XFCE (and other non-GNOME) desktops do not initialise gnome-keyring correctly / WARNING: gnome-keyring:: couldn't connect to PKCS11
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
| GNOME Keyring |
Fix Released
|
Medium
|
||
| xfce4-session |
Unknown
|
Unknown
|
||
| gnome-keyring (Debian) |
Confirmed
|
Unknown
|
||
| gnome-keyring (Fedora) |
Fix Released
|
Undecided
|
||
| gnome-keyring (Ubuntu) |
Medium
|
Unassigned | ||
| gnome-keyring (openSUSE) |
Fix Released
|
Medium
|
||
| kde-workspace (Ubuntu) |
Medium
|
Unassigned | ||
| xfce4-session (Ubuntu) |
Medium
|
Unassigned |
Bug Description
precise + fluxbox (without gnome-settings-
Failed to send a message
WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
In gnome-system-
/usr/bin/
/usr/bin/
with manual start this: OK
/usr/bin/
Is it possible to add a string key '--components=
/usr/bin/
thanks in advance...
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: gnome-keyring 3.2.2-2ubuntu1
ProcVersionSign
Uname: Linux 3.2.0-15-generic x86_64
ApportVersion: 1.91-0ubuntu1
Architecture: amd64
Date: Tue Feb 14 17:47:35 2012
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release amd64 (20100429)
ProcEnviron:
PATH=(custom, no user)
LANG=ru_UA.UTF-8
SHELL=/bin/bash
SourcePackage: gnome-keyring
UpgradeStatus: Upgraded to precise on 2012-02-10 (3 days ago)
mtime.conffile.
mtime.conffile.
mtime.conffile.
mtime.conffile.
|
#13 |
Adding information posted to opensuse-xfce list on this topic:
Initial post:
Hi,
Just switched to Xfce recently and have run across a couple of things that appear to be start up service related when compared to GNOME.
First, when building a package locally using osc, I end up with an "401 Authentication" error. Pocking around a bit this appears to be gnome-keyring related. However, I have gnome-keyring-
Second, also authentication related, I now need to enter my passphrase when using key-authenticated ssh login. I suppose GNOME by default starts an ssh agent thus that the passphrase only gets entered once? How do I accomplish this with Xfce. The "autostratup" has an entry for "SSH Key Agent". What am I missing?
Follow up post:
When I turn on "Launch GNOME services on startup" in the "Advanced" tab of the "Session and Startup" settings I can get the behavior back I am used to in GNOME, i.e. when I ssh to a machine for the first time I get a dialog box that lets me type in my passphrase. Once I do this the key is "unlocked" and I can log into any machine without needing to enter my passphrase again.
However, enabeling this also means that I am running more stuff than I probably want.
I compared the list of processes running with the GNOME services launced and without and compared them. However, nothing sticks out as providing this nice "unlock the key" feature. Thus I am not certain how to enable just that service to allow me to disable the "Launch GNOME services on startup" setting again.
Guido's response:
you shouldn't use that setting, g-k-d is started through the PAM
module so that no additional password needs to be entered to
unlock it. It also needs to be initialized from the session and I
suspect something isn't working right there (either the xdg
autostart or session startup script) but I haven't had the time
to investigate it yet. Feel free to open a bug to track this,
it'll be needed anyway for a SRU.
Karl's response:
Traditionally, I have in my .xinitrc:
eval `ssh-agent -s`
ssh-add ~/.ssh/identity ~/.ssh/id_rsa &
which is ugly, and probably no longer needed, but "works".
|
#14 |
The current situation is a bit complicated, having gnome-keyring automatically unlocked on login involves a startup process in two steps, first it must be started and unlocked via the PAM module on login and after that the desired components (e.g. gpg-/shh-agent functionality) need to be initialized again and certain environment variables need to be set for the session. Details are at http://
The main problem with the current Xfce desktop is that these environment variables are not properly set if GNOME-compatibility mode is disabled.
