ecryptfs team mailing list archive

Thread
Date

[Bug 277706] Re: ecryptfs mount of private should prompt for mount passphrase if not in keyring

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: Dustin Kirkland <dustin.kirkland@xxxxxxxxx>
Date: Tue, 04 Nov 2008 03:30:53 -0000
Reply-to: Bug 277706 <277706@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

*** This bug is a duplicate of bug 259631 ***
    https://bugs.launchpad.net/bugs/259631

** This bug has been marked a duplicate of bug 259631
   Cannot open Private directory after a reboot when "Automatic Login" enabled

-- 
ecryptfs mount of private should prompt for mount passphrase if not in keyring
https://bugs.launchpad.net/bugs/277706
You received this bug notification because you are a member of eCryptfs,
which is subscribed to ecryptfs-utils in ubuntu (via bug 259631).

Status in eCryptfs - Enterprise Cryptographic Filesystem: Confirmed

Bug description:
Extracted from Bug #268014.

The shell wrapper script ecryptfs-mount-private could be extended to accept a new parameter (or possibly default to it), to attempt to mount.ecryptfs_private with key(s) in the kernel keyring, and if not found, interactively prompt the user to enter the mount passphrase, add to the keyring, and retry.

The workflow looks like this:
 * user requests a mount of encrypted ~/Private
 * if it's already mounted, exit
 * try to mount with the key(s) currently in the user's keyring (see: keyctl show), exit on success
 * key is not in the keyring, so ask the user if they know the mount passphrase
 * prompt for mount passphrase and add to keyring (see: ecryptfs-add-passphrase)
 * retry the mount

:-Dustin