GNOME Bugzilla – Bug 726245
useradd fails to find pam_sm_close_session
Last modified: 2014-03-14 14:43:52 UTC
Commit https://git.gnome.org/browse/gnome-keyring/commit/?id=90a3ae6656960b36a1d2277f336222bd49d5eece has broken autologin on build.gnome.org, from http://build.gnome.org/continuous/buildmaster/builds/2014/03/12/28/smoketest/work-gnome-continuous-x86_64-runtime/journal.txt: systemd: PAM unable to resolve symbol: pam_sm_close_session systemd: Failed at step PAM spawning /usr/lib/systemd/systemd: Operation not permitted systemd: Started User Manager for UID 82. gdm-launch-environment]: pam_unix(gdm-launch-environment:session): session opened for user gdm by (uid=0) gdm-session-worker: gdm-launch-environment]: ../pam/gkr-pam-module.c:632: unlock_keyring: Assertion `password' failed. gdm: Freeing conversation 'gdm-launch-environment' with active job
I think the symbol thing is innocuous; the real error is: gdm-session-worker: gdm-launch-environment]: ../pam/gkr-pam-module.c:632: unlock_keyring: Assertion `password' failed.
Created attachment 271782 [details] [review] pam: Export a pam_sm_close_session() function entry point Some PAM callers want this even though we don't do anything interesting in here.
Created attachment 271783 [details] [review] pam: Allow unlock_keyring() to be called with a NULL password This happens when doing auto-login. The various side effects of unlock_keyring (including setting *need_daemon) are valuable even in the cases where password is NULL. http://bugzilla.gnome.org/show_bug.cgi?id=726245
Created attachment 271784 [details] [review] pam: Allow unlock_keyring() to be called with a NULL password This happens when doing auto-login. The various side effects of unlock_keyring (including setting *need_daemon) are valuable even in the cases where password is NULL. Add a test that checks that the daemon starts as expected when the user did not authenticate. http://bugzilla.gnome.org/show_bug.cgi?id=726245
Vadim, are you able to give these patches a test?
Review of attachment 271782 [details] [review]: Tested this on my gnome-continuous instance - the error about the missing symbol is gone
Review of attachment 271784 [details] [review]: Tested this on my gnome-continuous instance - user with empty password logs in correctly
Attachment 271782 [details] pushed as d1c549a - pam: Export a pam_sm_close_session() function entry point
Attachment 271784 [details] pushed as ce8b568 - pam: Allow unlock_keyring() to be called with a NULL password