Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-04-21 21:47:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 91
fleet/orbit/pkg/execuser/execuser_linux.go

259 lines
7.6 KiB
Go
Raw Normal View History

Orbit: Add Fleet Desktop support to Windows (#4873) * Orbit: Add Fleet Desktop support to Windows * Rename workflow, fix linux build * Do not compile systray on linux * nolint on unused * Fix lint properly * nolint both checkers * Fix monitor logic in desktopRunner * Fix interrupt and execute order
2022-04-01 20:28:51 +00:00
package execuser
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
import (
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
"bufio"
"bytes"
Do not use golangci action for better reproducibility (use `make lint-go`) (#6175) * Do not use golangci action for better reproducibility * Add fix to trigger build * Fix all reported issues * fix more lint errors * Add missing import * Remove unused method * Remove change not necessary
2022-06-10 21:52:24 +00:00
"errors"
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
"fmt"
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
"io"
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
"os"
"os/exec"
"path/filepath"
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
"regexp"
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
"sort"
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
"strconv"
"strings"
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
userpkg "github.com/fleetdm/fleet/v4/orbit/pkg/user"
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
"github.com/rs/zerolog/log"
)
// run uses sudo to run the given path as login user.
Adding telemetry for specific Fleet Desktop errors (#23349) Adding telemetry for catching issue #19172 # Docs changes In another PR: https://github.com/fleetdm/fleet/pull/23423/files # Demo <div> <a href="https://www.loom.com/share/233625875eec46508c26ae315cd52d19"> <p>[Demo] Add telemetry for vital fleetd errors - Issue #23413 - Watch Video</p> </a> <a href="https://www.loom.com/share/233625875eec46508c26ae315cd52d19"> <img style="max-width:300px;" src="https://cdn.loom.com/sessions/thumbnails/233625875eec46508c26ae315cd52d19-45ca0ec1b7b5e9e7-full-play.gif"> </a> </div> # Checklist for submitter - [x] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] Added/updated tests - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-10-31 19:24:42 +00:00
func run(path string, opts eopts) (lastLogs string, err error) {
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
args, err := getUserAndDisplayArgs(path, opts)
if err != nil {
return "", fmt.Errorf("get args: %w", err)
}
args = append(args,
// Append the packaged libayatana-appindicator3 libraries path to LD_LIBRARY_PATH.
//
// Fleet Desktop doesn't use libayatana-appindicator3 since 1.18.3, but we need to
// keep this to support older versions of Fleet Desktop.
fmt.Sprintf("LD_LIBRARY_PATH=%s:%s", filepath.Dir(path), os.ExpandEnv("$LD_LIBRARY_PATH")),
path,
)
linux key escrow progress windows (#24069)
2024-11-22 19:30:13 +00:00
if len(opts.args) > 0 {
for _, arg := range opts.args {
args = append(args, arg[0], arg[1])
}
}
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
cmd := exec.Command("sudo", args...)
cmd.Stderr = os.Stderr
cmd.Stdout = os.Stdout
log.Printf("cmd=%s", cmd.String())
if err := cmd.Start(); err != nil {
return "", fmt.Errorf("open path %q: %w", path, err)
}
return "", nil
}
// run uses sudo to run the given path as login user and waits for the process to finish.
func runWithOutput(path string, opts eopts) (output []byte, exitCode int, err error) {
args, err := getUserAndDisplayArgs(path, opts)
if err != nil {
return nil, -1, fmt.Errorf("get args: %w", err)
}
args = append(args, path)
if len(opts.args) > 0 {
for _, arg := range opts.args {
args = append(args, arg[0], arg[1])
}
}
add kdialog for kubuntu key escrow (#24405)
2024-12-05 15:44:16 +00:00
// Prefix with "timeout" and "sudo" if applicable
var cmdArgs []string
if opts.timeout > 0 {
cmdArgs = append(cmdArgs, "timeout", fmt.Sprintf("%ds", int(opts.timeout.Seconds())))
}
cmdArgs = append(cmdArgs, "sudo")
cmdArgs = append(cmdArgs, args...)
cmd := exec.Command(cmdArgs[0], cmdArgs[1:]...) // #nosec G204
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
log.Printf("cmd=%s", cmd.String())
output, err = cmd.Output()
if err != nil {
if exitErr, ok := err.(*exec.ExitError); ok {
exitCode = exitErr.ExitCode()
return output, exitCode, fmt.Errorf("%q exited with code %d: %w", path, exitCode, err)
}
return output, -1, fmt.Errorf("%q error: %w", path, err)
}
return output, exitCode, nil
}
bugfix: orbit linux zenity progress windows (#24280)
2024-12-05 15:02:03 +00:00
func runWithStdin(path string, opts eopts) (io.WriteCloser, error) {
args, err := getUserAndDisplayArgs(path, opts)
if err != nil {
return nil, fmt.Errorf("get args: %w", err)
}
args = append(args, path)
if len(opts.args) > 0 {
for _, arg := range opts.args {
args = append(args, arg[0], arg[1])
}
}
cmd := exec.Command("sudo", args...)
