http://bugzilla.suse.com/show_bug.cgi?id=1156501
Bug ID: 1156501 Summary: Regression: can not use OSC without kwallet Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: All OS: openSUSE Factory Status: NEW Keywords: dogfood Severity: Critical Priority: P5 - None Component: Basesystem Assignee: bnc-team-screening@forge.provo.novell.com Reporter: werner@suse.com QA Contact: qa-bugs@suse.de CC: fabian@ritter-vogt.de, tchvatal@suse.com Found By: --- Blocker: ---
Latest Tumbleweed cause that osc triggers the start of kwalletd5 and this leads to an error
| Error when attempting to decrypt the wallet kdewallet using GPG. If you're | using a SmartCard, please ensure it's inserted then try again. | | GPG error was Inappropriate ioctl for device
That is I can not set my passphrase anymore. I'm not using KDE, I'm a fvwm2+lsxession user.
Without passphrase I can not work on my Tumblweed workstation anymore hence this is critical
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c1
--- Comment #1 from Dr. Werner Fink werner@suse.com --- Any way to use gnome-keyring ? This had worked in past whereas kwalletd5 does not
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c2
Tomáš Chvátal tchvatal@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Assignee|bnc-team-screening@forge.pr |marco.strigl@suse.com |ovo.novell.com |
--- Comment #2 from Tomáš Chvátal tchvatal@suse.com --- Try changing 'use_keyring = 0' in the oscrc, maybe it would help.
Assigning to Marco as he is the owner of osc.
http://bugzilla.suse.com/show_bug.cgi?id=1156501
Dr. Werner Fink werner@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Found By|--- |Development Assignee|marco.strigl@suse.com |bnc-team-screening@forge.pr | |ovo.novell.com
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c3
--- Comment #3 from Dr. Werner Fink werner@suse.com --- I know that use_keyring = 0 would help but this is a noop! I'ds like to use my keyring. And I guess that it would work even with kwallted5 if this daemon would not try to read a none existing device
http://bugzilla.suse.com/show_bug.cgi?id=1156501
Dr. Werner Fink werner@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Assignee|bnc-team-screening@forge.pr |marco.strigl@suse.com |ovo.novell.com |
http://bugzilla.suse.com/show_bug.cgi?id=1156501
Dr. Werner Fink werner@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1156518
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c4
Marco Strigl marco.strigl@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks|1156518 |
--- Comment #4 from Marco Strigl marco.strigl@suse.com --- I am trying to reproduce this.
Can you provide your oscrc? (of course without passwords)
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c5
--- Comment #5 from Dr. Werner Fink werner@suse.com --- Created attachment 823913 --> http://bugzilla.suse.com/attachment.cgi?id=823913&action=edit ~/.oscrc ... without passwords as keyring is used anywhere
(In reply to Marco Strigl from comment #4)
I am trying to reproduce this.
Can you provide your oscrc? (of course without passwords)
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c6
--- Comment #6 from Marco Strigl marco.strigl@suse.com --- Are you using gnome-keyring as a keyring manager?
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c7
--- Comment #7 from Dr. Werner Fink werner@suse.com --- (In reply to Marco Strigl from comment #6)
Are you using gnome-keyring as a keyring manager?
Indeed is up and running:
px | grep key
werner 13226 0.0 0.0 3564 732 pts/0 S+ 11:52 0:00 grep key werner 10830 0.0 0.1 383948 9448 ? SLl 10:45 0:00 /usr/bin/gnome-keyring-daemon --start --foreground --components=secrets
I can also list passwords with secret-tool(1) on the command line and also use seahorse(1) to list and change my passwords
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c8
--- Comment #8 from Dr. Werner Fink werner@suse.com --- Removing kwallted5 cause that osc asks for the password instead of using gnome-keyring
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c9
--- Comment #9 from Dr. Werner Fink werner@suse.com --- Installing python3-keyrings.alt does not help either
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c10
--- Comment #10 from Marco Strigl marco.strigl@suse.com --- This is fixed with https://github.com/openSUSE/osc/commit/5227e357bcd681e0cc4fc10bce868a4477584...
