Package: ecryptfs-utils Version: 95-1 Severity: important Hi,
I've recently been trying to setup an encrypted home partition with ecryptfs. However it does not quite seem to work for me so far. While using ecryptfs-mount-private via a VT works, the automounting does not and kdm/gdm3 therefore refuse a login with the following error message after having typed in my password in the login screen of kdm/gdm3: "Could not update ICEauthority file [...]" And I'm forced to click a button to logout again. I've created a minimal, new user account, just with an "adduser testuser" and an "ecryptfs-migrate-home -u testuser" and I can reproduce this issue with that one. Also using gdm3 or kdm does not seem to make a difference. For detailed steps and various outputs in between, see the attached "steps" file and debug output files. Please let me know if you need any additional information. Cheers, Linus -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (x86_64) Kernel: Linux 3.2.4 (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages ecryptfs-utils depends on: ii gettext-base 0.18.1.1-5 ii keyutils 1.5.5-1 ii libc6 2.13-27 ii libecryptfs0 95-1 ii libgpg-error0 1.10-3 ii libgpgme11 1.2.0-1.4 ii libkeyutils1 1.5.5-1 ii libnss3-1d 3.13.3-1 ii libpam-runtime 1.1.3-7 ii libpam0g 1.1.3-7 ecryptfs-utils recommends no packages. Versions of packages ecryptfs-utils suggests: pn cryptsetup 2:1.4.1-2 pn opencryptoki <none> -- no debconf information
## As root user lsmod | grep ecryptfs > pre-lsmod mount > pre-mount df -h > pre-df-h ls -lah /home > pre-ls-home adduser testuser ls -lah /home > 2nd-ls-home ecryptfs-migrate-home -u testuser ls -lah /home /home/.ecryptfs /home/testuser /home/.ecryptfs/testuser/.ecryptfs > 3rd-ls-home /etc/init.d/gdm3 start # logging in: # "Could not update ICEauthority file ..." # switching to VT, while keeping error message open mount > mount-during # (so still the same, ecryptfs not mounted) # Clicking "logout" on error message, switching to VT again ## logging in as testuser on VT ecryptfs-mount-private ls -lah /home/testuser > 4th-ls-home mount > mount-after # and ecryptfs-mount-private seems to work...
ecryptfs 81501 0
udev on /dev type devtmpfs (rw,relatime,size=892316k,nr_inodes=223079,mode=755) devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=000) tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=179796k,mode=755) /dev/mapper/sda1_crypt on / type ext4 (rw,noatime,errors=remount-ro,user_xattr,acl,barrier=1,data=ordered) tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k) tmpfs on /tmp type tmpfs (rw,nosuid,nodev,relatime,size=359592k) proc on /proc type proc (rw,nosuid,nodev,noexec,relatime) sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime) tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,relatime,size=359592k) fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nosuid,nodev,noexec,relatime) /dev/mapper/sda5_crypt on /mnt/Temp3 type ext2 (rw,relatime,errors=continue,user_xattr,acl) /dev/mapper/sda23_crypt on /home type ext4 (rw,relatime,user_xattr,barrier=1,data=ordered)
Filesystem Size Used Avail Use% Mounted on rootfs 77G 58G 19G 77% / udev 872M 0 872M 0% /dev tmpfs 176M 708K 175M 1% /run /dev/mapper/sda1_crypt 77G 58G 19G 77% / tmpfs 5.0M 0 5.0M 0% /run/lock tmpfs 352M 4.6M 347M 2% /tmp tmpfs 352M 76K 352M 1% /run/shm /dev/mapper/sda5_crypt 14M 276K 13M 3% /mnt/Temp3 /dev/mapper/sda23_crypt 71G 1.2G 67G 2% /home
total 28K drwxr-xr-x 4 root root 4.0K Mar 6 21:28 . drwxr-xr-x 29 root root 4.0K Mar 6 21:03 .. drwxr-xr-x 7 root root 4.0K Mar 6 21:28 bckp drwx------ 2 root root 16K Mar 6 06:14 lost+found
total 32K drwxr-xr-x 5 root root 4.0K Mar 6 21:30 . drwxr-xr-x 29 root root 4.0K Mar 6 21:03 .. drwxr-xr-x 7 root root 4.0K Mar 6 21:28 bckp drwx------ 2 root root 16K Mar 6 06:14 lost+found drwxr-xr-x 2 testuser testuser 4.0K Mar 6 21:30 testuser
