You are not logged in.

Pages: 1

#1 2022-08-03 13:15:15

carbolymer
Member
Registered: 2012-04-25
Posts: 42

gnome keyring not unlocked at login

So I'm using GDM + XFCE. So, GDM should start Gnome keyring:

$ grep keyring /etc/pam.d/*
gdm-autologin:auth       optional                    pam_gnome_keyring.so
gdm-autologin:session    optional                    pam_gnome_keyring.so auto_start
gdm-fingerprint:auth       optional                    pam_gnome_keyring.so
gdm-fingerprint:session    optional                    pam_gnome_keyring.so auto_start
gdm-password:auth       optional                    pam_gnome_keyring.so
gdm-password:password   optional                    pam_gnome_keyring.so use_authtok
gdm-password:session    optional                    pam_gnome_keyring.so auto_start
gdm-smartcard:auth       optional                    pam_gnome_keyring.so
gdm-smartcard:session    optional                    pam_gnome_keyring.so auto_start
xfce4-screensaver:auth optional pam_gnome_keyring.so

In either case, when using fingerprint login or password the keyring isn't enabled.
My keyrings:

$ ls ~/.local/share/keyrings
default  login.keyring  user.keystore

The default file points to login.keyring (with the name "Login" shown in seahorse). The default keyring "Login" is encrypted with the user password.

$ journalctl -b -g keyring
Aug 03 14:52:32 archlinux kernel: Initialise system trusted keyrings
Aug 03 14:52:32 archlinux kernel: integrity: Platform Keyring initialized
Aug 03 14:52:32 archlinux kernel: integrity: Machine keyring initialized
Aug 03 14:52:49 gravitino systemd[1560]: Listening on GNOME Keyring daemon.
Aug 03 14:52:55 gravitino systemd[2124]: Listening on GNOME Keyring daemon.
Aug 03 14:52:55 gravitino systemd[2124]: Started GNOME Keyring daemon.
Aug 03 14:52:55 gravitino gnome-keyring-daemon[2139]: GNOME_KEYRING_CONTROL=/run/user/1000/keyring
Aug 03 14:52:55 gravitino gdm-password][2107]: gkr-pam: couldn't unlock the login keyring.
Aug 03 14:52:55 gravitino audit[2107]: USER_START pid=2107 uid=0 auid=1000 ses=3 msg='op=PAM:session_open grantors=pam_loginuid,pam_keyinit,pam_systemd_home,pam_limits,pam_unix,pam_permit,pam_mail,pam_systemd,pam_env,pam_gnome_keyring acct="carbolymer" exe="/usr/lib/gdm-session-worker" hostname=gravitino addr=? terminal=/dev/tty2 res=success'
Aug 03 14:53:00 gravitino /usr/lib/gdm-x-session[2535]: GNOME_KEYRING_CONTROL=/run/user/1000/keyring
Aug 03 14:53:00 gravitino /usr/lib/gdm-x-session[2536]: GNOME_KEYRING_CONTROL=/run/user/1000/keyring
Aug 03 14:53:19 gravitino systemd[1560]: Closed GNOME Keyring daemon.

In XFCE startup I have "Secret Storage Service (GNOME: Keyring: Secret Service)" and "Certificate and Key Storage (GNOME Keyring PKCS#11 Component)" enabled.  The first one should start

/usr/bin/gnome-keyring-daemon --start --components=secrets

which should connect keyring daemon to dbus as described here: https://wiki.archlinux.org/title/GNOME/ … XFCE,_...)

I tried searching forums and but nothing really helped here.

Last edited by carbolymer (2022-08-03 13:27:21)

Offline

Pages: 1

Board footer

Powered by FluxBB