Starting gdm (3.2.1.1-r2) half starts : X seems to launch, but all I have is the spinning wheel cursor of Gnome, but no login prompt. After investigating, it's a problem of user : gdm-welcome seems trying to find authentication informations for users it intend display login for. My user 'gab' is not in the passwd file, but in an ldap directory, requested by pam_ldap. I patched /etc/pam.d/gdm-welcome in this way : --- gdm-welcome.201208101024 2012-08-10 10:24:21.000000000 +0200 +++ gdm-welcome 2012-08-10 10:24:39.000000000 +0200 @@ -1,5 +1,6 @@ #%PAM-1.0 auth required pam_env.so +auth sufficient pam_ldap.so try_first_pass ignore_authinfo_unavail auth required pam_permit.so account required pam_nologin.so account include system-services And gdm launch well. I'm not quite sure that this workaround is efficient, though :) Maybe gdm-welcome pam's file should include system-auth ? Reproducible: Always
there is no reason you should modify auth afaics since gdm-welcome has an explicit pam-permit call. Could you attach the output of: $ getent passwd |awk -F':' '{if ($3 > 500) {print $0}}' and the gdm log.
Created attachment 320870 [details] Log of gdm
And the output of the Awk : nobody:x:65534:65534:nobody:/:/bin/false guest:x:1003:1000::/var/guest/:/bin/bash emeric:*:1010:1010:Emeric:/tmp: arno:*:1005:1024:Arno:/home/arnaud:/bin/bash postgres:*:501:501:fake:/var/empty: wouw:*:1002:1002:wouw:/var/wouw:/bin/sh arnaud:*:1011:1002:'No:/home/arnaud:/bin/bash spamhaus:*:1012:100:fake:/var/empty:/bin/false bacula:*:1013:100:fake:/var/empty:/bin/false apc:*:1017:100:fake:/var/empty:/bin/false virgin:*:1018:100:fake:/var/empty:/bin/false meetic:*:1019:100:fake:/var/empty:/bin/false gentoo:*:1021:100:fake:/var/empty:/bin/false j:*:1022:100:fake:/var/empty:/bin/false replicator:*:1023:100:fake:/var/empty:/bin/false wmontaz:*:65534:21:William Montaz:/var/spool/series/: guest:*:1003:1000:fake:/var/guest:/bin/false
Ok the getent output looks really weird. You have two users with empty shell, I am not sure this is valid. From the logs: gdm-welcome][5858]: DEBUG(+): GdmSessionWorker: user is not authorized to log in: Le service d'authentification n'a pas pu récupérer les informations d'authentification gdm-welcome][5858]: DEBUG(+): GdmSessionWorker: uninitializing PAM gdm-welcome][5858]: DEBUG(+): GdmSessionWorker: state NONE gdm-welcome][5858]: DEBUG(+): GdmSessionWorker: Calling AuthorizationFailed gdm seems to stop when checking for validity of user gab. I don't see this user, maybe it's uid is 500, please run: $ getent passwod gab
Here it is : gab:*:500:500:Gab:/home/gab:/bin/bash Uid 500, as you guessed !
Should be fixed in 3.4.1-r1, thanks for reporting. >*gdm-3.4.1-r1 (12 Sep 2012) > > 12 Sep 2012; Alexandre Rostovtsev <tetromino@gentoo.org> +files/3.4.1/gdm, > +files/3.4.1/gdm.service, +files/3.4.1/gdm-autologin, > +files/3.4.1/gdm-fingerprint, +files/3.4.1/gdm-password, > +files/3.4.1/gdm-welcome, +files/49-keychain-r1, +files/50-ssh-agent-r1, > +gdm-3.4.1-r1.ebuild, +files/gdm-3.4.1-dconf-0.13.patch, > +files/3.4.1/gdm-smartcard, metadata.xml: > Add support for dconf-0.13.x. Use pam_systemd.so if USE=systemd (bug #434798, > thanks to Yang Zhao). Make libaudit non-automagic (bug #408063, thanks to > Justin Lecher). Use pam_ldap in the greeter if USE=ldap to allow ldap users > to be listed (bug #430740, thanks to Plopmaster). Silence errors in > 49-keychain and 50-ssh-agent (bug #353068, thanks to Ian Abbott).
