https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=282005
Bug ID: 282005
Summary: security/gnome-keyring - the race between pam.xdg.so
prevents it from loading keys on login
Product: Base System
Version: CURRENT
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: misc
Assignee: [email protected]
Reporter: [email protected]
After introducing pam_xdg.so some things got broken, it's for example,
pam_gnome_keyring, more breakages could be spotted*. After investigating the
logs, it became obvious that some kind of race between pam_xdg and
pam_gnome_keyring occurs on login:
Oct 11 08:38:45 fomalhaut gnome-keyring-daemon[4974]: couldn't access control
socket: /var/run/user/1001/keyring/control: No such file or directory
On this machine x11/slim is used as the login manager. The configuration of
pam(3) is provided below.
# cat /usr/local/etc/pam.d/slim
auth include system
auth optional /usr/local/lib/pam_gnome_keyring.so
account include system
session include system
session optional /usr/local/lib/pam_gnome_keyring.so auto_start
password include system
# cat /etc/pam.d/system
#
#
# System-wide defaults
#
# auth
#auth sufficient pam_krb5.so no_warn try_first_pass
#auth sufficient pam_ssh.so no_warn try_first_pass
auth required pam_unix.so no_warn try_first_pass
nullok
# account
#account required pam_krb5.so
account required pam_login_access.so
account required pam_unix.so
# session
#session optional pam_ssh.so want_agent
session required pam_lastlog.so no_fail
session required pam_xdg.so
# password
#password sufficient pam_krb5.so no_warn try_first_pass
password required pam_unix.so no_warn try_first_pass
* - at a glance another victim is PulseAudio:
pulseaudio[4747]: [] core-util.c: Failed to create secure directory
(/var/run/user/1001/pulse): No such file or directory
--
You are receiving this mail because:
You are the assignee for the bug.
