Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- --- Log opened Thu Sep 29 18:52:15 2011
- 18:52 -!- Laanders [anlag@suiko.acc.umu.se] has joined #ecryptfs
- 18:52 -!- Irssi: #ecryptfs: Total of 22 nicks [0 ops, 0 halfops, 0 voices, 22 normal]
- 18:52 -!- Irssi: Join to #ecryptfs was synced in 1 secs
- 18:54 < Laanders> I'm experiencing a problem with ecryptfs on ubuntu, where the encrypted directory won't mount, neither automatically on login nor when I try it manually
- 18:54 < Laanders> anyone able to give me a hand?
- 18:55 < jjohansen> what is the error message
- 18:56 < Laanders> don't believe I'm getting one
- 18:57 < Laanders> actually, now I'm getting
- 18:57 < Laanders> Error mounting eCryptfs: [-2] No such file or directory
- 18:57 < Laanders> on trying a manual mount
- 18:59 -!- kirkland [~kirkland@74.126.19.140.static.a2webhosting.com] has left #ecryptfs [Ex-Chat]
- 18:59 -!- kirkland [~kirkland@74.126.19.140.static.a2webhosting.com] has joined #ecryptfs
- 19:00 < jjohansen> what does your manual mount command look like
- 19:01 < Laanders> sudo mount -t ecryptfs /home/anlag/.Private /home/anlag/Private
- 19:01 < Laanders> having previously done: sudo ecryptfs-add-passphrase --fnek
- 19:04 < jjohansen> hrmm, and ecryptfs exists in /proc/filesystems, and both /home/analag/.Private and /home/analag/Private exist
- 19:05 < jjohansen> is there a message in dmesg?
- 19:05 < Laanders> yes to the first three questions, I created ~/Private
- 19:05 < Laanders> dmesg... how do I check that again?
- 19:06 < jjohansen> dmesg
- 19:08 < Laanders> ah
- 19:08 < Laanders> [ 3997.244395] Could not find key with description: [978c3a85e7ab7a73]
- 19:08 < Laanders> [ 3997.244405] process_request_key_err: No key
- 19:08 < Laanders> [ 3997.244411] Could not find valid key in user session keyring for sig specified in mount option: [978c3a85e7ab7a73]
- 19:08 < Laanders> [ 3997.244418] One or more global auth toks could not properly register; rc = [-2]
- 19:08 < Laanders> [ 3997.244426] Error parsing options; rc = [-2]
- 19:14 < tyhicks> Laanders: when doing your manual mount, did you accept the default fnek key or did you specify the correct key?
- 19:15 < Laanders> I gave the one I got on the second line of the final output from the add-passphrase command
- 19:15 < Laanders> so not the default
- 19:15 < tyhicks> Laanders: So is 978c3... your fnek or fek key?
- 19:17 < Laanders> I'm not sure what those terms mean exactly, but that's what I got on the second of two lines output from 'sudo ecryptfs-add-passphrase --fnek'
- 19:17 < Laanders> Inserted auth tok with sig [978c3a85e7ab7a73] into the user session keyring
- 19:18 < Laanders> that was preceded by a similar line, with another key
- 19:18 < tyhicks> hmm... so why can't the kernel request it...
- 19:19 < Laanders> the first time I tried to mount, the mounting itself worked, but the ~/Private directory was still empty
- 19:19 < Laanders> or, it had some directories but not the anticipated contents
- 19:20 < Laanders> what if I redo the add-passphrase thing and try again?
- 19:22 < tyhicks> Laanders: does `keyctl list @u` show both of the keys?
- 19:23 < Laanders> indeed it does
- 19:28 < tyhicks> Laanders: oh... just realized what is going on
- 19:29 < Laanders> that sounds promising
- 19:29 < tyhicks> Laanders: you're adding the keys to the user's keyring and then using `sudo mount ...`, which is this going to search the root user's keyring
- 19:29 < tyhicks> Laanders: that's why it can't find the keys
- 19:29 < Laanders> aah, so interactive sudo from the start might be more successful?
- 19:29 < tyhicks> Laanders: yeah, that would let you do the mount
- 19:30 < tyhicks> Laanders: What is your end goal here? To do manual mounts from here on out or get automount working at login?
- 19:31 < Laanders> either get automount working at login, or move away from home dir encryption, I don't strictly need it
- 19:32 < Laanders> if I can do the former without too much hassle that would be the preferred choice...
- 19:32 < tyhicks> Laanders: what files are in .ecryptfs/ ?
- 19:32 < Laanders> my entire home directory, about 130 gb of stuff
- 19:32 < tyhicks> Laanders: that shouldn't be in .ecryptfs/
- 19:33 < Laanders> my bad... ~/.ecryptfs links to /home/.ecryptfs/anlag/.ecryptfs/
- 19:33 < Laanders> which contains:
- 19:33 < Laanders> auto-mount auto-umount Private.mnt Private.sig wrapped-passphrase
- 19:34 < tyhicks> ok, that looks right
- 19:34 < tyhicks> Laanders: have you changed anlag's password lately?
- 19:34 < Laanders> no
- 19:35 < tyhicks> Laanders: have any ideas as to what event may have caused automount to stop working?
- 19:35 < tyhicks> (moving files around, system update, etc.)
- 19:36 < Laanders> no, nothing specific. but it's probably worth mentioning that it's occcasionally happened in the past as well, perhaps once every 20-30 boots, that when I logged into my system I'd get the default appearance, some error messages, and the home dir contents unavailable
- 19:36 < Laanders> I'd just log out and log back in again and it would work
- 19:36 < Laanders> as of last night though, I've tried 7-10 times with no success
- 19:37 < kirkland> does 'ecryptfs-mount-private' work?
- 19:37 < Laanders> haven't done anything now that I can think of as would be particularly significant
- 19:37 -!- feldmaus_ [~markus@dslb-092-076-252-208.pools.arcor-ip.net] has quit [Quit: Lost terminal]
- 19:37 < Laanders> I execute it and it doesn't give an error, but doesn't seem to do anything either
- 19:38 < Laanders> ah, that should be run with root I suppose...
- 19:39 < tyhicks> Laanders: no, it is setuid root
- 19:40 < tyhicks> Laanders: You should be fine running it as your normal user
- 19:40 < Laanders> right. it doesn't seem to do anything... nothing in dmseg either
- 19:41 < tyhicks> well, mount.ecryptfs_private is setuid root
- 19:41 < tyhicks> kirkland: He should be able to run ecryptfs-mount-private as an unprived user, right?
- 19:41 < kirkland> tyhicks: he absolutely *should* run unprivileged
- 19:42 < kirkland> Laanders: run:
- 19:42 < kirkland> Laanders: sh -x /usr/bin/ecryptfs-mount-private
- 19:42 < kirkland> Laanders: and pastebin the result
- 19:43 < Laanders> http://pastebin.com/UrS6sgUS
- 19:43 < kirkland> Laanders: mount | grep ecryptfs
- 19:43 < kirkland> Laanders: and pastebin the output
- 19:44 < Laanders> http://pastebin.com/N3L7yLVp
- 20:15 < kirkland> Laanders: sure looks like you're mounted
- 20:15 < tyhicks> Laanders: Why do you think the mount isn't working?
- 20:16 < Laanders> I really don't have any theories, went from working yesterday at the office, took the laptop home and started it there, and it didn't
- 20:19 < tyhicks> Laanders: Sorry, I don't mean what are your theories on what broke the automount functionality. I mean why do you think it is broken?
- 20:19 < tyhicks> Laanders: It looks to be working from your pastebins
- 20:21 < Laanders> well there's nothing in my ~/Private folder, du -sh says it's 4K big. if it were working I'd expect to see my entire "normal" home directory's contents in there
- 20:23 < Laanders> okay... this is perhaps odd.
- 20:25 < Laanders> after adding the keys and mounting as root to another directory, I see some of the directories, with files in them. for instance my dropbox folder. however other folders that are default in ubuntu such as pictures or documents, are empty
- 20:25 < Laanders> it's as if the empth, unencrypted home directory subfolders are showing on top of my "real", encrypted, ones
- 20:25 < Laanders> *empty
- 20:26 < tyhicks> Laanders: `cd $HOME` and try again
- 20:27 < Laanders> hm, okay my $HOME is now showing some directories twice
- 20:28 < Laanders> guess that means I'm mounted at least
- 21:23 < kirkland> Laanders: tyhicks: according to: /home/anlag/.Private on /home/anlag type ecryptfs (ecryptfs_check_dev_ruid,ecryptfs_cipher=aes,ecryptfs_key_bytes=16,ecryptfs_unlink_sigs,ecryptfs_sig=cf242001905e2af7,ecryptfs_fnek_sig=978c3a85e7ab7a73)
- 21:23 < kirkland> you're mounted on top of $HOME
- 21:23 < kirkland> not $HOME/Private
- 21:27 < Laanders> that would explain why I'm getting double directories on top of one another I suppose
- 21:29 -!- feldmaus [~markus@dslb-092-076-252-208.pools.arcor-ip.net] has joined #ecryptfs
- 21:41 < Laanders> or perhaps not... I tried booting from a live usb stick, and mounted it from there to a newly created /home/anlag... it works, but I've still got double entries for Documents, Pictures, Templates etc. no idea how that's even possible...
- 21:42 < Laanders> but it seems those double directories exist already inside of the encrypted directory, and not as I thought earlier that one set is the encrypted and the other the default unencrypted dirs
- 21:45 < Laanders> either way, those empty copies of certain directories are very much in the way of accessing my files
- 21:57 -!- Netsplit resistance.oftc.net <-> charm.oftc.net quits: jjohansen, gcwilson, thieule, tyhicks
- 21:58 -!- Netsplit over, joins: jjohansen, gcwilson, tyhicks, thieule
- 22:00 -!- tyhicks` [~tyhicks@ip98-186-177-164.ks.ks.cox.net] has joined #ecryptfs
- 22:00 -!- tyhicks [~tyhicks@ip98-186-177-164.ks.ks.cox.net] has quit [Ping timeout: 481 seconds]
- 22:01 -!- tyhicks` is now known as tyhicks
- 22:02 -!- pa4wdh [~pa4wdh@lt51327-lnx.ipv6.pa4wdh.nl.eu.org] has quit [Quit: Leaving]
- 22:03 -!- feldmaus [~markus@dslb-092-076-252-208.pools.arcor-ip.net] has quit [Quit: Lost terminal]
- 22:07 -!- Netsplit resistance.oftc.net <-> charm.oftc.net quits: jjohansen, thieule, gcwilson
- 22:12 -!- Netsplit over, joins: jjohansen
- 22:13 -!- gcwilson [~gcwilson@cpe-70-112-30-210.austin.res.rr.com] has joined #ecryptfs
- 22:13 -!- thieule [~thieule@216-239-45-4.google.com] has joined #ecryptfs
- 22:14 -!- feldmaus_ [~markus@dslb-092-076-252-208.pools.arcor-ip.net] has joined #ecryptfs
- --- Day changed Fri Sep 30 2011
- 00:07 -!- feldmaus_ [~markus@dslb-092-076-252-208.pools.arcor-ip.net] has quit [Quit: Lost terminal]
- 00:55 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has quit [Quit: Leaving.]
- 01:05 -!- jjohansen [~jj@75-94-21-57.war.clearwire-wmx.net] has joined #ecryptfs
- 01:11 -!- ccolorado [~ccolorado@187.138.74.107] has quit [Remote host closed the connection]
- 01:11 < Laanders> right so I've tried also the ecryptfs-recover-private utility now and it equally well mounts the directory, but I've still got the double directories and simply can't access most of my data. not finding any indication of such case anywhere either, quite frustrating
- 01:12 < Laanders> df shows 127G used on the partition in question, but du -sh in the directory shows only 55G, presumably because it also doesn't read inside of the duplicate named directories
- 01:33 < tyhicks> Laanders: Do you have unencrypted file names mixed in with encrypted file names?