/home: total 40K drwxr-xr-x 7 root root 4.0K Mar 6 21:31 . drwxr-xr-x 29 root root 4.0K Mar 6 21:03 .. drwxr-xr-x 7 root root 4.0K Mar 6 21:28 bckp drwxr-xr-x 3 root root 4.0K Mar 6 21:31 .ecryptfs drwx------ 2 root root 16K Mar 6 06:14 lost+found dr-x------ 2 testuser testuser 4.0K Mar 6 21:31 testuser drwx------ 2 testuser testuser 4.0K Mar 6 21:30 testuser.UThEvke0 /home/.ecryptfs: total 12K drwxr-xr-x 3 root root 4.0K Mar 6 21:31 . drwxr-xr-x 7 root root 4.0K Mar 6 21:31 .. drwxr-xr-x 4 testuser testuser 4.0K Mar 6 21:31 testuser /home/testuser: total 8.0K dr-x------ 2 testuser testuser 4.0K Mar 6 21:31 . drwxr-xr-x 7 root root 4.0K Mar 6 21:31 .. lrwxrwxrwx 1 testuser testuser 56 Mar 6 21:31 Access-Your-Private-Data.desktop -> /usr/share/ecryptfs-utils/ecryptfs-mount-private.desktop lrwxrwxrwx 1 testuser testuser 34 Mar 6 21:31 .ecryptfs -> /home/.ecryptfs/testuser/.ecryptfs lrwxrwxrwx 1 testuser testuser 33 Mar 6 21:31 .Private -> /home/.ecryptfs/testuser/.Private lrwxrwxrwx 1 testuser testuser 52 Mar 6 21:31 README.txt -> /usr/share/ecryptfs-utils/ecryptfs-mount-private.txt /home/testuser.UThEvke0: total 24K drwx------ 2 testuser testuser 4.0K Mar 6 21:30 . drwxr-xr-x 7 root root 4.0K Mar 6 21:31 .. -rw-r--r-- 1 testuser testuser 220 Mar 6 21:30 .bash_logout -rw-r--r-- 1 testuser testuser 3.1K Mar 6 21:30 .bashrc -rw-r--r-- 1 testuser testuser 1008 Mar 6 21:30 .mkshrc -rw-r--r-- 1 testuser testuser 675 Mar 6 21:30 .profile /home/.ecryptfs/testuser/.ecryptfs: total 20K drwx------ 2 testuser testuser 4.0K Mar 6 21:31 . drwxr-xr-x 4 testuser testuser 4.0K Mar 6 21:31 .. -rw-r--r-- 1 testuser testuser 0 Mar 6 21:31 auto-mount -rw-r--r-- 1 testuser testuser 0 Mar 6 21:31 auto-umount -rw------- 1 testuser testuser 15 Mar 6 21:31 Private.mnt -rw------- 1 testuser testuser 34 Mar 6 21:31 Private.sig -r-------- 1 testuser testuser 48 Mar 6 21:31 wrapped-passphrase
udev on /dev type devtmpfs (rw,relatime,size=892316k,nr_inodes=223079,mode=755) devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=000) tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=179796k,mode=755) /dev/mapper/sda1_crypt on / type ext4 (rw,noatime,errors=remount-ro,user_xattr,acl,barrier=1,data=ordered) tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k) tmpfs on /tmp type tmpfs (rw,nosuid,nodev,relatime,size=359592k) proc on /proc type proc (rw,nosuid,nodev,noexec,relatime) sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime) tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,relatime,size=359592k) fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nosuid,nodev,noexec,relatime) /dev/mapper/sda5_crypt on /mnt/Temp3 type ext2 (rw,relatime,errors=continue,user_xattr,acl) /dev/mapper/sda23_crypt on /home type ext4 (rw,relatime,user_xattr,barrier=1,data=ordered)
total 64K drwx------ 2 testuser testuser 4.0K Mar 6 21:30 . drwxr-xr-x 7 root root 4.0K Mar 6 21:31 .. -rw-r--r-- 1 testuser testuser 220 Mar 6 21:30 .bash_logout -rw-r--r-- 1 testuser testuser 3.1K Mar 6 21:30 .bashrc lrwxrwxrwx 1 testuser testuser 34 Mar 6 21:31 .ecryptfs -> /home/.ecryptfs/testuser/.ecryptfs -rw-r--r-- 1 testuser testuser 1008 Mar 6 21:30 .mkshrc lrwxrwxrwx 1 testuser testuser 33 Mar 6 21:31 .Private -> /home/.ecryptfs/testuser/.Private -rw-r--r-- 1 testuser testuser 675 Mar 6 21:30 .profile
udev on /dev type devtmpfs (rw,relatime,size=892316k,nr_inodes=223079,mode=755) devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=000) tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=179796k,mode=755) /dev/mapper/sda1_crypt on / type ext4 (rw,noatime,errors=remount-ro,user_xattr,acl,barrier=1,data=ordered) tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k) tmpfs on /tmp type tmpfs (rw,nosuid,nodev,relatime,size=359592k) proc on /proc type proc (rw,nosuid,nodev,noexec,relatime) sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime) tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,relatime,size=359592k) fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,nosuid,nodev,noexec,relatime) /dev/mapper/sda5_crypt on /mnt/Temp3 type ext2 (rw,relatime,errors=continue,user_xattr,acl) /dev/mapper/sda23_crypt on /home type ext4 (rw,relatime,user_xattr,barrier=1,data=ordered) /home/testuser/.Private on /home/testuser type ecryptfs (rw,relatime,ecryptfs_fnek_sig=681e7204a3e545ff,ecryptfs_sig=6fd2a79d5bf579c9,ecryptfs_cipher=aes,ecryptfs_key_bytes=16,ecryptfs_unlink_sigs)