log.Printf("cmd=%s", cmd.String())
stdin, err := cmd.StdinPipe()
if err != nil {
return nil, fmt.Errorf("stdin pipe: %w", err)
}
if err := cmd.Start(); err != nil {
return nil, fmt.Errorf("open path %q: %w", path, err)
}
return stdin, nil
}
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
func getUserAndDisplayArgs(path string, opts eopts) ([]string, error) {
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
user, err := userpkg.GetLoginUser()
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
if err != nil {
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
return nil, fmt.Errorf("get user: %w", err)
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
}
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
log.Info().Str("user", user.Name).Int64("id", user.ID).Msg("attempting to get user session type and display")
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
// Get user's display session type (x11 vs. wayland).
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
uid := strconv.FormatInt(user.ID, 10)
userDisplaySessionType, err := userpkg.GetUserDisplaySessionType(uid)
if userDisplaySessionType == userpkg.GuiSessionTypeTty {
return nil, fmt.Errorf("user %q (%d) is not running a GUI session", user.Name, user.ID)
}
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
if err != nil {
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
// Wayland is the default for most distributions, thus we assume
// wayland if we couldn't determine the session type.
log.Error().Err(err).Msg("assuming wayland session")
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
userDisplaySessionType = userpkg.GuiSessionTypeWayland
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
}
var display string
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
if userDisplaySessionType == userpkg.GuiSessionTypeX11 {
x11Display, err := getUserX11Display(user.Name)
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
if err != nil {
log.Error().Err(err).Msg("failed to get X11 display, using default :0")
// TODO(lucas): Revisit when working on multi-user/multi-session support.
// Default to display ':0' if user display could not be found.
// This assumes there's only one desktop session and belongs to the
// user returned in `getLoginUID'.
display = ":0"
} else {
display = x11Display
}
} else {
waylandDisplay, err := getUserWaylandDisplay(uid)
if err != nil {
log.Error().Err(err).Msg("failed to get wayland display, using default wayland-0")
// TODO(lucas): Revisit when working on multi-user/multi-session support.
// Default to display 'wayland-0' if user display could not be found.
// This assumes there's only one desktop session and belongs to the
// user returned in `getLoginUID'.
display = "wayland-0"
} else {
display = waylandDisplay
}
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
}
Fix Fleet Desktop opening of URL on Ubuntu 21/22 (#6314) * Fix Fleet Desktop opening URL on Ubuntu 21/22 * Fine tunning: fix for Ubuntu 18
2022-06-21 19:26:14 +00:00
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
log.Info().
Str("path", path).
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
Str("user", user.Name).
Int64("id", user.ID).
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
Str("display", display).
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
Str("session_type", userDisplaySessionType.String()).
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
Msg("running sudo")
args := argsForSudo(user, opts)
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
if userDisplaySessionType == userpkg.GuiSessionTypeWayland {
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
args = append(args, "WAYLAND_DISPLAY="+display)
// For xdg-open to work on a Wayland session we still need to set the DISPLAY variable.
x11Display := ":" + strings.TrimPrefix(display, "wayland-")
args = append(args, "DISPLAY="+x11Display)
} else {
args = append(args, "DISPLAY="+display)
}
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
args = append(args,
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
// DBUS_SESSION_BUS_ADDRESS sets the location of the user login session bus.
// Required by the libayatana-appindicator3 library to display a tray icon
// on the desktop session.
Fix Fleet Desktop opening of URL on Ubuntu 21/22 (#6314) * Fix Fleet Desktop opening URL on Ubuntu 21/22 * Fine tunning: fix for Ubuntu 18
2022-06-21 19:26:14 +00:00
//
// This is required for Ubuntu 18, and not required for Ubuntu 21/22
// (because it's already part of the user).
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
fmt.Sprintf("DBUS_SESSION_BUS_ADDRESS=unix:path=/run/user/%d/bus", user.ID),
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
)
zenity package for Linux (#23619)
2024-11-20 16:44:40 +00:00
return args, nil
Add (beta) support for Fleet Desktop to linux (#5221) * Add (beta) support for Fleet Desktop to linux * Add dependency for linux desktop * Amend makefile uname check * Clarify env vars used for linux in execuser * Add final set of fixes * Remove -it from docker run * Add desktop to the update runner for Linux * Re-arrange tag.gz and fix upgrade check for linux desktop
2022-05-04 14:14:12 +00:00
}
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
func argsForSudo(u *userpkg.User, opts eopts) []string {
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
// -H: "[...] to set HOME environment to what's specified in the target's user password database entry."
// -i: needed to run the command with the user's context, from `man sudo`:
// "The command is run with an environment similar to the one a user would receive at log in"
// -u: "[..]Run the command as a user other than the default target user (usually root)."
