Using: Package: gnome-shell Version: 46.0-0ubuntu6~24.04.6 Tested: Login GDM greeter using smartcard credentials (successful, did not hang as before) Then sudo using same credentials (still works as expected)
We now have a platform to continue or dev/test for additional Ubuntu 24 workstations. We look forward to this fix being added such that it is available with a conventional repo configuration. ---NOTES---- /etc/apt/sources.list removed. root@yxi0001492:/etc/apt/sources.list.d# cat ubuntu.sources Types: deb URIs:: http://archive.ubuntu.com/ubuntu/ Suites: noble noble-updates noble-backports noble-proposed Components: main restricted universe multiverse Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg #Types: deb #URIs: http://10.60.69.99/repo/ubuntu/2023Dec27/dists/jammy #Suites: noble noble-updates noble-backports noble-proposed #Components: main restricted universe multiverse #Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg #Types: deb #URIs: http://security.ubuntu.com/ubuntu/ #Suites: noble-security #Components: main restricted universe multiverse #Signed-By: /usr/share/keyrings/ubuntu-archive-keyring.gpg root@yxi0001492:/etc/apt/sources.list.d# sudo apt-get install gnome-shell-common=46.0-0ubuntu6~24.04.6 gnome-shell=46.0-0ubuntu6~24.04.6 Reading package lists... Done Building dependency tree... Done Reading state information... Done The following additional packages will be installed: rfkill tzdata-legacy Suggested packages: gir1.2-malcontent-0 gir1.2-telepathyglib-0.12 gir1.2-telepathylogger-0.2 gnome-backgrounds gnome-shell-extension-prefs chrome-gnome-shell Recommended packages: evolution-data-server The following packages will be upgraded: gnome-shell gnome-shell-common rfkill tzdata-legacy 4 upgraded, 0 newly installed, 0 to remove and 255 not upgraded. Need to get 1,317 kB of archives. After this operation, 5,120 B of additional disk space will be used. Do you want to continue? [Y/n] Y Get:1 http://archive.ubuntu.com/ubuntu noble-proposed/main amd64 gnome-shell amd64 46.0-0ubuntu6~24.04.6 [953 kB] Get:2 http://archive.ubuntu.com/ubuntu noble-proposed/main amd64 gnome-shell-common all 46.0-0ubuntu6~24.04.6 [249 kB] Get:3 http://archive.ubuntu.com/ubuntu noble-updates/main amd64 rfkill amd64 2.39.3-9ubuntu6.1 [20.2 kB] Get:4 http://archive.ubuntu.com/ubuntu noble-updates/main amd64 tzdata-legacy all 2024a-3ubuntu1.1 [94.6 kB] Fetched 1,317 kB in 2s (698 kB/s) (Reading database ... 239483 files and directories currently installed.) Preparing to unpack .../gnome-shell_46.0-0ubuntu6~24.04.6_amd64.deb ... Unpacking gnome-shell (46.0-0ubuntu6~24.04.6) over (46.0-0ubuntu6~24.04.3) ... Preparing to unpack .../gnome-shell-common_46.0-0ubuntu6~24.04.6_all.deb ... Unpacking gnome-shell-common (46.0-0ubuntu6~24.04.6) over (46.0-0ubuntu6~24.04.3) ... Preparing to unpack .../rfkill_2.39.3-9ubuntu6.1_amd64.deb ... Unpacking rfkill (2.39.3-9ubuntu6.1) over (2.39.3-9ubuntu6) ... Preparing to unpack .../tzdata-legacy_2024a-3ubuntu1.1_all.deb ... Unpacking tzdata-legacy (2024a-3ubuntu1.1) over (2024a-2ubuntu1) ... Setting up gnome-shell-common (46.0-0ubuntu6~24.04.6) ... Setting up tzdata-legacy (2024a-3ubuntu1.1) ... Setting up rfkill (2.39.3-9ubuntu6.1) ... Processing triggers for desktop-file-utils (0.27-2build1) ... Processing triggers for hicolor-icon-theme (0.17-2) ... Processing triggers for gnome-menus (3.36.0-1.1ubuntu3) ... Processing triggers for man-db (2.12.0-4build2) ... Processing triggers for libglib2.0-0t64:amd64 (2.80.0-6ubuntu3.1) ... Setting up gnome-shell (46.0-0ubuntu6~24.04.6) ... Scanning processes... Scanning candidates... Scanning processor microcode... Scanning linux images... Running kernel seems to be up-to-date. The processor microcode seems to be up-to-date. No services need to be restarted. No containers need to be restarted. No user sessions are running outdated binaries. No VM guests are running outdated hypervisor (qemu) binaries on this host. root@yxi0001492:/etc/apt/sources.list.d# apt show gnome-shell Package: gnome-shell Version: 46.0-0ubuntu6~24.04.6 Priority: optional Section: gnome Origin: Ubuntu Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Original-Maintainer: Debian GNOME Maintainers <pkg-gnome-maintain...