[opensuse-factory] User session keyring, etc
Did something change in the most recent Tumbleweed update in this area? I used to be able to use "ecryptfs-mount-private" to mount my ecryptfs filesystem whether or not I was logged in graphically, and whether or not I had entered a kwallet password. Now that's no longer the case - I see: $ ecryptfs-mount-private Enter your login passphrase: Inserted auth tok with sig [xxxxxxxxxxxxxxxx] into the user session keyring mount: No such file or directory And the filesystem is not mounted. But if I have logged in to a KDE session and kwallet, then ecryptfs-mount-private works as expected without prompting for a password. -- ============================ Roger Whittaker roger@disruptive.org.uk ============================ -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On Fri, Jun 23, 2017 at 09:56:16AM +0100, Roger Whittaker wrote:
Did something change in the most recent Tumbleweed update in this area?
I used to be able to use "ecryptfs-mount-private" to mount my ecryptfs filesystem whether or not I was logged in graphically, and whether or not I had entered a kwallet password.
Now that's no longer the case - I see:
$ ecryptfs-mount-private Enter your login passphrase: Inserted auth tok with sig [xxxxxxxxxxxxxxxx] into the user session keyring mount: No such file or directory
And the filesystem is not mounted.
But if I have logged in to a KDE session and kwallet, then ecryptfs-mount-private works as expected without prompting for a password.
Further investigation shows that after unmounting, "ecryptfs-mount-private" works as expected when run from inside the KDE session, and fails when run remotely (although it seems to add keys to the keyring). -- ============================ Roger Whittaker roger@disruptive.org.uk ============================ -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On Fri, Jun 23, 2017 at 11:13:07AM +0100, Roger Whittaker wrote:
Further investigation shows that after unmounting, "ecryptfs-mount-private" works as expected when run from inside the KDE session, and fails when run remotely (although it seems to add keys to the keyring).
More exactly, "ecryptfs-mount-private" works as expected when run locally, regardless of a graphical session, but fails when run remotely. Something changed (I think as a result of a recent update) but I can't understand what. Is there anyone using this who has seen anything similar? -- ============================ Roger Whittaker roger@disruptive.org.uk ============================ -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
On 06/23/2017 03:56 AM, Roger Whittaker wrote:
$ ecryptfs-mount-private Enter your login passphrase: Inserted auth tok with sig [xxxxxxxxxxxxxxxx] into the user session keyring mount: No such file or directory
Yes, I am seeing this. I booted to Tumbleweed. Then I logged in only remotely (with "ssh" using public key authentication). And when I tried "ecryptfs-mount-private", I got the same result. Recent log entries that are probably related: --- start of log entries --- 2017-06-23T09:09:18.387015-05:00 nwr8 kernel: [ 88.040088] Could not find key with description: [49c0e2659c22a1f5] 2017-06-23T09:09:18.387025-05:00 nwr8 kernel: [ 88.040089] process_request_key_err: No key 2017-06-23T09:09:18.387026-05:00 nwr8 kernel: [ 88.040090] Could not find valid key in user session keyring for sig specified in mount option: [49c0e2659c22a1f5] 2017-06-23T09:09:18.387027-05:00 nwr8 kernel: [ 88.040090] One or more global auth toks could not properly register; rc = [-2] 2017-06-23T09:09:18.387028-05:00 nwr8 kernel: [ 88.040091] Error parsing options; rc = [-2] --- end of log entries --- Have you considered filing a bug report? -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org
participants (2)
-
Neil Rickert
-
Roger Whittaker