Don't attempt to start fleet desktop if no user is logged in on Linux (#30261) for #29942 # Details This PR addresses an issue on Linux where Orbit repeatedly attempts to launch Fleet Desktop even though no GUI user is logged in. The fix is similar to one implemented for MacOS, where we have Orbit check for the presence of a real user (not a system user like `gdm` or `root`) before trying to launch the desktop app. Part of this work involved moving some functionality from the `execuser` package to the `user` package, to avoid duplicating functionality. # Checklist for submitter If some of the following don't apply, delete the relevant line. <!-- Note that API documentation changes are now addressed by the product design team. --> - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/guides/committing-changes.md#changes-files) for more information. - [x] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [x] Make sure fleetd is compatible with the latest released version of Fleet (see [Must rule](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/workflows/fleetd-development-and-release-strategy.md)). - [x] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [x] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. The changed code is only executed on Linux, so I tested on Ubuntu, Fedora and Debian. Also verified that it still works on MacOS and Windows. --------- Co-authored-by: Lucas Manuel Rodriguez <lucas@fleetdm.com>
2025-06-27 13:41:13 +00:00
args := []string{"-i", "-u", u.Name, "-H"}
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
for _, nv := range opts.env {
args = append(args, fmt.Sprintf("%s=%s", nv[0], nv[1]))
}
return args
}
var whoLineRegexp = regexp.MustCompile(`(\w+)\s+(:\d+)\s+`)
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
// getUserWaylandDisplay returns the value to set on WAYLAND_DISPLAY for the given user.
func getUserWaylandDisplay(uid string) (string, error) {
matches, err := filepath.Glob("/run/user/" + uid + "/wayland-*")
if err != nil {
return "", fmt.Errorf("list wayland socket files: %w", err)
}
sort.Slice(matches, func(i, j int) bool {
return matches[i] < matches[j]
})
for _, match := range matches {
if strings.HasSuffix(match, ".lock") {
continue
}
return filepath.Base(match), nil
}
return "", errors.New("wayland socket not found")
}
// getUserX11Display returns the value to set on DISPLAY for the given user.
func getUserX11Display(user string) (string, error) {
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
cmd := exec.Command("who")
var stdout bytes.Buffer
cmd.Stdout = &stdout
if err := cmd.Run(); err != nil {
return "", fmt.Errorf("run 'who' to get user display: %w", err)
}
return parseWhoOutputForDisplay(&stdout, user)
}
func parseWhoOutputForDisplay(output io.Reader, user string) (string, error) {
scanner := bufio.NewScanner(output)
for scanner.Scan() {
line := scanner.Text()
matches := whoLineRegexp.FindStringSubmatch(line)
if len(matches) > 1 && matches[1] == user {
return matches[2], nil
}
}
if err := scanner.Err(); err != nil {
return "", fmt.Errorf("scanner error: %w", err)
}
Add Fleet Desktop support for Wayland display sessions (#25998) For #19043. See the versions and distributions tested during development on the QA notes of #19043. --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files) for more information. - [x] A detailed QA plan exists on the associated ticket (if it isn't there, work with the product group's QA engineer to add it) - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Orbit runs on macOS, Linux and Windows. Check if the orbit feature/bugfix should only apply to one platform (`runtime.GOOS`). - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [X] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2025-02-05 17:00:13 +00:00
return "", errors.New("display not found on who output")
Support Ubuntu 24.04 with Xorg (by detecting user's `DISPLAY` environment variable) (#18996) #18925 (Should also fix #17660.) Tests: - Ubuntu 22.04.2 - Wayland - Works with chrome ✅ - Doesn't work with Firefox. ❌ - Xorg - Works with Chrome. ✅ - Works with Firefox. ✅ - Ubuntu 24.04 - Wayland - Doesn't work with Chrome. ❌ - Doesn't work with Firefox. ❌ - Xorg (when using Xorg it defaults to `DISPLAY=:1`, and with the changes in this PR it works): - Works with Chrome. ✅ - Works with Firefox. ✅ --- How to change between Wayland and Xorg: - Set `WaylandEnable=false` in `/etc/gdm3/custom.conf` and reboot. --- How to determine what's running: ```sh $ loginctl SESSION UID USER SEAT TTY 2 1000 luk seat0 tty2 c2 1000 luk $ loginctl show-session 2 -p Type # will output Type=wayland or Type=x11 ``` --- - [X] Changes file added for user-visible changes in `changes/`, `orbit/changes/` or `ee/fleetd-chrome/changes`. See [Changes files](https://fleetdm.com/docs/contributing/committing-changes#changes-files) for more information. - [X] Added/updated tests - [X] Manual QA for all new/changed functionality - For Orbit and Fleet Desktop changes: - [X] Manual QA must be performed in the three main OSs, macOS, Windows and Linux. - [x] Auto-update manual QA, from released version of component to new version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-05-16 11:39:30 +00:00
}
Reference in a new issue Copy permalink