@lists.alioth.debian.org> Bugs: https://bugs.launchpad.net/ubuntu/+filebug Installed-Size: 6,834 kB Provides: notification-daemon, polkit-1-auth-agent Depends: gir1.2-accountsservice-1.0, gir1.2-adw-1, gir1.2-atk-1.0, gir1.2-atspi-2.0 (>= 2.36), gir1.2-gcr-4, gir1.2-gdesktopenums-3.0, gir1.2-gdkpixbuf-2.0, gir1.2-gdm-1.0, gir1.2-geoclue-2.0, gir1.2-glib-2.0, gir1.2-gnomebg-4.0, gir1.2-gnomebluetooth-3.0 (>= 42.3), gir1.2-gnomedesktop-4.0 (>= 40), gir1.2-graphene-1.0 (>= 1.10.2), gir1.2-gstreamer-1.0, gir1.2-gtk-4.0, gir1.2-gweather-4.0 (>= 4.1), gir1.2-freedesktop, gir1.2-ibus-1.0 (>= 1.5.22-2ubuntu2~), gir1.2-mutter-14 (>= 46.0), gir1.2-nm-1.0, gir1.2-nma4-1.0, gir1.2-pango-1.0, gir1.2-polkit-1.0, gir1.2-rsvg-2.0, gir1.2-soup-3.0, gir1.2-upowerglib-1.0, gir1.2-webkit-6.0, gnome-settings-daemon (>= 40~), gnome-shell-common (= 46.0-0ubuntu6~24.04.6), gsettings-desktop-schemas (>= 46~beta), gstreamer1.0-pipewire (>= 0.3.10), libglib2.0-bin, python3, ubuntu-wallpapers, dconf-gsettings-backend | gsettings-backend, libatk-bridge2.0-0t64 (>= 2.5.3), libatk1.0-0t64 (>= 1.12.4), libc6 (>= 2.38), libcairo2 (>= 1.14.0), libecal-2.0-3 (>= 3.45), libedataserver-1.2-27t64 (>= 3.45), libgcr-4-4 (>= 3.8.0), libgdk-pixbuf-2.0-0 (>= 2.25.2), libgirepository-1.0-1 (>= 1.35.9), libgjs0g (>= 1.73.1), libgles2, libglib2.0-0t64 (>= 2.79.0), libgnome-autoar-0-0 (>= 0.1.1), libgnome-desktop-4-2t64 (>= 40), libgraphene-1.0-0 (>= 1.5.4), libgtk-4-1 (>= 4.12.0), libical3t64 (>= 3.0.0), libjson-glib-1.0-0 (>= 1.5.2), libmutter-14-0 (>= 46.0), libnm0 (>= 1.4.0), libpango-1.0-0 (>= 1.37.5), libpipewire-0.3-0t64 (>= 0.3.10), libpolkit-agent-1-0 (>= 0.99), libpolkit-gobject-1-0 (>= 0.94), libpulse-mainloop-glib0 (>= 13), libpulse0 (>= 13), libsecret-1-0 (>= 0.7), libsystemd0, libx11-6, libxext6, libxfixes3 Recommends: bolt, evolution-data-server (>= 3.45), gdm3, gkbd-capplet, gnome-control-center (>= 1:42), gnome-remote-desktop, gnome-menus, gnome-user-docs, ibus, iio-sensor-proxy, power-profiles-daemon, switcheroo-control, ubuntu-session | gnome-session, xserver-xorg-legacy, unzip Suggests: gir1.2-malcontent-0 (>= 0.6.0), gir1.2-telepathyglib-0.12, gir1.2-telepathylogger-0.2, gnome-backgrounds (>= 3.13.90), gnome-shell-extension-prefs, chrome-gnome-shell Breaks: gnome-shell-extension-appindicator (<< 50), gnome-shell-extension-dash-to-panel (<< 55), gnome-shell-extension-dashtodock (<< 79), gnome-shell-extension-desktop-icons (<< 21.04), gnome-shell-extension-desktop-icons-ng (<< 46+really47.0.2-2), gnome-shell-extension-taskbar (<< 57.0-2.1~), gnome-shell-extension-top-icons-plus (<< 27-3~), gnome-shell-extension-workspaces-to-dock (<< 54~), gnome-shell-extensions (<< 40.0~) Homepage: https://wiki.gnome.org/Projects/GnomeShell Task: ubuntu-desktop-minimal, ubuntu-desktop, edubuntu-desktop-gnome-minimal, edubuntu-desktop-gnome, edubuntu-desktop-gnome-raspi Download-Size: 953 kB APT-Manual-Installed: yes APT-Sources: http://archive.ubuntu.com/ubuntu noble-proposed/main amd64 Packages Description: graphical shell for the GNOME desktop The GNOME Shell provides core interface functions like switching windows, launching applications or see your notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts to provide a delightful and easy to use experience. GNOME Shell is the defining technology of the GNOME 3 user experience. N: There are 2 additional records. Please use the '-a' switch to see them. root@yxi0001492:/etc/apt/sources.list.d# -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-shell in Ubuntu. https://bugs.launchpad.net/bugs/2065432 