Red Hat Bugzilla – Bug 844409
pam_loginuid denies access inside LXC container
Last modified: 2015-08-04 09:16:43 EDT
Description of problem:
Access is denied to LXC container (maybe chroot exhibits similar symptoms) with "cannot make/remove an entry for the specified session".
pam_loginuid already has code to detect custom kernels with no audit compiled in: maybe a custom check could detect containers/chroots?
Version-Release number of selected component (if applicable):
Set up a (albeit Technology Preview) libvirt-based LXC container (of "/sbin/init" type) and try to log in (locally or through SSH).
Steps to Reproduce:
"cannot make/remove an entry for the specified session" and access denied on login.
Login works with no errors.
Commenting out pam_loginuid in PAM configuration is a known workaround.
This request was not resolved in time for the current release.
Red Hat invites you to ask your support representative to
propose this request, if still desired, for consideration in
the next release of Red Hat Enterprise Linux.
Fixed in RHEL-7