#39 mount failed with run_sync status 32 (again)

pam-mount
closed-duplicate
pam-mount (40)
5
2010-09-29
2010-07-08
raglan_road
No

Hello,

Since version 2.4 (with a clean config) worked on my laptop, I thought the same solution would also fix my desktop (pam_mount has been dysfunctional on it for a long time as well). No such luck. I get the following message:

pam_mount(rdconf1.c:1334): Volume /dev/sdb10: consider specifying the fskeyhash
pam_mount(pam_mount.c:364): pam_mount 2.4: entering auth stage
pam_mount(rdconf1.c:1334): Volume /dev/sdb10: consider specifying the fskeyhash
pam_mount(pam_mount.c:553): pam_mount 2.4: entering session stage
pam_mount(misc.c:38): Session open: (e/ruid=1000/0, e/rgid=1000/1000)
pam_mount(mount.c:196): Mount info: globalconf, user=i <volume fstype="crypt" server="(null)" path="/dev/sdb10" mountpoint="/crypto/books" cipher="(null)" fskeypath="/etc/crypt.keys/music.key.i" fskeycipher="bf-cbc" fskeyhash="md5" options="cipher=blowfish-cbc-essiv:sha256,hash=sha512,keysize=448" /> fstab=0
command: 'mount.crypt' '-ofsk_cipher=bf-cbc' '-ofsk_hash=md5' '-okeyfile=/etc/crypt.keys/music.key.i' '-ocipher=blowfish-cbc-essiv:sha256,hash=sha512,keysize=448' '/dev/sdb10' '/crypto/books'
pam_mount(misc.c:38): set_myuid<pre>: (e/ruid=1000/0, e/rgid=1000/1000)
pam_mount(misc.c:38): set_myuid<post>: (e/ruid=0/0, e/rgid=1000/1000)
pam_mount(mount.c:64): Errors from underlying mount program:
pam_mount(mount.c:68): mount: you must specify the filesystem type
pam_mount(mount.c:68): mount failed with run_sync status 32

The relevant block in my pam_mount.conf.xml is

<volume user="i"
path="/dev/sdb10"
mountpoint="/crypto/books"
fstype="crypt"
options="cipher=blowfish-cbc-essiv:sha256,hash=sha512,keysize=448"
fskeypath="/etc/crypt.keys/music.key.i"
fskeycipher="bf-cbc" />

What gives?

Discussion

  • Jan Engelhardt
    Jan Engelhardt
    2010-07-08

    Got a manual command sequence without mount.crypt (openssl, mount, etc.) that does get it mounted?

     
  • raglan_road
    raglan_road
    2010-07-09

    Sure, the following command does it:

    openssl bf-cbc -d -in books.key.i | cryptsetup -c blowfish-cbc-essiv:sha256 -h sha512 -s 448 -b `blockdev --getsize /dev/sdb10` create books /dev/sdb10

    mount /dev/mapper/books /crypto/books

     
  • Jan Engelhardt
    Jan Engelhardt
    2010-07-09

    • status: open --> open-duplicate
     
  • Jan Engelhardt
    Jan Engelhardt
    2010-07-09

    There could be an unwanted newline in openssl's output.

     
  • Jan Engelhardt
    Jan Engelhardt
    2010-08-01

    • status: open-duplicate --> pending-duplicate
     
  • This Tracker item was closed automatically by the system. It was
    previously set to a Pending status, and the original submitter
    did not respond within 14 days (the time period specified by
    the administrator of this Tracker).

     
    • status: pending-duplicate --> closed-duplicate