Is released with 0.166.2 (already in openSUSE:Tools)
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c11
--- Comment #11 from Swamp Workflow Management swamp@suse.de --- This is an autogenerated message for OBS integration: This bug (1156501) was mentioned in https://build.opensuse.org/request/show/748323 Factory / osc
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c18
Michal Koutný mkoutny@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |mkoutny@suse.com Flags|needinfo?(systemd-maintaine |needinfo?(werner@suse.com) |rs@suse.de) |
--- Comment #18 from Michal Koutný mkoutny@suse.com --- IIUC, you're missing the a) the socket to session dbus daemon b) the enviroment variable telling the path to that socket.
The a) is realized by dbus.socket of the user systedm instance. For other user units b) is done also by dbus.socket. I can't find where is DBUS_SESSION_BUS_ADDRESS set for user sessions though (I guess somewhere in PAM or by display manager (ancestor of user session processes)).
Ad a) Is your user systemd instance running? And is dbus.socket active?
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c19
Dr. Werner Fink werner@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Flags|needinfo?(werner@suse.com) |
--- Comment #19 from Dr. Werner Fink werner@suse.com --- (In reply to Michal Koutný from comment #18)
IIUC, you're missing the a) the socket to session dbus daemon b) the enviroment variable telling the path to that socket.
The a) is realized by dbus.socket of the user systedm instance. For other user units b) is done also by dbus.socket. I can't find where is DBUS_SESSION_BUS_ADDRESS set for user sessions though (I guess somewhere in PAM or by display manager (ancestor of user session processes)).
Ad a) Is your user systemd instance running? And is dbus.socket active?
On this Tumbleweed I have within the local X11 session
printenv | grep BUS
DBUS_SESSION_BUS_ADDRESS=unix:abstract=/tmp/dbus-ynt2mEliSD,guid=db35f32753f024fe55f960705dcab5a0
whereas on Leap I see
printenv | grep BUS DBUS_SESSION_BUS_ADDRESS=unix:path=/run/user/223/bus
well ... now trying ove ssh to Tumbleweed without X11 forward
printenv | grep DBUS
returns exactly nothing, the same with X11 fowarding.
Using a VNC dispaly on the Tumbleweed and an xterm therein I see
printenv | grep DBUS
DBUS_SESSION_BUS_ADDRESS=unix:abstract=/tmp/dbus-Q3EYajjIpk,guid=a0fb6beb58aa37222a7682c25dce4d33
but the execution of secret-tool runs into a timeout
secret-tool lookup imaps gwmail.nue.novell.com secret-tool: Error calling StartServiceByName for org.freedesktop.secrets: Timeout was reached
and indeed there is a user systemd running but only for the local X11 display. Not for the ssh nor the VNC login. I'm using for the VNC connection a socjet and serive unit file where in the serivce unit file the PAMName=login and User=werner is used. For ssh connection the /etc/pam.d/sshd includes common-session which starts with the line
session optional pam_systemd.so
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c20
--- Comment #20 from Dr. Werner Fink werner@suse.com --- I should mention that dbus-launch requires X11 $DISPLAY ... and I really like to know *Why* a dbus launch depend on X11 screen? With ssh
secret-tool lookup imaps gwmail.nue.novell.com secret-tool: Cannot autolaunch D-Bus without X11 $DISPLAY
btw forwarding the X11 display
secret-tool lookup imaps gwmail.nue.novell.com secret-tool: Error calling StartServiceByName for org.freedesktop.secrets: Timeout was reached
Clear as the remote DISPLAY does not provide services on the actual system.
