Bug#726661: login fails with pam_loginuid(sshd:session): set_loginuid failed
- To: Simon McVittie <smcv@debian.org>, 726661@bugs.debian.org
- Cc: Andrea Lusuardi <uovobw@gmail.com>, Darren Tucker <dtucker@zip.com.au>, Colin Watson <cjwatson@debian.org>, Carlos Alberto Lopez Perez <clopez@igalia.com>, Olivier Berger <olivier.berger@telecom-sudparis.eu>, Thijs Kinkhorst <thijs@debian.org>, Michael Biebl <biebl@debian.org>, Laurent Bigonville <bigon@debian.org>, pam@packages.debian.org
- Subject: Bug#726661: login fails with pam_loginuid(sshd:session): set_loginuid failed
- From: Evgeni Golov <evgeni@debian.org>
- Date: Sun, 17 Apr 2016 21:57:51 +0200
- Message-id: <[🔎] 20160417195751.GA13766@nana.phantasia.die-welt.net>
- Reply-to: Evgeni Golov <evgeni@debian.org>, 726661@bugs.debian.org
- In-reply-to: <[🔎] 20160417190357.GA22460@nana.phantasia.die-welt.net>
- References: <1411826799.756399.172393089.4C63DF8E@webmail.messagingengine.com> <CALDDTe2zALR-hyxzVxQ7qA_aHujz0wDr1PmZNBZJb3Knu5e=8A@mail.gmail.com> <20131017205615.15469.57420.reportbug@nl-01> <20141108223417.GA5963@reptile.pseudorandom.co.uk> <20141113091942.GA30028@reptile.pseudorandom.co.uk> <20141113103935.GA31483@reptile.pseudorandom.co.uk> <[🔎] 20160417190357.GA22460@nana.phantasia.die-welt.net>
Ohai²,
On Sun, Apr 17, 2016 at 09:03:57PM +0200, Evgeni Golov wrote:
> I can reproduce this bug on a Debian Jessie system with LXC 2.0 (from Stretch).
>
> Host: jessie with systemd as pid1, lxc and lxcfs from stretch
> Guest: jessie with sysvinit as pid1 (systemd gives me headaches in containers yet)
Also with Stretch/systemd as guest.
> There are PAM patches at [1][2][3], maybe they just need backporting to Jessie?
>
> [1] https://git.fedorahosted.org/cgit/linux-pam.git/commit/modules/pam_loginuid/pam_loginuid.c?id=5825450540e6620ac331c64345b42fdcbb1d6e87
> [2] https://git.fedorahosted.org/cgit/linux-pam.git/commit/modules/pam_loginuid/pam_loginuid.c?id=24f3a88e7de52fbfcb7b8a1ebdae0cdbef420edf
> [3] https://git.fedorahosted.org/cgit/linux-pam.git/commit/modules/pam_loginuid/pam_loginuid.c?id=2e62d5aea3f5ac267cfa54f0ea1f8c07ac85a95a
[3] is missing from src:pam/debian/patches-applied/pam-loginuid-in-containers
Ubuntu has it backported at [4].
I think the following should be done (but I am unsure that's the only failure here, so maybe rather a clone? - I'll let the openssh maintainers decide)
reassign -1 libpam-modules
retitle -1 pam_loginuid fails in unprivileged containers
found -1 1.1.8-3.1+deb8u1
found -1 1.1.8-3.2
tags -1 + patch
Greets
Evgeni
[4] https://bazaar.launchpad.net/~ubuntu-branches/ubuntu/wily/pam/wily/view/head:/debian/patches-applied/pam-loginuid-in-containers
Reply to: