Bug 305061

Summary: sshd ignoring nfs mounted home directories
Product: [Fedora] Fedora Reporter: Andrew Cagney <cagney>
Component: opensshAssignee: Tomas Mraz <tmraz>
Status: CLOSED CANTFIX QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: low    
Version: 8CC: triage
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: bzcl34nup
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-04-04 10:12:08 EDT Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Andrew Cagney 2007-09-25 09:32:51 EDT 
The symptoms are:

-> upgraded sshd doesn't recognize my authorized keys in my ~/.ssh (but the same
keys / nfs directory works for non rawhide machines)

-> in wrong directory ; yet bash has read my .bashrc and cd puts me back where I
belong vis:

Could not chdir to home directory /home/.../cagney: Permission denied
$ cd
$ pwd
/home/.../cagney
Comment 1 Tomas Mraz 2007-09-25 09:57:56 EDT 
Is SELinux enforcing?

If you put it to permissive, does it work?

What about 'setsebool use_nfs_homedirs 1' does it help?
Comment 2 Andrew Cagney 2007-09-25 10:40:20 EDT 
good call:

$ selinuxenabled
$ echo $?
0
$ man selinuxenabled
$ getenforce
Enforcing

--

$ sudo setenforce 0
cagney@toidi$ getenforce
Permissive

ssh does work

--

$ sudo setenforce 1
$ sudo setsebool use_nfs_homedirs 1
Could not change active booleans: Invalid boolean
[grub grub]
$ sudo setsebool use_nfs_home_dirs 1

ssh does not work

where do I look for logging information?
Comment 3 Tomas Mraz 2007-09-25 11:13:42 EDT 
/var/log/audit/audit.log (easiest with ausearch -m AVC -ts today)
Comment 4 Bug Zapper 2008-04-04 09:54:40 EDT 
Based on the date this bug was created, it appears to have been reported
during the development of Fedora 8. In order to refocus our efforts as
a project we are changing the version of this bug to '8'.

If this bug still exists in rawhide, please change the version back to
rawhide.
(If you're unable to change the bug's version, add a comment to the bug
and someone will change it for you.)

Thanks for your help and we apologize for the interruption.

The process we're following is outlined here:
http://fedoraproject.org/wiki/BugZappers/F9CleanUp

We will be following the process here:
http://fedoraproject.org/wiki/BugZappers/HouseKeeping to ensure this
doesn't happen again.
Comment 5 Tomas Mraz 2008-04-04 10:12:08 EDT 
Not enough information to fix this problem. Perhaps already fixed now, if not
please reopen along with the AVCs reported.