Using dbus-run-session with ssh:
exec dbus-run-session -- /bin/tcsh -l secret-tool lookup imaps gwmail.nue.novell.com dbus-daemon[17204]: [session uid=223 pid=17204] Activating service name='org.freedesktop.secrets' requested by ':1.0' (uid=223 pid=17225 comm="secret-tool lookup imaps gwmail.nue.novell.com ") gnome-keyring-daemon: insufficient process capabilities, insecure memory might get used secret-tool: Error calling StartServiceByName for org.freedesktop.secrets: Timeout was reached
... actual no way to work from at home on the current Tumbleweed
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c21
--- Comment #21 from Dr. Werner Fink werner@suse.com --- The XDG values for the sessions:
local display:
printenv | grep -E 'XDG_(CURRENT|SESSION)' XDG_SESSION_PATH=/org/freedesktop/DisplayManager/Session10 XDG_SESSION_DESKTOP=KDE XDG_SESSION_TYPE=x11 XDG_CURRENT_DESKTOP=FVWM XDG_SESSION_CLASS=user XDG_SESSION_ID=11
ssh without X11 forwarding
printenv | grep -E 'XDG_(CURRENT|SESSION)' XDG_SESSION_ID=63 XDG_SESSION_TYPE=tty XDG_SESSION_CLASS=user
and with X11 forwarding
printenv | grep -E 'XDG_(CURRENT|SESSION)' XDG_SESSION_ID=64 XDG_SESSION_TYPE=tty XDG_SESSION_CLASS=user
last but not least a VNC display:
printenv | grep -E 'XDG_(CURRENT|SESSION)' XDG_SESSION_TYPE=unspecified XDG_SESSION_CLASS=background XDG_SESSION_COOKIE=noether XDG_SESSION_ID=62
... is there a way to overwrite session type and class within the vnc service/socket units?
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c22
--- Comment #22 from Dr. Werner Fink werner@suse.com --- Beside this on the local console (not X11 but /dev/tty1):
printenv | grep -E 'XDG_(CURRENT|SESSION)' XDG_SESSION_ID=66 XDG_SESSION_TYPE=tty XDG_SESSION_CLASS=user secret-tool lookup imaps gwmail.nue.novell.com secret-tool: Cannot autolaunch D-Bus without X11 $DISPLAY tty /dev/tty1
even on the local system a user is not able to use dbus without X11
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c23
Fabian Vogt fvogt@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |fvogt@suse.com
--- Comment #23 from Fabian Vogt fvogt@suse.com --- (In reply to Dr. Werner Fink from comment #20)
I should mention that dbus-launch requires X11 $DISPLAY ... and I really like to know *Why* a dbus launch depend on X11 screen?
It is meant only for X11. The man page explicitly states:
To start a D-Bus session within a text-mode session, do not use dbus-launch. Instead, see dbus-run-session(1).
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c24
--- Comment #24 from Dr. Werner Fink werner@suse.com --- (In reply to Fabian Vogt from comment #23)
(In reply to Dr. Werner Fink from comment #20)
I should mention that dbus-launch requires X11 $DISPLAY ... and I really like to know *Why* a dbus launch depend on X11 screen?
It is meant only for X11. The man page explicitly states:
To start a D-Bus session within a text-mode session, do not use dbus-launch. Instead, see dbus-run-session(1).
I'm aware ... nevertheless, at login regardless if X11 or tty a user local known should be able to do his/her work without calling dbus-run-session(1). And even with dbus-run-session(1) is does currently not work.
IMHO this is simply broken by design. Is there a way to cause pam_system(.so) to use path=/run/user/<pid>/bus for dbus connections regardless what interface is used, that for X11 *and* tty. And, if not running on path=/run/user/<pid>/bus, simply start the dbus for any user session regardless what type is used.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c25
--- Comment #25 from Michal Koutný mkoutny@suse.com --- I'm getting slightly lost. Can this be pinpointed to a particular (pam, systemd, dbus,...) update or it only became visible because of the osc client update?
(In reply to Dr. Werner Fink from comment #24)
Is there a way to cause pam_system(.so) to use path=/run/user/<pid>/bus for dbus connections regardless what interface is used, that for X11 *and* tty.
On my TW it works (I use gdm). The socket itself is started by the user instance and the environment variable is (likely) set by pam_systemd [1].
Such a socket is recognizable by residing under /run/user/$UID/bus. I guess the /tmp placed socket is created by display manager in xinitrc.
[1] https://github.com/openSUSE/systemd/blob/SUSE/v243/src/login/pam_systemd.c#L...
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c26
--- Comment #26 from Dr. Werner Fink werner@suse.com --- (In reply to Michal Koutný from comment #25)
I'm getting slightly lost. Can this be pinpointed to a particular (pam, systemd, dbus,...) update or it only became visible because of the osc client update?
I had done a `zypper dup' and ru into this problem with osc on local X11 display ... and lateron I noticed that I can not work from at home on the same Tumbleweed system anymore. Only the Leap system is usable.
(In reply to Dr. Werner Fink from comment #24)
Is there a way to cause pam_system(.so) to use path=/run/user/<pid>/bus for dbus connections regardless what interface is used, that for X11 *and* tty.
On my TW it works (I use gdm). The socket itself is started by the user instance and the environment variable is (likely) set by pam_systemd [1].
Such a socket is recognizable by residing under /run/user/$UID/bus. I guess the /tmp placed socket is created by display manager in xinitrc.
I'm talking on ssh and VNC connections as well as login on /dev/tty1, not local X11 display. Can you access your keyring (gnome or kwalletd) with login over ssh, VNC or simply on local console tty1?
[1] https://github.com/openSUSE/systemd/blob/SUSE/v243/src/login/pam_systemd.c#L...
Yep ... I have read this also ... and pam_sm_open_session()
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c27
--- Comment #27 from Dr. Werner Fink werner@suse.com --- Hmmm ... I've added a line
echo "Xsession: $DBUS_SESSION_BUS_ADDRESS" 1>&2
very first in /etc/X11/xdm/Xsession and a line
echo "~/.xsession: $DBUS_SESSION_BUS_ADDRESS" 1>&2
very first in my ~/.xsession aka ~/.xinitrc and see
Xsession: ~/.xsession: unix:abstract=/tmp/dbus-jG9lBsTQkx,guid=d755e5ba6e52c8e3e109d6155dce6f9b
in ~/.local/share/sddm/xorg-session.log ... that is that the sddm comes without dbus connection and this triggers the script
/etc/X11/xdm/scripts/20-dbus
I guess.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c28
--- Comment #28 from Michal Koutný mkoutny@suse.com --- (In reply to Dr. Werner Fink from comment #26)
I'm talking on ssh and VNC connections as well as login on /dev/tty1, not local X11 display.
I know, AFAIU, all these logins/sessions should ensure dbus session running through pam_systemd :-/
Can you access your keyring (gnome or kwalletd) with login over ssh, VNC or simply on local console tty1?
I can "access" gnome-keyring-daemon on tty1. Also if I `systemctl --user stop dbus.service`, I can see it gets reactivated, i.e. DBus communication works fine. The keyring is locked though (perhaps to lack of pam_gnome_keyring in tty PAM stack).
Idea: you see a timeout message, what if you connect to keyring daemon just fine but the unlock prompt displays on X server that you don't see.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c29
--- Comment #29 from Dr. Werner Fink werner@suse.com --- Ohmm ...
systemctl --user status dbus.socket * dbus.socket - D-Bus User Message Bus Socket Loaded: loaded (/usr/lib/systemd/user/dbus.socket; static; vendor preset: disabled) Active: inactive (dead) Listen: /run/user/223/bus (Stream)
... that seems to be a part of the problem, but dbus.socket is linked below /usr/lib/systemd/user/sockets.target.wants/
Also set debug on pam_systemd.so in common-session to see more:
Nov 15 10:51:01 noether sddm-helper[23902]: [PAM] Starting... Nov 15 10:51:01 noether sddm-helper[23902]: [PAM] Authenticating... Nov 15 10:51:01 noether sddm-helper[23902]: gkr-pam: unable to locate daemon control file Nov 15 10:51:01 noether sddm-helper[23902]: [PAM] Preparing to converse... Nov 15 10:51:01 noether sddm-helper[23902]: pam_kwallet5(sddm:auth): (null): pam_sm_authenticate Nov 15 10:51:01 noether sddm-helper[23902]: [PAM] Conversation with 1 messages Nov 15 10:51:01 noether sddm-helper[23902]: [PAM] returning. Nov 15 10:51:01 noether sddm[2224]: Authenticated successfully Nov 15 10:51:01 noether sddm-greeter[23827]: Message received from daemon: LoginSucceeded Nov 15 10:51:01 noether sddm-helper[23902]: pam_kwallet5(sddm:setcred): pam_kwallet5: pam_sm_setcred Nov 15 10:51:01 noether sddm-helper[23902]: pam_systemd(sddm:session): pam-systemd initializing Nov 15 10:51:01 noether sddm-helper[23902]: pam_systemd(sddm:session): Asking logind to create session: uid=223 pid=23902 service=sddm type=x11 class=user desktop=KDE seat=seat0 vtnr=7 tty= display=:0 remote=no remote_user= remote_host= Nov 15 10:51:01 noether sddm-helper[23902]: pam_systemd(sddm:session): Session limits: memory_max=n/a tasks_max=n/a cpu_weight=n/a io_weight=n/a Nov 15 10:51:01 noether systemd[1]: Created slice User Slice of UID 223. Nov 15 10:51:01 noether systemd[1]: Starting User Runtime Directory /run/user/223... Nov 15 10:51:01 noether systemd-logind[2163]: New session 71 of user werner. Nov 15 10:51:01 noether systemd[1]: Started User Runtime Directory /run/user/223. Nov 15 10:51:01 noether systemd[1]: Starting User Manager for UID 223... Nov 15 10:51:01 noether sddm-helper[23819]: [PAM] Closing session Nov 15 10:51:01 noether sddm-helper[23819]: pam_unix(sddm-greeter:session): session closed for user sddm Nov 15 10:51:01 noether sddm-helper[23819]: pam_kwallet5(sddm-greeter:session): pam_kwallet5: pam_sm_close_session Nov 15 10:51:01 noether sddm-helper[23819]: [PAM] Ended. Nov 15 10:51:01 noether sddm[2224]: Auth: sddm-helper exited successfully Nov 15 10:51:01 noether sddm[2224]: Greeter stopped. Nov 15 10:51:01 noether systemd-logind[2163]: Session 70 logged out. Waiting for processes to exit. Nov 15 10:51:01 noether systemd[23907]: pam_systemd(systemd-user:session): pam-systemd initializing Nov 15 10:51:01 noether systemd[23907]: pam_unix(systemd-user:session): session opened for user werner(uid=223) by (uid=0) Nov 15 10:51:01 noether systemd[23907]: pam_kwallet5(systemd-user:session): (null): pam_sm_open_session Nov 15 10:51:01 noether systemd[23907]: pam_kwallet5(systemd-user:session): pam_kwallet5: not a graphical session, skipping. Use force_run parameter to ignore this. Nov 15 10:51:01 noether systemd[23907]: Reached target Paths. Nov 15 10:51:01 noether systemd[23907]: Reached target Timers. Nov 15 10:51:01 noether systemd[23907]: dbus.socket: Socket service dbus.service not loaded, refusing. Nov 15 10:51:01 noether systemd[23907]: Failed to listen on D-Bus User Message Bus Socket.
