Summary: | sys-fs/ecryptfs-utils unmounts even though the session is active | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Peter Avramucz <muczyjoe> |
Component: | Current packages | Assignee: | Gentoo Kernel Miscellaneous <kernel-misc> |
Status: | RESOLVED UPSTREAM | ||
Severity: | normal | CC: | crypto+disabled, n.schlumberger, randy, rcondon, xmw |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | x86 | ||
OS: | Linux | ||
URL: | https://bugs.launchpad.net/ecryptfs/+bug/525562 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Peter Avramucz
2010-10-30 15:49:58 UTC
I think this is an upstream bug report: https://bugs.launchpad.net/ecryptfs/+bug/525562 . However under Ubuntu I don't notice this issue... I can confirm that this still happens with ecryptfs-utils-85. I ran into this problem today and discovered that my umounts were related to me using sudo. Encyptfs keeps track of number of sessions open by using pam and a counter stored in /dev/shm/ecryptfs-????-Private. When the counter gets to 0 the home directory is unmounted. When you delete the "auto_umount" this stops the counter from getting decremented, which means once mounted your home directory will never be unmounted through ecryptfs. The home directory not being unmounted as expected is probably causing the gdm hang. I am not that familiar with Pam and exactly how it operates but I tracked it down to the session optional pam_ecryptfs.so unwrap line in the /etc/pam.d/system-remote-login. What I found is that exiting a sudo session was causing ecyptfs to decrement the counter in /dev/shm/ecryptfs-????-Private. I was able to resolve this by replacing the session include system-auth line from /etc/pam.d/sudo with the system-auth session paramaters (minus the pam_ecryptfs.so unwrap line). For example: Code: cat /etc/pam.d/sudo auth include system-auth account include system-auth # REMOVED #session include system-auth #added using system-auth as reference: session required pam_limits.so session required pam_env.so session required pam_unix.so session optional pam_permit.so There are a lot of files under pam.d that are including system-auth, so if you aren't using sudo then the problem is probably related to another pam session. *** Bug 373137 has been marked as a duplicate of this bug. *** Has anyone discussed this issue upstream? Please take this discussion upstream[1], there is little we can do at Gentoo. I will be happy to apply any solution proposed in this regard. [1] http://ecryptfs.org/ |