[Bug 644730] New: Encrypted home directory - mount.crypt gets called with '-oloop' and displays a warning message upon login
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c0 Summary: Encrypted home directory - mount.crypt gets called with '-oloop' and displays a warning message upon login Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: x86 OS/Version: openSUSE 11.3 Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: madworm_de.novell@spitzenpfeil.org QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.10) Gecko/20100914 SUSE/3.6.10-30.2 Firefox/3.6.10 I set up a user with otherwise standard settings using YaST, but with an encrypted home directory (using an image file). Upon local login I get this warning message: --- pam_mount(mount.c:64): Errors from underlying mount program: pam_mount(mount.c:68): mount.crypt(mtcrypt.c:161): loop mount option ignored --- With debug output: --- pam_mount(pam_mount.c:538): pam_mount 1.34: entering session stage pam_mount(misc.c:38): Session open: (uid=0, euid=0, gid=0, egid=0) pam_mount(mount.c:196): Mount info: globalconf, user=crypt <volume fstype="crypt" server="(null)" path="/home/crypt.img" mountpoint="/XXXXXX/home/crypt" cipher="aes-cbc-essiv:sha256" fskeypath="/home/crypt.key" fskeycipher="aes-256-cbc" fskeyhash="md5" options="loop" /> fstab=0 command: 'mount.crypt' '-ocipher=aes-cbc-essiv:sha256' '-ofsk_cipher=aes-256-cbc' '-ofsk_hash=md5' '-okeyfile=/home/crypt.key' '-oloop' '/home/crypt.img' '/XXXXXX/home/crypt' pam_mount(misc.c:38): set_myuid<pre>: (uid=0, euid=0, gid=0, egid=0) pam_mount(misc.c:38): set_myuid<post>: (uid=0, euid=0, gid=0, egid=0) pam_mount(mount.c:64): Errors from underlying mount program: pam_mount(mount.c:68): mount.crypt(mtcrypt.c:161): loop mount option ignored .. command: 'pmvarrun' '-u' 'crypt' '-o' '1' pam_mount(misc.c:38): set_myuid<pre>: (uid=0, euid=0, gid=0, egid=0) pam_mount(misc.c:38): set_myuid<post>: (uid=0, euid=0, gid=0, egid=0) pmvarrun(pmvarrun.c:248): parsed count value 0 pam_mount(pam_mount.c:431): pmvarrun says login count is 1 pam_mount(pam_mount.c:624): done opening session (ret=0) --- The image gets mounted, but the error message pops up. Also mounting the encrypted image upon ssh login doesn't seem to work. Maybe this is intentional. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c wei wang <wewang@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |wewang@novell.com AssignedTo|bnc-team-screening@forge.pr |coolo@novell.com |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jengelh@medozas.de AssignedTo|coolo@novell.com |mc@novell.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c1 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|Basesystem |YaST2 AssignedTo|mc@novell.com |bnc-team-screening@forge.pr | |ovo.novell.com QAContact|qa@suse.de |jsrain@novell.com --- Comment #1 from Jan Engelhardt <jengelh@medozas.de> 2010-10-11 09:49:40 UTC --- yast should cease emitting -oloop. SSH is possible, but requires a lot of quirks. See "Known Incompatibilities" at http://pam-mount.sourceforge.net/doc.php . -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c3 Thomas Göttlicher <tgoettlicher@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |tgoettlicher@novell.com AssignedTo|yast2-maintainers@suse.de |aschnell@novell.com --- Comment #3 from Thomas Göttlicher <tgoettlicher@novell.com> 2010-10-19 07:53:01 UTC --- Arvin, I guess this bug report is about yast2-storage. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c4 Arvin Schnell <aschnell@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |madworm_de.novell@spitzenpf | |eil.org --- Comment #4 from Arvin Schnell <aschnell@novell.com> 2010-10-19 08:28:37 UTC --- yast2-storage does not add loop. Please provide YaST logs, see http://en.opensuse.org/openSUSE:Bugreport_YaST. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c5 --- Comment #5 from robert spitzenpfeil <madworm_de.novell@spitzenpfeil.org> 2010-10-20 18:43:48 UTC --- Created an attachment (id=396057) --> (http://bugzilla.novell.com/attachment.cgi?id=396057) y2log + pam_mount.conf for encrypted home dir -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c6 --- Comment #6 from Arvin Schnell <aschnell@novell.com> 2010-10-21 10:06:15 UTC --- Please use the save_y2logs script to save the YaST logs as mentioned in the wiki. The y2log from comment #5 is very short and does not cover the installation. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c7 --- Comment #7 from robert spitzenpfeil <madworm_de.novell@spitzenpfeil.org> 2010-10-21 11:23:46 UTC --- Created an attachment (id=396229) --> (http://bugzilla.novell.com/attachment.cgi?id=396229) more logfiles -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c8 --- Comment #8 from Arvin Schnell <aschnell@novell.com> 2010-10-21 12:18:37 UTC --- Logs still do not cover the installation. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c9 --- Comment #9 from robert spitzenpfeil <madworm_de.novell@spitzenpfeil.org> 2010-10-21 13:42:54 UTC --- May I ask what exactly you understand by 'installation' ? I'm adding a new user with encrypted home dir, I'm not installing a new system from scratch. And I've had a close look at what save_y2logs includes - which is quite a lot - and frankly I have a hard time understanding of what importance it is in this case which packages I have installed on my machine (other than what is required by yast to work properly here (cryptsetup...), which is installed automatically if missing anyway. With sending all of that, I might as well strip naked and publish the contents of my laptop on github. Line 44214 of 'y2log' contains the data that ends up in /etc/security/pam_mount.conf.xml. What _exactly_ do you need? I don't feel like sending out intimate data of my system by the bucket to a publicly readable web-page. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c10 Arvin Schnell <aschnell@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|aschnell@novell.com |jsuchome@novell.com --- Comment #10 from Arvin Schnell <aschnell@novell.com> 2010-10-21 13:55:34 UTC --- So I assume you are not using the partitioner to create the home directory. Then the bug is assigned to the wrong person. I assume yast2-users it responsible. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c12 --- Comment #12 from robert spitzenpfeil <madworm_de.novell@spitzenpfeil.org> 2010-10-21 14:29:26 UTC --- Correct. No partitioner involved at all (from my side). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c15 Jan Matejek <jmatejek@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- InfoProvider|jmatejek@novell.com |mc@novell.com AssignedTo|jsuchome@novell.com |jmatejek@novell.com --- Comment #15 from Jan Matejek <jmatejek@novell.com> 2010-12-10 14:37:55 UTC --- cryptconfig inserts the "loop" option into /etc/security/pam_mount.conf.xml, so i guess the bug is mine after all. one has to wonder why pam_mount even allows (let alone parses) the option, only to complain later that it ignores it anyway...? if removing the loop option is the right thing to do here (i'm not really sure, as i don't understand pam_mount), i'll throw it out. Michael, comment on this please? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c16 Michael Calmer <mc@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mc@novell.com InfoProvider|mc@novell.com |jengelh@medozas.de --- Comment #16 from Michael Calmer <mc@novell.com> 2011-03-01 16:10:50 UTC --- Jan knows it better then I do:-) Maybe something similar to Bug 659333#c7 ? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=644730 https://bugzilla.novell.com/show_bug.cgi?id=644730#c17 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED InfoProvider|jengelh@medozas.de | Resolution| |DUPLICATE --- Comment #17 from Jan Engelhardt <jengelh@medozas.de> 2011-03-01 16:24:42 UTC --- Same as indeed. *** This bug has been marked as a duplicate of bug 659333 *** http://bugzilla.novell.com/show_bug.cgi?id=659333 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com