Indeed:
systemctl --user status dbus.service Unit dbus.service could not be found.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c30
--- Comment #30 from Dr. Werner Fink werner@suse.com --- Found the culprit ... it was a leftover of a test for dbus-broker now two years back:
ll /etc/systemd/user/dbus.service lrwxrwxrwx 1 root root 41 Oct 10 2018 /etc/systemd/user/dbus.service -> /usr/lib/systemd/user/dbus-broker.service
and /usr/lib/systemd/user/dbus-broker.service had not exist anmymore after the zypper dup. And new systemd had not ignored the broken link but marked the dbus.service as not loaded (but without hinting why it has not loaded).
After removing the dangling symlink and reboot (as a simple daemon-reload had not helpd out), things are now working ... OK I had also removed the crediential lines from my ~/.oscrc so that it use the gnome-keyring (btw. the error message of kwalletd5 still remains with the not existing SmartCard).
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c32
jun wang junguo.wang@suse.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |junguo.wang@suse.com
--- Comment #32 from jun wang junguo.wang@suse.com --- Created attachment 832176 --> http://bugzilla.suse.com/attachment.cgi?id=832176&action=edit osc config for the test case
got a errer to run "osc ls" or "osc build" after updating osc to 0.167.2 on SLES15SP1.
test case: ==========================================================================
$ osc ls No user found in section https://api.opensuse.org Please enter new credentials. Username: jgwang Password: 1) SecretService Keyring (Backend provided by python-keyring) 2) fail Keyring (Backend provided by python-keyring) 3) kwallet DBusKeyring (Backend provided by python-keyring) 4) kwallet DBusKeyringKWallet4 (Backend provided by python-keyring) 5) Config file credentials manager (Store the credentials in the config file (plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 No user found in section https://api.suse.de Please enter new credentials. Username: jgwang Password: 1) SecretService Keyring (Backend provided by python-keyring) 2) fail Keyring (Backend provided by python-keyring) 3) kwallet DBusKeyring (Backend provided by python-keyring) 4) kwallet DBusKeyringKWallet4 (Backend provided by python-keyring) 5) Config file credentials manager (Store the credentials in the config file (plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 Traceback (most recent call last): File "/usr/bin/osc", line 41, in <module> r = babysitter.run(osccli) File "/usr/lib/python3.6/site-packages/osc/babysitter.py", line 62, in run return prg.main(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 344, in main return self.cmd(args) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 367, in cmd retval = self.onecmd(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 501, in onecmd return self._dispatch_cmd(handler, argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 1232, in _dispatch_cmd return handler(argv[0], opts, *args) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 418, in do_list for prj in meta_get_project_list(apiurl, opts.deleted): File "/usr/lib/python3.6/site-packages/osc/core.py", line 3490, in meta_get_project_list u = makeurl(apiurl, ['source'], query) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3307, in makeurl if conf.config['verbose'] > 1: TypeError: '>' not supported between instances of 'str' and 'int'
$ osc -A extern build --download-api-only --root /abuild/oscbuild/openSUSE_Leap_15.1 openSUSE_Leap_15.1 --local-package No user found in section https://api.opensuse.org Please enter new credentials. Username: jgwang Password: 1) SecretService Keyring (Backend provided by python-keyring) 2) fail Keyring (Backend provided by python-keyring) 3) kwallet DBusKeyring (Backend provided by python-keyring) 4) kwallet DBusKeyringKWallet4 (Backend provided by python-keyring) 5) Config file credentials manager (Store the credentials in the config file (plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 No user found in section https://api.suse.de Please enter new credentials. Username: jgwang Password: 1) SecretService Keyring (Backend provided by python-keyring) 2) fail Keyring (Backend provided by python-keyring) 3) kwallet DBusKeyring (Backend provided by python-keyring) 4) kwallet DBusKeyringKWallet4 (Backend provided by python-keyring) 5) Config file credentials manager (Store the credentials in the config file (plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 Traceback (most recent call last): File "/usr/bin/osc", line 41, in <module> r = babysitter.run(osccli) File "/usr/lib/python3.6/site-packages/osc/babysitter.py", line 62, in run return prg.main(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 344, in main return self.cmd(args) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 367, in cmd retval = self.onecmd(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 501, in onecmd return self._dispatch_cmd(handler, argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 1232, in _dispatch_cmd return handler(argv[0], opts, *args) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 6479, in do_build args = self.parse_repoarchdescr(args, opts.noinit or opts.offline, opts.alternative_project, False, opts.vm_type, opts.multibuild_package) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 6142, in parse_repoarchdescr repositories = list(get_repos_of_project(apiurl, project)) File "/usr/lib/python3.6/site-packages/osc/core.py", line 5665, in get_repos_of_project f = show_project_meta(apiurl, prj) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3518, in show_project_meta url = makeurl(apiurl, ['source', prj, '_meta']) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3307, in makeurl if conf.config['verbose'] > 1: TypeError: '>' not supported between instances of 'str' and 'int'
howerver, running the above commands again, they both work well. based on the above error, I think this bug was NOT fixed completely.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c33
--- Comment #33 from Marco Strigl marco.strigl@suse.com --- (In reply to jun wang from comment #32)
Created attachment 832176 [details] osc config for the test case
got a errer to run "osc ls" or "osc build" after updating osc to 0.167.2 on SLES15SP1.
test case:
$ osc ls
No user found in section https://api.opensuse.org Please enter new credentials. Username: jgwang Password:
- SecretService Keyring (Backend provided by python-keyring)
- fail Keyring (Backend provided by python-keyring)
- kwallet DBusKeyring (Backend provided by python-keyring)
- kwallet DBusKeyringKWallet4 (Backend provided by python-keyring)
- Config file credentials manager (Store the credentials in the config file
(plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 No user found in section https://api.suse.de Please enter new credentials. Username: jgwang Password:
- SecretService Keyring (Backend provided by python-keyring)
- fail Keyring (Backend provided by python-keyring)
- kwallet DBusKeyring (Backend provided by python-keyring)
- kwallet DBusKeyringKWallet4 (Backend provided by python-keyring)
- Config file credentials manager (Store the credentials in the config file
(plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 Traceback (most recent call last): File "/usr/bin/osc", line 41, in <module> r = babysitter.run(osccli) File "/usr/lib/python3.6/site-packages/osc/babysitter.py", line 62, in run return prg.main(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 344, in main return self.cmd(args) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 367, in cmd retval = self.onecmd(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 501, in onecmd return self._dispatch_cmd(handler, argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 1232, in _dispatch_cmd return handler(argv[0], opts, *args) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 418, in do_list for prj in meta_get_project_list(apiurl, opts.deleted): File "/usr/lib/python3.6/site-packages/osc/core.py", line 3490, in meta_get_project_list u = makeurl(apiurl, ['source'], query) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3307, in makeurl if conf.config['verbose'] > 1: TypeError: '>' not supported between instances of 'str' and 'int'
$ osc -A extern build --download-api-only --root /abuild/oscbuild/openSUSE_Leap_15.1 openSUSE_Leap_15.1 --local-package No user found in section https://api.opensuse.org Please enter new credentials. Username: jgwang Password:
- SecretService Keyring (Backend provided by python-keyring)
- fail Keyring (Backend provided by python-keyring)
- kwallet DBusKeyring (Backend provided by python-keyring)
- kwallet DBusKeyringKWallet4 (Backend provided by python-keyring)
- Config file credentials manager (Store the credentials in the config file
(plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 No user found in section https://api.suse.de Please enter new credentials. Username: jgwang Password:
- SecretService Keyring (Backend provided by python-keyring)
- fail Keyring (Backend provided by python-keyring)
- kwallet DBusKeyring (Backend provided by python-keyring)
- kwallet DBusKeyringKWallet4 (Backend provided by python-keyring)
- Config file credentials manager (Store the credentials in the config file
(plain text)) 6) Obfuscated Config file credentials manager (Store the credentials in the config file (obfuscated)) 7) Transient password store (Do not store the password and always ask for the password) Select credentials manager: 7 Traceback (most recent call last): File "/usr/bin/osc", line 41, in <module> r = babysitter.run(osccli) File "/usr/lib/python3.6/site-packages/osc/babysitter.py", line 62, in run return prg.main(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 344, in main return self.cmd(args) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 367, in cmd retval = self.onecmd(argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 501, in onecmd return self._dispatch_cmd(handler, argv) File "/usr/lib/python3.6/site-packages/osc/cmdln.py", line 1232, in _dispatch_cmd return handler(argv[0], opts, *args) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 6479, in do_build args = self.parse_repoarchdescr(args, opts.noinit or opts.offline, opts.alternative_project, False, opts.vm_type, opts.multibuild_package) File "/usr/lib/python3.6/site-packages/osc/commandline.py", line 6142, in parse_repoarchdescr repositories = list(get_repos_of_project(apiurl, project)) File "/usr/lib/python3.6/site-packages/osc/core.py", line 5665, in get_repos_of_project f = show_project_meta(apiurl, prj) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3518, in show_project_meta url = makeurl(apiurl, ['source', prj, '_meta']) File "/usr/lib/python3.6/site-packages/osc/core.py", line 3307, in makeurl if conf.config['verbose'] > 1: TypeError: '>' not supported between instances of 'str' and 'int'
howerver, running the above commands again, they both work well. based on the above error, I think this bug was NOT fixed completely.
This has nothing to do with the original bug. Please open a new bug.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c34
--- Comment #34 from jun wang junguo.wang@suse.com --- (In reply to Marco Strigl from comment #33)
(In reply to jun wang from comment #32)
This has nothing to do with the original bug. Please open a new bug.
OK, I see.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c35
--- Comment #35 from jun wang junguo.wang@suse.com --- (In reply to jun wang from comment #34)
(In reply to Marco Strigl from comment #33)
This has nothing to do with the original bug. Please open a new bug.
I have reported a new bug https://bugzilla.suse.com/show_bug.cgi?id=1166051
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c36
--- Comment #36 from Swamp Workflow Management swamp@suse.de --- SUSE-RU-2020:0627-1: An update that has 5 recommended fixes can now be installed.
Category: recommended (important) Bug References: 1136584,1137477,1154972,1155953,1156501 CVE References: Sources used: SUSE Linux Enterprise Module for Development Tools 15-SP1 (src): osc-0.167.2-3.12.1
NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
http://bugzilla.suse.com/show_bug.cgi?id=1156501 http://bugzilla.suse.com/show_bug.cgi?id=1156501#c37
--- Comment #37 from Swamp Workflow Management swamp@suse.de --- openSUSE-RU-2020:0344-1: An update that has 5 recommended fixes can now be installed.
Category: recommended (important) Bug References: 1136584,1137477,1154972,1155953,1156501 CVE References: Sources used: openSUSE Leap 15.1 (src): osc-0.167.2-lp151.2.9.1
https://bugzilla.suse.com/show_bug.cgi?id=1156501 https://bugzilla.suse.com/show_bug.cgi?id=1156501#c39
Swamp Workflow Management swamp@suse.de changed:
What |Removed |Added ---------------------------------------------------------------------------- OS|openSUSE Factory |All
--- Comment #39 from Swamp Workflow Management swamp@suse.de --- SUSE-SU-2022:4351-1: An update that solves two vulnerabilities, contains one feature and has 22 fixes is now available.
Category: security (important) Bug References: 1089025,1097996,1122675,1125243,1126055,1126058,1127932,1129757,1129889,1131512,1136584,1137477,1138165,1138977,1140697,1142518,1142662,1144211,1154972,1155953,1156501,1160446,1166537,1173926 CVE References: CVE-2019-3681,CVE-2019-3685 JIRA References: OBS-203 Sources used: SUSE Linux Enterprise Software Development Kit 12-SP5 (src): osc-0.182.0-15.12.1
NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
-
bugzilla_noreply@novell.com -
bugzilla_noreply@suse.com