Debian Bug report logs -
#475256
libpam-mount: fails to decrypt ssl key: "encrypted filesystem key not supported: no openssl"
Reported by: Angel Olivera <redondos@gmail.com>
Date: Wed, 9 Apr 2008 19:27:01 UTC
Severity: important
Found in version libpam-mount/0.35-1
Fixed in version libpam-mount/0.35-2
Done: Bastian Kleineidam <calvin@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Bastian Kleineidam <calvin@debian.org>:
Bug#475256; Package libpam-mount.
(full text, mbox, link).
Acknowledgement sent to Angel Olivera <redondos@gmail.com>:
New Bug report received and forwarded. Copy sent to Bastian Kleineidam <calvin@debian.org>.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: libpam-mount
Version: 0.35-1
Severity: important
My home directory is an encrypted partition, and a LUKS key to decrypt
it is stored with my login key. pam-mount uses it to open the partition
and then mount it. This is a typical setup, here's the configuration:
<volume user="redondos" mountpoint="/home/redondos" path="/dev/mapper/100-redondos"
fstype="crypt" fskeycipher="aes-256-ecb" fskeypath="/home/redondos.key"
options="exec,fsck,nodev,nosuid,fstype=ext3,cipher=twofish,hash=sha512,keysize=256"
/>
0.33 works fine, while 0.35 doesn't mount it.
-- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (100, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.23.14-redondos (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages libpam-mount depends on:
ii debconf 1.5.20 Debian configuration management sy
ii libc6 2.7-10 GNU C Library: Shared libraries
ii libhx10 1.10.2-2 A library providing queue, tree, I
ii libpam0g 0.99.7.1-6 Pluggable Authentication Modules l
ii libssl0.9.8 0.9.8g-8 SSL shared libraries
ii libxml-writer-perl 0.604-1 Perl module for writing XML docume
ii libxml2 2.6.31.dfsg-2 GNOME XML library
ii mount 2.13.1-3 Tools for mounting and manipulatin
libpam-mount recommends no packages.
-- debconf information excluded
Information forwarded to debian-bugs-dist@lists.debian.org, Bastian Kleineidam <calvin@debian.org>:
Bug#475256; Package libpam-mount.
(full text, mbox, link).
Acknowledgement sent to Angel Olivera <redondos@gmail.com>:
Extra info received and forwarded to list. Copy sent to Bastian Kleineidam <calvin@debian.org>.
(full text, mbox, link).
Message #10 received at 475256@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
auth.log snippet
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:317) saving authtok for session code
Apr 9 20:56:52 thruster login[6005]: pam_unix(login:session): session opened for user redondos by LOGIN(uid=0)
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:466) Entered pam_mount session stage
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:487) back from global readconfig
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:489) per-user configurations not allowed by pam_mount.conf.xml
Apr 9 20:56:52 thruster login[6005]: pam_mount(misc.c:56) Session open: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6005]: pam_mount(rdconf2.c:210) checking sanity of volume record (/dev/mapper/100-redondos)
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:541) about to perform mount operations
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:416) information for mount:
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:417) ----------------------
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:418) (defined by globalconf)
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:419) user: redondos
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:420) server:
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:421) volume: /dev/mapper/100-redondos
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:422) mountpoint: /home/redondos
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:423) options: cipher=twofish,exec,fsck,fstype=ext3,hash=sha512,keysize=256,nodev,nosuid
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:424) fs_key_cipher: aes-256-ecb
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:425) fs_key_path: /home/redondos.key
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:426) use_fstab: 0
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:427) ----------------------
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:182) realpath of volume "/home/redondos" is "/home/redondos"
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:186) checking to see if /dev/mapper/_dev_mapper_100-redondos is already mounted at /home/redondos
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:880) checking for encrypted filesystem key configuration
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:889) decrypting FS key using system auth. token and aes-256-ecb
Apr 9 20:56:52 thruster login[6005]: pam_mount(crypto.c:216) encrypted filesystem key not supported: no openssl
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:544) mount of /dev/mapper/100-redondos failed
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:140) clean system authtok (0)
Apr 9 20:56:52 thruster login[6005]: pam_mount(misc.c:285) command: pmvarrun [-u] [redondos] [-o] [1]
Apr 9 20:56:52 thruster login[6219]: pam_mount(misc.c:56) set_myuid<pre>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6219]: pam_mount(misc.c:56) set_myuid<post>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:431) pmvarrun says login count is 1
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:554) done opening session (ret=3)
Apr 9 20:56:52 thruster login[6005]: pam_unix(login:session): session closed for user redondos
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:595) received order to close things
Apr 9 20:56:52 thruster login[6005]: pam_mount(misc.c:56) Session close: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6005]: pam_mount(misc.c:285) command: pmvarrun [-u] [redondos] [-o] [-1]
