cosmic-greeter fails to log in to cosmic session when SELinux is set to ENFORCING
#35
Comments
|
Seems more like a greetd issue than a cosmic-greeter one? |
|
I'll give it a go tonight (i.e. you'll hear from me in about 6 hours) |
|
It was SELinux after all, I'll rename this issue and keep it open for tracking purposes, unless it would be preferred to close it |
ryanabx
changed the title
ENFORCING
|
Feel free to keep this open, but I don't think there is something actionable for us, as this is likely a greetd-selinux problem. |
Makes sense, I'll file an upstream issue, and link it here when I do. Probably will keep this open just so people who stumble upon the issue know what's going on |
|
@ryanabx, could you please reference the upstream issue, as I can't find it. |
My bad, I actually forgot to file that issue 😅 |
|
Any updates regarding this issue? Is it confirmed to be a greetd-selinux problem? |
|
I'm excited about cosmic but sad about it being unavailable on my "production" workstations due to the selinuxing, so did some digging. the upstream issue discussion Based on more recent discussion, a couple triggers include the rpm-ostree and OCI build processes and their handling of labeling. Red Hat Bug 2224162 - selinux denial prevents logging in see also ublue-os/main#223 and much more recent discussion here ostreedev/ostree-rs-ext#388 Mostly related threads, mentioning silverblue, ublue oci images, and even bluebuild custom oci images based on ublue and silverblue itself. I'm using a mix of those across all of my daily linux workstations oops. |
|
are we sure it's actually greetd? I used the fedora server qcow2 image and installed cosmic (so no gnome is available) and it works out of the box. |
|
FWIW, I installed ryanabx's COPR on a F40 GNOME Workstation and I can log into COSMIC just fine as well. |
|
@rivenirvana are you using gdm or cosmic-greeter (greetd) |
It seems to be a combination of using greetd with SElinux and a read-only image based desktop. |
|
Also confirming this, just installed cosmic-desktop on Asahi Linux (fedora on apple silicon), no need to disable selinux there at all. Does looks like the bug isn't outside cosmic-greeter |
|
I installed Fedora 40 but I can't get to the desktop. After logging in, the only thing that happens is that the screen goes into standby mode. This happens with or without selinux. This happens with Nvidia GPU using nouveau and doesn't happens with UHD 630 (Intel iGPU). |
Could you post some logs? Specially |
Here the log GPU is a RTX A2000. |
Yeah, that is clearly a nouveau crash: No idea what bug exactly you are hitting, but this seems like an upstream problem to me. |
And with Nvidia 555.58.02 drivers, everything is slow with stutter even using 180Hz refresh rate. Using |
Note those are beta-drivers, so bugs are expected. This sounds like quite the horrible experience though, but the logs look normal. Given I don't have the hardware to reproduce and the driver is closed-source, I don't know what to tell you. So far we have had good results with consumer cards and this driver version.
Can you confirm if the rest of the arguments you are using are required for decent operation? I am especially curious about |
|
The greeter works fine during first login without disabling SELinux but after suspend it resulted in the 'Authentication Failure'; but copying greetd as cosmic-greeter as advised in #126 (comment) solved the issue. |
start-cosmicworks fine,cosmic-sessionworks fine, so I'm pretty confused and I've been trying to figure out why cosmic-greeter won't log in to the session properly. All I get is a brief black screen with a panic in greetd:I tried looking at it with
RUST_BACKTRACE=fullbut the stack trace was completely unhelpful, going through a lot of unknown areas and some libc areasI have these dependencies installed (not including dependencies derived from build depends) (Fedora)
The text was updated successfully, but these errors were encountered: