Launchpad Entry: https://launchpad.net/distros/ubuntu/+spec/gnome-mount
Created: 2006-20 by MartinPitt
Packages affected: gnome-mount, gnome-volume-manager, hal
gnome-mount is a relatively new addition to the Utopia stack. It provides users with a nice GUI to configure mount options, consistently handle encrypted devices, and so on. Thus it replaces the clumsy HAL fdi policies for mount options and can also replace the hideous pmount hacks in g-v-m and pmount with something that actually works smoothly.
gnome-mount and the hal mount backend are used by upstream by default now, they did not accept our pmount-centric solution. Thus Gnome has no support for mount policies and only little support for encrypted devices in Dapper.
- Joe keeps his music and video collection on a USB hard disk and wants other users to access it as well. In Dapper, VFAT partitions on USB devices are always mounted with umask 077, and there is no GUI way to change this.
- Martin carries his GPG and SSH keys on an encrypted USB stick partition. In dapper, the encrypted partition is automatically mounted (after asking for the passphrase), but the device is not integrated into HAL at all, which means that you cannot assign it to a label or configure mount policy, and the user interface sees a confusing spare dummy drive.
The changes in this specification affect the handling of removable devices in Gnome and XFCE.
Change gnome-volume-manager and gnome-vfs2 to use gnome-mount instead of pmount-hal.
- Fix the hal mount backend to do the same rigid policy checks than pmount currently does.
- Change gnome-mount to make it not depend on any Gnome libraries which are inappropriate for XFCE.
- This will essentially deprecate pmount for the Gnome and XFCE use case.
Right now, the hal mount backend (which runs as root) queries hald (which runs as user haldaemon) for attributes and decides whether or not to allow mounting. This does not fit into the agreed-upon trust model of hal, that's why we disabled this backend in dapper. The backend needs to be changed to do all policy checks on its own; the current pmount code will be used as a model for policy checks, and preferably we will also borrow code from it.
Upstream would welcome a rewrite, he just lacks time to do it.
Remove our current patches to use pmount, remove luks patch from g-v-m. Upstream already defaults to using gnome-mount.
The only Gnome-specific part in gnome-mount which is not appropriate for XFCE is the Gnome password input dialog. This is already marked as deprecated in the Gnome API, since it is about to be moved to GTK. In case it does not happen soon, we need to replace it with our own implementation if XFCE adopts it.
Data preservation and migration
Since until dapper we do not have any user policy settings, no data needs to be migrated.