[Bug 236216] New: unhelpful error if /proc is mounted read-only
https://bugzilla.novell.com/show_bug.cgi?id=236216 Summary: unhelpful error if /proc is mounted read-only Product: openSUSE 10.2 Version: RC 5 Platform: Other OS/Version: Other Status: NEW Severity: Minor Priority: P5 - None Component: Basesystem AssignedTo: mc@novell.com ReportedBy: mls@novell.com QAContact: qa@suse.de CC: kukuk@novell.com Somehow /proc got remounted ro on my system. This resulted that all ssh login attempts failed without displaying any error message and a console login just printed "Cannot make/remove an entry for the specified session". Not helpful at all. Even root can no longer log in. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 ------- Comment #1 from judas_iscariote@shorewall.net 2007-01-18 10:59 MST ------- ohhh. this very same problem happended to me many times, I have no idea why /proc gets remounted read only. annoyances: 1 .cannot restart firewall properly 2. D.o.S, not even the root can login 3. only solution for the problem is restart the computer. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 ------- Comment #2 from mls@novell.com 2007-01-19 04:22 MST ------- A likely cause is the build script from build.rpm. It contained 'mount -oro -n -tproc none $BUILD_ROOT/proc'. This was no issue with old kernel versions, where the proc mounts were not shared. With the current kernel, a read-only re-mount will also change the mount options of /proc... You should change the -oro to -orw... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 ------- Comment #3 from judas_iscariote@shorewall.net 2007-01-19 11:44 MST ------- (In reply to comment #2)
A likely cause is the build script from build.rpm. It contained 'mount -oro -n -tproc none $BUILD_ROOT/proc'.
It **still contains** ;) hopefully somebody comes with an update for that... This was no issue with
old kernel versions, where the proc mounts were not shared. With the current kernel, a read-only re-mount will also change the mount options of /proc...
You should change the -oro to -orw...
Thank you mls . that might do the trick ;) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 meissner@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |suse@rauch-webdesign.de ------- Comment #4 from meissner@novell.com 2007-01-20 09:16 MST ------- *** Bug 228065 has been marked as a duplicate of this bug. *** -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 mc@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |mls@novell.com ------- Comment #5 from mc@novell.com 2007-01-22 02:30 MST ------- The question is which pam module needs /proc rw? Please enable full pam debugging and attache the logs here. (pam-config -a --pam-debug) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 ------- Comment #6 from suse@rauch-webdesign.de 2007-01-22 02:39 MST ------- See Bug #220065. I had to remove this line to make it work with an read only proc: session required pam_loginuid.so Regards, Chris -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 ------- Comment #7 from suse@rauch-webdesign.de 2007-01-22 02:40 MST ------- aehm, sorry, Bug #228065 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 mc@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Info Provider|mls@novell.com |kukuk@novell.com ------- Comment #8 from mc@novell.com 2007-01-22 02:44 MST ------- ok, thanks. Thorsten: is "required" correct or would "optional" enough? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 kukuk@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED Info Provider|kukuk@novell.com | Resolution| |WONTFIX ------- Comment #9 from kukuk@novell.com 2007-01-22 02:46 MST ------- Ok, pam_loginuid really needs a writeable /proc filesystem and is required for the audit stuff. The application cannot print another error message, but the real problem is logged to syslog(). So everything is ok/cannot be changed. required is what all distributions are using and was in the initial spec for the audit stuff. Only the security/audit experts can answer this. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 mls@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WONTFIX | ------- Comment #10 from mls@novell.com 2007-01-22 04:05 MST ------- The syslog message is also not helpful. It should at least contain the errno message ("read only filesystem"). Please fix your package. And I don't see why the application can't use pam_strerror and print an error message. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 kukuk@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |WONTFIX ------- Comment #11 from kukuk@novell.com 2007-01-22 04:09 MST ------- There is nothing to fix in the package. As you can see from the report the applicaiton is using pam_strerror, there is only no other valid/defined/allowed error code. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 mls@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WONTFIX | ------- Comment #12 from mls@novell.com 2007-01-22 04:27 MST ------- Sigh. So it's a bug in sshd that no error message is printed at all? Reassigned to ssh maintainer. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 mls@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|mc@novell.com |anicka@novell.com Status|REOPENED |NEW -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=236216
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=236216#c13
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=236216
User mls@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=236216#c14
Michael Schröder
https://bugzilla.novell.com/show_bug.cgi?id=236216
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=236216#c15
--- Comment #15 from Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=236216
User mls@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=236216#c16
--- Comment #16 from Michael Schröder
https://bugzilla.novell.com/show_bug.cgi?id=236216
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=236216#c17
Anna Bernathova
participants (1)
-
bugzilla_noreply@novell.com