From owner-freebsd-gnome@FreeBSD.ORG  Tue Oct 14 01:49:14 2003
Return-Path: <owner-freebsd-gnome@FreeBSD.ORG>
Delivered-To: freebsd-gnome@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id D132116A4B3; Tue, 14 Oct 2003 01:49:14 -0700 (PDT)
Received: from atlas.informatik.rwth-aachen.de
	(atlas.Informatik.RWTH-Aachen.DE [137.226.194.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 0F18B43FDD; Tue, 14 Oct 2003 01:49:11 -0700 (PDT)
	(envelope-from stolz@i2.informatik.rwth-aachen.de)
Received: from menelaos.informatik.rwth-aachen.de
	(menelaos.Informatik.RWTH-Aachen.DE [137.226.194.73])
	8.11.1-0.5-michaelw-20030918) with ESMTP id h9E8n9e14023;
	Tue, 14 Oct 2003 10:49:09 +0200
Received: (from stolz@localhost)h9E8n9Gt017794;
	Tue, 14 Oct 2003 10:49:09 +0200 (CEST)	(envelope-from stolz)
Date: Tue, 14 Oct 2003 10:49:09 +0200
From: Volker Stolz <stolz@i2.informatik.rwth-aachen.de>
To: Joe Kelsey <joek@mail.flyingcroc.net>
Message-ID: <20031014084909.GB17718@i2.informatik.rwth-aachen.de>
References: <3F8ABD15.2070601@mail.flyingcroc.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <3F8ABD15.2070601@mail.flyingcroc.net>
X-PGP-Key: finger vs@foldr.org
X-PGP-Id: 0x3FD1B6B5
User-Agent: Mutt/1.5.4i
cc: gnome@freebsd.org
cc: stable@freebsd.org
Subject: Re: Using pam_ssh with gdm
X-BeenThere: freebsd-gnome@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: GNOME for FreeBSD -- porting and maintaining
	<freebsd-gnome.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-gnome>
List-Post: <mailto:freebsd-gnome@freebsd.org>
List-Help: <mailto:freebsd-gnome-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Oct 2003 08:49:15 -0000

Am 13. Oct 2003 um 16:56 CEST schrieb Joe Kelsey:
> first try, logging the following to syslog:
> Oct 13 07:24:30 zircon gdm[186]: Couldn't open session for joek
> 
> Then, gdm resets and I reenter the password and passphrase.  The second 
> time, I get in.  Apparantly, now ssh-agent has started, but pam_ssh did 
> not pass along any authentication information, so I have to call ssh-add 
> by hand to actually enter the key information.  This means that every 
> time I log in, I have to type my password twice and my passphrase three 
> times.

The first thing you're probably experiencing is this:
http://www.freebsd.org/cgi/query-pr.cgi?pr=bin/45669

Description
The pam_ssh module uses popen() to start an ssh-agent for the user during PAM
authentication. However, pclose() causes the pam-module to return an error if
somebody else already called waitpid(-1,...) because now pclose returns -1
and errno is set to ECHILD (observed with gdm who uses a whole bunch of processes).
-- 
http://www-i2.informatik.rwth-aachen.de/stolz/ *** PGP *** S/MIME
rage against the finite state machine