ecryptfs team mailing list archive

Thread
Date

[Bug 272232] Re: passwd - passwords do not match but updated successfully

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: Steve Langasek <steve.langasek@xxxxxxxxxxxxx>
Date: Thu, 16 Oct 2008 04:55:47 -0000
Reply-to: Bug 272232 <272232@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Having looked at the code, I think the ecryptfs-utils case is an
ecryptfs-utils bug and not a pam bug.  The relevant code in pam_ecryptfs
is:

        if (!old_passphrase || !new_passphrase) {
                syslog(LOG_WARNING, "eCryptfs PAM passphrase change module "
                       "retrieved at least one NULL passphrase; nothing to "
                       "do\n");
                goto out;
        }

but this leaves rc as PAM_SUCCESS - since this module is designed to be
an optional module, this really ought to return PAM_IGNORE instead for
this case.

** Changed in: ecryptfs-utils (Ubuntu Intrepid)
   Importance: Undecided => Medium
       Status: New => Triaged

-- 
passwd - passwords do not match but updated successfully
https://bugs.launchpad.net/bugs/272232
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu.

Status in “ecryptfs-utils” source package in Ubuntu: Triaged
Status in “pam” source package in Ubuntu: Fix Released
Status in “shadow” source package in Ubuntu: Invalid
Status in ecryptfs-utils in Ubuntu Intrepid: Triaged
Status in pam in Ubuntu Intrepid: Fix Released
Status in shadow in Ubuntu Intrepid: Invalid

Bug description:
Binary package hint: passwd

As root, if you attempt to change the password, and the passwords do not match you get "passwords do not match" and "password updated successfully".  It should only report "passwords do not match".  It shouldn't say "password updated sucessfully".  According to Synaptic the passwd package is at level "1:4.1.1-1ubuntu1".  This is on 8.10 Alpha 6.  Here's the output:

root@ehud:/# passwd
Enter new UNIX password: 
Retype new UNIX password: 
Sorry, passwords do not match
passwd: password updated successfully
root@ehud:/# lsb_release -rd
Description:	Ubuntu intrepid (development branch)
Release:	8.10
root@ehud:/#

This happens for normal users as well:

userX@ehud:~$ passwd
Changing password for userX.
(current) UNIX password: 
Enter new UNIX password: 
Retype new UNIX password: 
Sorry, passwords do not match
passwd: password updated successfully
userX@ehud:~$