Because the components of gnome-keyring are initialized from desktop files in /etc/xdg/autostart the environment variables printed to stdout are simply lost. When using GNOME, gnome-keyring passes the environment variables via DBus to gnome-session, Xfce however doesn't implement that DBus interface and the only way to get these environment variables is enabling the GNOME-compatibility mode in xfce4-session which will run gnome-keyring --start again, capture its output and set the environment variables accordingly. This has two unwanted side-effects, gnome-keyring --start seems to enable all of gnome-keyring's components making it impossible to selectively disable components by modifying the corresponding autostart files and of course xfce4-session's GNOME-compatibility mode will also start everything in /etc/xdg/autostart which is marked OnlyShowIn=GNOME.
A separate but related problem affects the usage of plain GPG/SSH-agents without gnome-keyring. gpg-agent which can also provides ssh-agent functionality is started twice by default, first in /etc/X11/
|
#15 |
OK, trying to find a different way to make this work.
So if I would start gnome-keyring-
GNOME_KEYRING_
GNOME_KEYRING_PID
in the environment is this sufficient to get things moving or is the login shell too late?
In http://
Thoughts?
|
#16 |
(In reply to comment #3)
> OK, trying to find a different way to make this work.
>
> So if I would start gnome-keyring-
> C-shell and derivatives, and set
>
> GNOME_KEYRING_
> GNOME_KEYRING_PID
>
> in the environment is this sufficient to get things moving or is the login
> shell too late?
Yes, that's too late, it will only affect the current shell. This would have to go into the session wrapper, but rather than such a hack the real solution would be to move the gnome-keyring support out of the GNOME compatibility mode of xfce4-session and make it a separate option. That's something I need to bring up with upstream but haven't gotten round to yet.
Unfortunately even that would not provide the ability to selectively enable/disable gnome-keyring components through autostart files because xfce4-session does not support early autostart files and modification of the session environment through DBus.
|
#17 |
Well, one would think there must be some kind of work-around that lets me run gnome-keyring such that it is actually useful.
The background here is that it really bothers me to have my password in plain text format stored in .oscrc and apparently the keyring is the solution to this.
So I tried:
eval `/usr/bin/
in my .xinitrc file. But the result was not pleasant. By the time the desktop was up and operational I had 3 gnome-keyring-
The second undesirable side effect was that the nm_applet was running but it was not showing up in the panel and I was unable to connect to a network.
The environment didn't appear to be completely setup either, the GPG and KEYRING environment variables were set but the SSH environment was not set.
I'd like to find some way, however hacky it may be to get the keyring stuff running. This at least would keep me going until a better solution is available from Xfce upstream.
Of course if there is yet another way to beat the osc authorization trap without running the keyring I am open to use that as well.
|
#18 |
OK, have "working" but would like some input/review of my work-around.
Starting the keyring daemon in .xinitrc somehow causes trouble for the nm_applet, as mentioned in the previous comment. Thus I decided to try the login shell, i.e. .login file for tcsh (which I run).
In .login I know have the following:
set gkeyd=/
set gkeydArgs="--start"
set gkeydInfo=
set countFile=
if ( -r $gkeydInfo ) source $gkeydInfo
if ( $?GNOME_KEYRING_PID ) then
set this=`ps -elf | grep ${GNOME_
# start the daemon if it is not running
if (( $? != 0 ) && ( -x "gkeyd" )) then
$gkeyd $gkeydArgs | awk -F = '{print "setenv " $1 " " $2}' > $gkeydInfo
echo "1" > $countFile
source $gkeyInfo
else
set count=`cat ${countFile}`
echo "$count + 1" | bc > $countFile
endif
else
$gkeyd $gkeydArgs | awk -F = '{print "setenv " $1 " " $2}' > $gkeydInfo
echo "setenv GNOME_KEYRING_
echo "setenv GNOME_KEYRING_INFO ${gkeydInfo}" >> $gkeydInfo
echo "1" > $countFile
source $gkeydInfo
endif
After I restart everything is working, ssh-agent, which I start separately in .xinitrc as follows:
eval `/usr/bin/ssh-agent -s`
SSH_ASKPASS=
if test -S "$SSH_AUTH_SOCK" -a -x "$SSH_ASKPASS"; then
ssh-add < /dev/null
fi
And the keyring is running. Better yet running an osc command it actually appears to use the keyring and I no longer get stupid "auth" errors.
