Subscribed Kees, added liboobs, as he indicated the bug is actually in this (buggy) library.
I'm attaching a screenshot to demonstrate the problem. This Users-and-Groups diaglog exposes a mechanism to administrative users to reset a password. Note that it's not prompting for the user's current password. This makes ecryptfs re-wrapping of the passphrase impossible. Lose. In this situation, the user's system passphrase will be changed to the new passphrase, but the user's ~/.ecryptfs/wrapped-passphrase file will still be wrapped with the previous passphrase.
Subscribed Kees, added liboobs, as he indicated the bug is actually in this (buggy) library.
I'm attaching a screenshot to demonstrate the problem. This Users-and-Groups diaglog exposes a mechanism to administrative users to reset a password. Note that it's not prompting for the user's current password. This makes ecryptfs re-wrapping of the passphrase impossible. Lose. In this situation, the user's system passphrase will be changed to the new passphrase, but the user's ~/.ecryptfs/ wrapped- passphrase file will still be wrapped with the previous passphrase.
:-Dustin