Ubuntu
ecryptfs-utils package

  1. Bug #313812
  2. Comment #8

Comment 8 for bug 313812

Revision history for this message
Tyler Hicks (tyhicks) wrote : Re: umount of ecryptfs does not automatically clear the keyring (was: ecryptfs can be mounted with any passphrase)

Reopening this bug. Dustin and Michal are both reporting that the unlinking doesn't work from PAM.

We could put some code in umount.ecryptfs_private to do the unlinking, but since that is a setuid binary in most/all distros, lets keep it simple.

We shouldn't have umount.ecryptfs_private execute umount.ecryptfs because that isn't keeping it simple *and* umount.ecryptfs will be executed as root, making it difficult/impossible to unlink the user's keys.

This functionality should go into the kernel.