Reopening this bug. Dustin and Michal are both reporting that the unlinking doesn't work from PAM.
We could put some code in umount.ecryptfs_private to do the unlinking, but since that is a setuid binary in most/all distros, lets keep it simple.
We shouldn't have umount.ecryptfs_private execute umount.ecryptfs because that isn't keeping it simple *and* umount.ecryptfs will be executed as root, making it difficult/impossible to unlink the user's keys.
Reopening this bug. Dustin and Michal are both reporting that the unlinking doesn't work from PAM.
We could put some code in umount. ecryptfs_ private to do the unlinking, but since that is a setuid binary in most/all distros, lets keep it simple.
We shouldn't have umount. ecryptfs_ private execute umount.ecryptfs because that isn't keeping it simple *and* umount.ecryptfs will be executed as root, making it difficult/ impossible to unlink the user's keys.
This functionality should go into the kernel.