_session_direct_start_session): This patch is sort of the minimum we need to get the session run through Xsession (which makes sure ssh-agent/dbus/etc get started). Patch from: Ray Strode 2007-10-31 William Jon McCann * daemon/gdm-session-worker.c: (gdm_session_worker_uninitialize_pam): change error_code to status to make it clear it isn't just for errors. 2007-10-31 William Jon McCann * daemon/gdm-session-worker.c: (session_worker_child_watch): make sure we close the session on logout Patch from: Ray Strode 2007-10-31 William Jon McCann * configure.ac: Post release version bump