Apr 9 20:56:52 thruster login[6222]: pam_mount(misc.c:56) set_myuid<pre>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6222]: pam_mount(misc.c:56) set_myuid<post>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:431) pmvarrun says login count is 0
Apr 9 20:56:52 thruster login[6005]: pam_mount(pam_mount.c:627) going to unmount
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:416) information for mount:
Apr 9 20:56:52 thruster login[6005]: pam_mount(mount.c:417) ----------------------
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:418) (defined by globalconf)
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:419) user: redondos
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:420) server:
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:421) volume: /dev/mapper/100-redondos
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:422) mountpoint: /home/redondos
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:423) options: cipher=twofish,exec,fsck,fstype=ext3,hash=sha512,keysize=256,nodev,nosuid
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:424) fs_key_cipher: aes-256-ecb
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:425) fs_key_path: /home/redondos.key
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:426) use_fstab: 0
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:427) ----------------------
Apr 9 20:56:53 thruster login[6005]: pam_mount(misc.c:285) command: lsof [/home/redondos]
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:107) ·è|æ¿ôúË·Y|æ¿h[æ¿~;^H^Hþ:^H^HÐú^G^HÿL^H^H
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:139) waiting for lsof
Apr 9 20:56:53 thruster login[6005]: pam_mount(misc.c:285) command: /sbin/umount.crypt [/home/redondos]
Apr 9 20:56:53 thruster login[6225]: pam_mount(misc.c:56) set_myuid<pre>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:53 thruster login[6225]: pam_mount(misc.c:56) set_myuid<post>: (uid=0, euid=0, gid=1000, egid=1000)
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:107) ·è|æ¿ôúË·Y|æ¿h[æ¿~;^H^Hþ:^H^HÐú^G^HÿL^H^H
Apr 9 20:56:53 thruster login[6005]: pam_mount(mount.c:603) waiting for umount
Apr 9 20:56:53 thruster login[6005]: pam_mount(pam_mount.c:630) unmount of /dev/mapper/100-redondos failed
Apr 9 20:56:53 thruster login[6005]: pam_mount(pam_mount.c:641) pam_mount execution complete
Apr 9 20:56:53 thruster login[6005]: pam_mount(pam_mount.c:122) Clean global config (0)
Apr 9 20:56:53 thruster login[6005]: pam_mount(pam_mount.c:140) clean system authtok (0)
--
redondos
[signature.asc (application/pgp-signature, inline)]
Information forwarded to debian-bugs-dist@lists.debian.org, Bastian Kleineidam <calvin@debian.org>:
Bug#475256; Package libpam-mount.
(full text, mbox, link).
Acknowledgement sent to Jan Engelhardt <jengelh@computergmbh.de>:
Extra info received and forwarded to list. Copy sent to Bastian Kleineidam <calvin@debian.org>.
(full text, mbox, link).
Message #15 received at 475256@bugs.debian.org (full text, mbox, reply):
Commit 156e691 should fix it.
Information forwarded to debian-bugs-dist@lists.debian.org, Bastian Kleineidam <calvin@debian.org>:
Bug#475256; Package libpam-mount.
(full text, mbox, link).
Acknowledgement sent to redondos <redondos@gmail.com>:
Extra info received and forwarded to list. Copy sent to Bastian Kleineidam <calvin@debian.org>.
(full text, mbox, link).
Message #20 received at 475256@bugs.debian.org (full text, mbox, reply):
That was it, thank you very much.
--
redondos
Reply sent to Bastian Kleineidam <calvin@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Angel Olivera <redondos@gmail.com>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #25 received at 475256-close@bugs.debian.org (full text, mbox, reply):
Source: libpam-mount
Source-Version: 0.35-2
We believe that the bug you reported is fixed in the latest version of
libpam-mount, which is due to be installed in the Debian FTP archive:
libpam-mount_0.35-2.diff.gz
to pool/main/libp/libpam-mount/libpam-mount_0.35-2.diff.gz
libpam-mount_0.35-2.dsc
to pool/main/libp/libpam-mount/libpam-mount_0.35-2.dsc
libpam-mount_0.35-2_i386.deb
to pool/main/libp/libpam-mount/libpam-mount_0.35-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 475256@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Bastian Kleineidam <calvin@debian.org> (supplier of updated libpam-mount package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 10 Apr 2008 11:10:16 +0200
Source: libpam-mount
Binary: libpam-mount
Architecture: source i386
Version: 0.35-2
Distribution: unstable
Urgency: low
Maintainer: Bastian Kleineidam <calvin@debian.org>
Changed-By: Bastian Kleineidam <calvin@debian.org>
Description:
libpam-mount - PAM module that can mount volumes for a user session
Closes: 475256
Changes:
libpam-mount (0.35-2) unstable; urgency=low
.
* Pull upstream patch to fix autodetection of ssl support.
(Closes: #475256)
Checksums-Sha1:
5b91f07c00e0d8d2032d9c9d162a9ddc51543b45 1217 libpam-mount_0.35-2.dsc
faa5c92e5de311b16c95570ef2effdc1f35ac29d 60596 libpam-mount_0.35-2.diff.gz
8b0bc8a8e7d6bdd6ab51086d8ce2f7f0dcd094a8 93462 libpam-mount_0.35-2_i386.deb
Checksums-Sha256:
549fab3c2e33efd80921f4b881ffca9f845005ac8265b10417d5303062dbc391 1217 libpam-mount_0.35-2.dsc
f5bd9e3d0962a1e64f27f09e2f95c251d69567797c3507520e0622c0f314f63d 60596 libpam-mount_0.35-2.diff.gz
f295585f15bc2e401555af80af1d01de350905a51a6158bd6fb761418da19857 93462 libpam-mount_0.35-2_i386.deb
Files:
6445a52433042f63a4a3a46113bba53d 1217 admin extra libpam-mount_0.35-2.dsc
f3e907501f2ebfb072eca3614a669327 60596 admin extra libpam-mount_0.35-2.diff.gz
a7f27f81b9de74b83aaa1889b8d602dd 93462 admin extra libpam-mount_0.35-2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFH/duPeBwlBDLsbz4RAm8fAKCzs3fa5ZeCTYLIXJaJkxAEBXHWVQCfdFcq
W0nZnAychA1WsE+65RBYAyo=
=/Iqd
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 15 Jun 2008 07:33:44 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Mon Jul 15 12:58:16 2024;
Machine Name:
bembo
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.