Title: Unable to authenticate with smartcard: gnome-shell throws on unhandled promise rejection Status in GNOME Shell: Fix Released Status in gnome-shell package in Ubuntu: Fix Released Status in gnome-shell source package in Noble: Fix Committed Bug description: [Impact] * Starting from gnome-shell version 46.0, which is available in noble, logging in to the Ubuntu system with smart card does not work. * Only workaround is to downgrade gnome-shell to a version 45.0 * Login problem is caused by two seperate issues, one caused by the bug in the upstream [1], second is related to ubuntu specific code added as part of patch: gdm-util-Figure-out-default-service-from-service-definiti.patch * Upstream issue has been alraedy fixed with [2], issue was caused by feature which was checking conflicting sessions during login. * To fix login problem, upstream patch needs to be backported as well as ubuntu specific code fixed [Test Plan] * To reproduce an issue, smart card (with at least self signed certificate) is required. * The simplest steps to reproduce the problem: 1. Create user "test" 2. Configure sssd.conf: root@rmalz:/etc/sssd# cat sssd.conf [sssd] services = pam enable_files_domain = True certificate_verification = no_verification [certmap/implicit_files/test] matchrule = <SUBJECT>.* [pam] pam_cert_auth = True 3. Enable smart card login: pam-auth-update --disable sss-smart-card-required --enable sss-smart-card-optional * With these settings, login "test" user. Two problems will occurr. First, gnome-shell will not prompt for a smart card PIN and will continue to ask for password. This is caused by incorrect detection of default auth service, issue introduced with: gdm-util-Figure-out-default-service-from-service-definiti.patch Second, if first problem is fixed, login screen will freeze. This issue is caused by upstream bug [1]. * Ensure that other login/lockscreen options are still working as expected following the GDM test plan: https://wiki.ubuntu.com/DesktopTeam/TestPlans/GDM [Where problems could occur] * Upstream patch is changing behavior of finding conflicting sessions, possible risk of regression for non smart card cases * There is additional patch [3], introduced as part of fix for [1]. It seems that this patch is fixing presentation issue which is different from initial login problem and no part of this SRU. * Patches for both [2] and gdm-util-Figure-out-default-service-from-service-definiti.patch have been tested locally, allowing to login without issues. [Other Info] * Links: [1] - https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/7526 [2] - https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/3448/diffs?commit_id=e5d9a0fec869adbe610c46114afaede04f8c89e2 [3] - https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/3448/diffs?commit_id=647747fbd6afef2f9f939682ab6527f3877ffbfb * Original case description: Upstream report: https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/7526 Opening as part of response to support ticket. After boot, GDM does not prompt for smartcard authentication correctly. It is possible to strike Esc and get GDM to prompt for a username and a smartcard PIN from the initial locked-out state, but this does not start a new desktop session and instead hangs. Striking Esc allows for the login to be attempted again, but with the same results. Syslog entries include unhandled promise rejections from the onSessionOpened event in loginDialog, and perhaps more importantly also from the user verification stack that is used to create the initial authentication options prompt (stack traces of the syslog entries attached). Affects GDM 46.0-2ubuntu1 in Noble. To reproduce, configure smartcard auth for a network user on a new Noble install and try to sign in. To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-shell/+bug/2065432/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