Now the problem. Although everything is running there was no ~/.gnome2/
Other comments/thoughts on this solution?
I will test this for a while and if things work I'll write a blog on Lizards.
|
#19 |
Argh, and one more thing. Is there any reason I should kill the keyring daemon on logout?
|
#20 |
I would suggest the following workaround for now:
1. Open the Session settings:
Settings -> Preferences -> Settings Manager -> Session and Startup
2. Enable GNOME compatibility mode:
Go to Advanced, check "Launch GNOME services on startup"
3. Disable unwanted GNOME-only autostart files:
Execute the following one-liner on the shell:
for gnome_autostart in $(awk '/^OnlyShowIn=/ && /GNOME;/ && !/XFCE;/ { print FILENAME }' /etc/xdg/
I'll talk to upstream later and see if we can move gnome-keyring support out of GNOME compatibility mode.
|
#21 |
There's a typo, the one liner should read:
for gnome_autostart in $(awk '/^OnlyShowIn=/ && /GNOME;/ && !/XFCE;/ { print
FILENAME }' /etc/xdg/
>${HOME}
|
#22 |
Thanks.
Still having issues with osc, but these appear to be osc problems now as the environment is certainly set.
ssh key management now works the same as it did when I was using GNOME.
|
#23 |
After discussing this with upstream (see http://
|
#24 |
I've just added a patch to the upstream bug which implements a part of the discussed GNOME compatibility modernization and also addresses this bug.
Basically it removes obsolete parts of GNOME compatibility mode such as GNOME SMProxy compatibility and GConf shutdown. Furthermore it implements the discussed changes in how autostart files are treated, GNOME- or KDE-only files are now treated the same way as inactive files, they will not be unconditionally started in GNOME-/
This way GNOME compat mode can be safely enabled to start gnome-keyring while potentially unwanted and harmful services such as gnome-settings-
xfce4-session packages which contain a backport of this patch are available for testing from home:gberh:
|
#25 |
This is an autogenerated message for OBS integration:
This bug (710038) was mentioned in
https:/
Pavlo Bohmat (bohm) wrote : | #1 |
Launchpad Janitor (janitor) wrote : | #2 |
Status changed to 'Confirmed' because the bug affects multiple users.
Changed in gnome-keyring (Ubuntu): | |
status: | New → Confirmed |
Ubuntu QA Website (ubuntuqa) wrote : | #3 |
This bug has been reported on the Ubuntu ISO testing tracker.
A list of all reports related to this bug can be found here:
http://
tags: | added: iso-testing |
Ulf Rehmann (rehmann) wrote : | #4 |
For me, the problem does occur for movemail in emacs since an upgrade to precise last night:
movemail: gnome-keyring:: couldn't connect to: /tmp/keyring-
System: Ubuntu 12.04
Packages: dpkg -l | grep gnome-keyring
ii gnome-keyring 3.2.2-2ubuntu2 GNOME keyring services (daemon and tools)
ii libgnome-
ii libgnome-keyring0 3.2.2-2 GNOME keyring services library
ii libpam-
There is a similar report at Debian:
Changed in gnome-keyring (Debian): | |
status: | Unknown → New |
Unit 193 (unit193) wrote : | #5 |
As found in one upstream bug, you can use a temporary fix/workaround for Xfce by doing
sudo sed -i.bak 's/OnlyShowIn=
Then logging out and back in.
Alvin (alvin) wrote : | #6 |
Running 12.04 w/ gnome-shell
see this bug everytime I use git to clone a repository -- sometimes preventing the ability to do so it authentication is required
happy to help anyone debug the issue -- competent with python haven't done much of anything with C
have already tried removing and re-installing gnome-keyring to no avail
Krishna E. Bera (keb) wrote : | #7 |
Further to comment #5 above, i run Lubuntu 12.04 so i appended the string "LXDE;Lubuntu;" to the offending lines and the warning went away.
Ben Hearsum (bhearsum) wrote : | #8 |
I just started hitting this in Ubuntu 12.04, running 'awesome'. When I try to launch gnome-setting-
➜ ~ gnome-settings-
WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
** (process:1884): WARNING **: GDBus.Error:
** (gnome-
[1337166217,
Ben Hearsum (bhearsum) wrote : | #9 |
The instructions in this forum post effectively worked around the issue for me: http://
superxor (phaneendra-chiruvella) wrote : | #10 |
I've started facing this problem. I am using Ubuntu 12.04 with 'Awesome' window manager. Keeps appearing when I am trying to use Git to clone/push/pull.
yitzhakbg (yitzhakbg) wrote : Re: [Bug 932177] Re: WARNING: gnome-keyring:: couldn't connect to PKCS11 | #11 |
On Wed, 16 May 2012 12:17:36 -0000
Ben Hearsum <email address hidden> wrote:
> The instructions in this forum post effectively worked around the issue
> for me: http://
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https:/
>
> Title:
> WARNING: gnome-keyring:: couldn't connect to PKCS11
>
> Status in “gnome-keyring” package in Ubuntu:
> Confirmed
> Status in “gnome-keyring” package in Debian:
> New
> Status in “gnome-keyring” package in Fedora:
> Unknown
>
> Bug description:
> precise + fluxbox (without gnome-settings-
> a message writes:
>
> Failed to send a message
> WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
>
> In gnome-system-
> /usr/bin/
> /usr/bin/
>
> with manual start this: OK
> /usr/bin/
>
> Is it possible to add a string key '--components=
> /usr/bin/
>
> thanks in advance...
>
> ProblemType: Bug
> DistroRelease: Ubuntu 12.04
> Package: gnome-keyring 3.2.2-2ubuntu1
> ProcVersionSign
> Uname: Linux 3.2.0-15-generic x86_64
> ApportVersion: 1.91-0ubuntu1
> Architecture: amd64
> Date: Tue Feb 14 17:47:35 2012
> InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release amd64 (20100429)
> ProcEnviron:
> PATH=(custom, no user)
> LANG=ru_UA.UTF-8
> SHELL=/bin/bash
> SourcePackage: gnome-keyring
> UpgradeStatus: Upgraded to precise on 2012-02-10 (3 days ago)
> mtime.conffile.
> mtime.conffile.
> mtime.conffile.
> mtime.conffile.
>
> To manage notifications about this bug go to:
> https:/
Thanks
Changed in gnome-keyring: | |
importance: | Unknown → Medium |
status: | Unknown → Fix Released |
Changed in gnome-keyring (openSUSE): | |
importance: | Unknown → Medium |
status: | Unknown → Fix Released |
Chris Bainbridge (chris-bainbridge) wrote : Re: WARNING: gnome-keyring:: couldn't connect to PKCS11 | #27 |
I was interested in the correct solution rather than the workaround of manually reverting the changes to gnome-keyring's /etc/ config. I asked Guido Berhoerster, and he said:
"if you are not running gnome-session then gnome-keyring-
In order to use gnome-keyring with Xfce you need to enable "GNOME compatibility mode", if you use something else you need to modify your session wrapper so that it calls "gnome-
...starting with openSUSE 12.2 gnome-keyring will be installed and enabled by default. It is also possible to use gnome-keyring with Xfce on openSUSE 12.1 since we patch xfce4-session to avoid undesirable side effects of GNOME compat mode in Xfce 4.8 (https:/
Making it work is relatively simple starting with Xfce 4.10 you just need to follow https:/
For Xfce 4.8 it is more complicated because xfce4-session would need to be patched with backports of commit 0fea8c64bfc3291
Another comment from Guido regarding modifying the /etc/ autostart files:
"What happens is that if gnome-keyring components are not initialized through XDG autostart any more they will be DBus-activated (see https:/
summary: |
- WARNING: gnome-keyring:: couldn't connect to PKCS11 + XFCE (and other non-GNOME) desktops do not initialise gnome-keyring + correctly / WARNING: gnome-keyring:: couldn't connect to PKCS11 |
Eric S Fraga (e-fraga) wrote : | #29 |
I just wanted to add (or confirm) that adding the following line to my .xsession file
eval $(gnome-
allows me to get this working with ratpoison or fluxbox as my window managers.
Sebastien Bacher (seb128) wrote : | #30 |
Thanks for the details, the fact it's a affecting non GNOME session only explains why most people around don't get the issue
Changed in gnome-keyring (Ubuntu): | |
status: | Confirmed → Invalid |
Launchpad Janitor (janitor) wrote : | #31 |
Status changed to 'Confirmed' because the bug affects multiple users.
Changed in xfce4-session (Ubuntu): | |
status: | New → Confirmed |
Sebastien Bacher (seb128) wrote : | #32 |
suggested upstream xfce patch on https:/
Lionel Le Folgoc (mrpouit) wrote : | #33 |
This should be fixed with xfce4-session 4.10 (in quantal), but gnome-compat needs to be reenabled by default now (Bug #1008993).
Changed in xfce4-session (Ubuntu): | |
status: | Confirmed → Fix Released |
superxor (phaneendra-chiruvella) wrote : | #34 |
I got an other workaround for the bug from http://
Open /etc/pkcs11/
Gary Kline (kline) wrote : | #35 |
This gnome WARNING has been bothering me for weeks. but now my Brother HL-3040CN printer fails and the string is issured more frequently:
WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
Following the suggestion directly above makes the WARNING go away, but the printer is still messed up.
Antti Kaihola (akaihola) wrote : | #36 |
Any permanent fix planned for Lubuntu/LXDE?
Balaji G (balajig81) wrote : | #37 |
I get this problem still. I am running XFCE 4.10 and i see the error when i do git clone or git pull. Following is the error
"git pull
WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
Already up-to-date.
"
circularfile (circularfile) wrote : | #38 |
I found a nice solution to this problem at
http://
In my case I add MATE instead of LXDE.
I believe those working with Mint have to add Mint or MINT.
Andrey Bondarenko (abone) wrote : | #39 |
In my opinion, for Ubuntu-based distributions the root cause of the bug is in lightdm package. At least, in quantal it becomes default display manager for all desktops including non-GNOME ones.
In files:
* /etc/pam.d/lightdm
* /etc/pam.
it has the following line:
session optional pam_gnome_
The line starts gnome-keyring daemon for all desktops, while only few of them can properly set up gnome-keyring right now.
Probably only_if argument should be used, so keyring daemon will start only for supported environment.
One possible workaround is to switch from lightdm to DE speciffic display manager which don't start gnome-kering
at all.
Ma Hsiao-chun (mahsiaochun) wrote : | #40 |
@abone
Nice observation!
I'm using MATE.
I once noted that when LightDM is running, there are g-s-d and gnome-keyring processes.
After entering MATE session, gnome-keyring is still there.
Launchpad Janitor (janitor) wrote : | #41 |
Status changed to 'Confirmed' because the bug affects multiple users.
Changed in kde-workspace (Ubuntu): | |
status: | New → Confirmed |
oleibrock (oliver-leibrock) wrote : | #42 |
I ran into same issue after I removed my ecrypt'ed $HOME and tried to start
conky & some apps using wine.
$ conky -c /home/xxxxx/
WARNING: gnome-keyring:: couldn't connect to: /tmp/keyring-
I use UbuntuStudio 12.04.1 LTS ; lightdm ; xfce 4.8.
I do only see a gnome-keyring-
I followed the workaround with /etc/pkcs11/
file edit, which did not solve it either.
Julián Landerreche (maniqui) wrote : | #43 |
I ran into this issue when tried to run "git svn fetch" on a repo I've cloned just a few seconds previously (which prompted me from username & password).
$ git svn fetch
WARNING: gnome-keyring:: couldn't connect to: /home/xxxxx/
The workaround in comment #34 worked for me on Debian Wheezy + XFCE 4.8: the warning is not being printed on screen. Of course, I'm not sure yet about what side issues this workaround could have introduced. Any ideas?
@Julián the only problem is that gnome-keyring won't actually work (see comment #27), but if you don't use it, and none of the apps you use rely on it, then that won't affect you.
tags: | added: quantal raring |
Stephen G (stephengroat) wrote : | #45 |
I'm on precise and using ldap auth along with local auth. I only get the error on ldap auth
|
#46 |
(In reply to comment #14)
> Fixed in Factory.
it's back again in 12.3-RC1 (or never got fixed?) !
I'm using 12.3-RC1 plus updates and run XFCE4.
/usr/
gets started and it's loading offering all my ssh-keys, which is a no-go!
when debugging my ssh-agent problems, I found the hint in some discussions to rename/remove nome-keyring-daemon (or remove execute permission).
this worked fine for me -- until bug #805048:
NetworkManager needs gnome-keyring-
so gnome-keyring-
looking for other solutions I found e.g.
http://
but
sudo gconftool-2 --direct --config-source xml:readwrite:
does not help.
https:/
does not work either for me, the key daemon still loads/offers all ssh keys (output of "ssh-add -l").
for now I've hacked the gnome-keyring-
diff <( strings /usr/bin/
9543c9543
< ~/.ssh
---
> ~/@ssh
but of corse that's not the way to go:-(
so my question for running XFCE4:
how can I disable the ssh-agent functionality for gnome-keyring-
thanks for the real[tm] solution!!!
|
#47 |
(In reply to comment #15)
> (In reply to comment #14)
> > Fixed in Factory.
>
> it's back again in 12.3-RC1 (or never got fixed?) !
>
> I'm using 12.3-RC1 plus updates and run XFCE4.
>
> /usr/bin/
>
> gets started and it's loading offering all my ssh-keys, which is a no-go!
>
> when debugging my ssh-agent problems, I found the hint in some discussions to
> rename/remove nome-keyring-daemon (or remove execute permission).
>
> this worked fine for me -- until bug #805048:
> NetworkManager needs gnome-keyring-
>
> so gnome-keyring-
>
> looking for other solutions I found e.g.
> http://
>
> but
>
> sudo gconftool-2 --direct --config-source
> xml:readwrite:
> /apps/gnome-
> does not help.
>
>
> https:/
>
> does not work either for me, the key daemon still loads/offers all ssh keys
> (output of "ssh-add -l").
>
>
> for now I've hacked the gnome-keyring-
>
> diff <( strings /usr/bin/
> /usr/bin/
> 9543c9543
> < ~/.ssh
> ---
> > ~/@ssh
>
>
> but of corse that's not the way to go:-(
>
>
> so my question for running XFCE4:
>
> how can I disable the ssh-agent functionality for gnome-keyring-
> days ???
That's currently not possible, you can either start all components of gnome-keyring-
martin suc (martin-suc) wrote : | #48 |
does exist any solution which works as for desktop as for terminal commands ?
I'd like to confirm this bug for KUbuntu Raring Beta-final. Please fix it; it's most definitely not invalid.
To reproduce:
1. Install both sets of desktops: apt-get install ubuntu-desktop kubuntu-desktop
2. Log into a KDE session.
3. launch an application from the terminal "eg libre-office".
4. Observe that it complains about "WARNING: gnome-keyring:: couldn't connect to PKCS11"
To solve it:
1. Edit the file: /etc/xdg/
2. Append KDE to the line: "OnlyShowIn=
or, uninstall gnome-keyring entirely.
I can confirm the bug in Kubuntu 13.04, where the upgrade from 12.10 overwrote the file
/etc/xdg/
in which I had previously applied a fix as the one described by RichardNeill, i.e. appending "KDE;" to the line "OnlyShowIn=
Paul White (paulw2u) wrote : | #51 |
Also in Kubuntu 13.10.
Have added "saucy" and "kubuntu" to tags so that bugs reports might be received by those that can apply or push for a fix.
tags: | added: kubuntu saucy |
Timothy Gu (timothy-gu) wrote : | #52 |
Reproducible in Lubuntu 13.04.
Fitzhugh (launchpad-inb) wrote : | #53 |
Reproducible in xubuntu 13.04.
This is actually a security bug for users of Chrome / Chromium. Chrome will store passwords in cleartext if gnome-keyring isn't functional. This is mentioned in the upstream Chrome disk encryption bug
https:/
$ cp ~/.config/
$ sqlite3 x.db
sqlite> SELECT username_value, password_value FROM logins;
billg|passw0rd
sqlite>
Andrey Bondarenko (abone) wrote : | #55 |
As the bug is still present in 13.04 and probably 13.10 Kubuntu users may be interested in a workaround:
Copy the attached script 01gnome-
Files in this directory are sources by /usr/bin/startkde so the script can finish gnome-keyring-
Ron Johnson (ron-l-johnson) wrote : | #56 |
Confirmed in xubuntu 13.04. The OnlyShowIn modification works.
dotancohen (dotancohen) wrote : | #57 |
I can confirm that the script in comment #55 resolves the issue in Kubuntu 12.10, and does not seem to contain malicious content. Note that it must be mae executable, i.e. "chmod +x".
Changed in kde-workspace (Ubuntu): | |
status: | Confirmed → Triaged |
importance: | Undecided → Medium |
Changed in gnome-keyring (Ubuntu): | |
importance: | Undecided → Medium |
Changed in xfce4-session (Ubuntu): | |
importance: | Undecided → Medium |
Changed in kde-workspace (Ubuntu): | |
status: | Triaged → Fix Released |
Petar Sredojevic (perosredo) wrote : | #58 |
Confirmed with Chromium on 14.04.
cousteau (cousteaulecommandant) wrote : | #59 |
It's 2014, this bug is already 2 years old, and hasn't been fixed yet,
at least on Xubuntu 12.04. Fixing it seems trivial.
Possible solutions:
1. If the package gnome-keyring is not needed on Xubuntu (or other
affected Ubuntu flavors), it should be considered to be removed from
it as a default package so that other applications don't try to
connect to it.
2. If the package gnome-keyring is required, it should be fixed so that
it runs properly on all the Ubuntu flavors that use it. The problem
seems to be in /etc/xdg/
is only enabled for Gnome and Unity.
2.1. Fix the line OnlyShowIn=
2.1.1. by appending XFCE;KDE;LXDE; and any other DE that may
need or use pkcs11.
2.1.2. by deleting or commenting out that line so that all DEs
may use it (if anything, add a NotShowIn=... blacklist
for DEs in which this may cause problems).
2.2. Make XFCE include an identical .desktop file with
from other DEs.
2.3. Make XFCE load all Gnome services at startup by default (which
may also include some unwanted stuff and thus may not be a good
idea).
3. If the package gnome-keyring is required due to dependencies, but
the service pkcs11 is not needed for it and other applications to
run properly, the warning message it displays should be removed.
3.1. Making gnome-keyring not display that warning.
3.2. Making gnome-keyring inform applications that the service
pkcs11 is unavailable.
3.3. Making all applications that use gnome-keyring check whether
the service pkcs11 is available before requesting it (which
would imply fixing them one by one, which may be a bad idea).
isomorphismes (isomorphismes) wrote : | #60 |
I have this problem in R using the jsonlite package. Ubuntu 12.04 i686. Using awesome window manager.
Changed in gnome-keyring (Debian): | |
status: | New → Confirmed |
Yanpas (yanpaso) wrote : | #61 |
Facing the same. gnome-keyring-
BTW gnome-keyring-
xubuntu 16.04, it became broken in these two months.
Changed in gnome-keyring (Fedora): | |
importance: | Unknown → Undecided |
status: | Unknown → Fix Released |
When logging into a GNOME session gnome-keyring management is setup in such a way that both ssh key management is enabled and the osc commands find and access gnome-keyring.
The keyring needs to be unlocked only once per session, after that osc commands can access the key and it is not necessary to store account credentials in $HOME/.oscrc
The work around is to enable "Launch GNOME services on startup" in the "Advanced" tab of the "Session and Startup". However, this results in too many services running.