[Bug 1236577] [NEW] container's /home/ubuntu/ spawns with incorrect permissions, preventing SSH access

Launchpad Bug Tracker 1236577 at bugs.launchpad.net
Tue Oct 8 14:28:11 UTC 2013 

You have been subscribed to a public bug:

agent-version: 1.15.0.1
ii  juju-core                        1.15.0-0~1903~ubuntu12.04.1       
ii  juju-local                       1.14.1-0ubuntu1~ctools0          

Attempting to use the local provider, I find that I cannot ssh to new
containers, failing public key authentication.  Poking around on the
host in the rootfs directroy for the container (/var/lib/lxc/ubuntu-
local-machine-1/rootfs, in this case), I find the following  entry in
var/log/auth.log:

Oct  7 20:19:22 ubuntu-local-machine-1 sshd[4191]: Authentication
refused: bad ownership or modes for directory /home/ubuntu

$ ls -lh /var/lib/lxc/ubuntu-local-machine-1/rootfs/home 
total 4.0K
drwxr-xr-x 3 ubuntu ubuntu 4.0K Oct  7 20:17 ubuntu

$ ls -lha /var/lib/lxc/ubuntu-local-machine-1/rootfs/home/ubuntu/ 
total 24K
drwxr-xr-x 3 ubuntu ubuntu 4.0K Oct  7 20:17 .
drwxr-xr-x 3 root   root   4.0K Oct  3 07:06 ..
-rw-r--r-- 1 ubuntu ubuntu  220 Apr  3  2012 .bash_logout
-rw-r--r-- 1 ubuntu ubuntu 3.5K Apr  3  2012 .bashrc
-rw-r--r-- 1 ubuntu ubuntu  675 Apr  3  2012 .profile
drwx------ 2 sower  sower  4.0K Oct  7 20:17 .ssh

$ sudo ls -lha /var/lib/lxc/ubuntu-local-machine-1/rootfs/home/ubuntu/.ssh/
total 12K
drwx------ 2 sower  sower  4.0K Oct  7 20:17 .
drwxr-xr-x 3 ubuntu ubuntu 4.0K Oct  7 20:17 ..
-rw------- 1 sower  sower   381 Oct  7 20:17 authorized_keys

The sower user is a user on the host system with uid 1000.  I am using
juju as the ubuntu user (uid 1001). With the exception of
/home/ubuntu/.ssh/, it looks like /home/ubuntu ends up with incorrect
ownership.  Manually changing ownership of the directory and its
contents to uid 1000 on from the host allows me to SSH in.

** Affects: lxc
     Importance: Undecided
         Status: New

** Affects: lxc (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: theme-oil
-- 
container's /home/ubuntu/ spawns with incorrect permissions, preventing SSH access
https://bugs.launchpad.net/bugs/1236577
You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu.

More information about the Ubuntu-server-bugs mailing list