- 01:34 < tyhicks> Laanders: look through /home/.ecryptfs/anlag/.Private
- 01:34 < tyhicks> Laanders: pick a duplicated dir name (we'll call it foo), and do `find /home/.ecryptfs/anlag/.Private | grep foo`
- 01:38 < Laanders> hm, the find/grep on the .ecryptfs dir shows only one Documents, for example
- 01:39 < Laanders> however looking in that folder, .ecryptfs/anlag/.Private I actually see both encrypted and non-encrypted directories
- 01:39 < tyhicks> Laanders: Right - that's the problem
- 01:39 < Laanders> most of then encrypted names, but a few directories, corresponding to the ones I see duplicated, are there in clear text too
- 01:39 < Laanders> can I safely delete the non-encrypted ones?
- 01:40 < tyhicks> Laanders: Tough for me to say
- 01:40 < tyhicks> Laanders: you need to look them over
- 01:40 -!- jjohansen [~jj@75-94-21-57.war.clearwire-wmx.net] has quit [Ping timeout: 480 seconds]
- 01:40 < tyhicks> Laanders: are they empty?
- 01:40 < Laanders> they are indeed quite empty
- 01:41 < Laanders> well nearly, the Videos one contains a single small encrypted file for some reason
- 01:41 < Laanders> I saw that file when I had mounted before, actually. it's not important
- 01:42 < tyhicks> Laanders: If it was my data, I wouldn't delete them while the eCryptfs directory was mounted and I'd save off any of the directories that weren't empty
- 01:43 < Laanders> I can as well copy them to a usb stick or some such, they take nearly no space
- 01:44 < Laanders> but I'll unmount first
- 01:45 < Laanders> there are some hidden directories there too, .compiz, .config etc. looks like a bunch of default directories got tossed into the ecryptfs directory on top of what was there before.
- 01:46 < tyhicks> Laanders: Yes - sorry about that - really not sure what happened there :/
- 01:46 < tyhicks> Laanders: any plaintext directory names could potentially collide with an encrypted name, so you probably want to get rid of them all
- 01:47 < Laanders> yeah, I'll move them all out of there to be on the safe side
- 01:47 < Laanders> and so long as I can retrieve my data I'm all good... obviously this sort of thing always happens when your backup solution is somehwat out of order...
- 02:24 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has joined #ecryptfs
- 02:46 < Laanders> alright, sweet, now I can access my data! that's the main thing. it seems permissions and ownerships are a bit messed up when I move them elsewhere, but I can always fix that later...
- 03:07 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has quit [Ping timeout: 480 seconds]
- 03:12 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has joined #ecryptfs
- 03:21 < Laanders> actually doing it from inside my system rather than from the livecd took care of that, now ownerships look fine too as I'm moving stuff off the drive. that just leaves some legwork to sort out the directory from scratch and move the contents back on it again.
- 03:21 < Laanders> thanks a lot to everyone who helped, much appreciated!
- 03:29 -!- gcwilson [~gcwilson@cpe-70-112-30-210.austin.res.rr.com] has quit [Quit: Leaving.]
- 04:33 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has quit [Ping timeout: 480 seconds]
- 04:43 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has joined #ecryptfs
- 04:58 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has quit [Remote host closed the connection]
- 05:39 < tyhicks> Laanders: great to hear - sorry we were all a little busy earlier
- 05:39 < tyhicks> Laanders: glad that you got it all straightened out
- 05:45 < tyhicks> Laanders: Is there any chance that you manually mounted your encrypted home dir without a filename encryption key and then logged in?
- 05:46 < tyhicks> Laanders: I'm trying to get a handle on what the actual cause of this was (bug vs. misconfiguration)
- 05:57 -!- jjohansen [~jj@static-50-53-42-114.bvtn.or.frontiernet.net] has joined #ecryptfs
- 06:21 < Laanders> tyhicks: I can't see it really, I didn't even know how to mount ecryptfs manually until I ran into this issues
- 06:24 < Laanders> possibly if ubuntu did that on its own. the fact that I kept running into it occasionally before, that it wouldn't mount on login, but worked again when I logged out and logged back in again, indicates there was something iffy somewhere in my setup. I'd never touched it manually before, at least not intentionally...
- 06:25 < Laanders> my ecryptfs installation comes from the default ubuntu installation for either 10.10 or 11.04 which I did a clean install on a few months ago. I then reinstalled after that without changing anything with the home directory, just keeping the original encryption setup
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement