detect users with encrypted home for kernel bug reports

> + if os.path.exists(os.path.expanduser("~/.Private")) and \
> + os.path.exists(os.path.expanduser("~/.ecryptfs")):

I'm not sure whether this is correc/sufficient. It seems to cover the "encrypted private directory" case, but not the "encrypted home dir" case. Dustin, what would be a good check for the latter?

cat ~/.ecryptfs/Private.mnt

Inside of that file will be the path of the encrypted mountpoint,
which might be $HOME, $HOME/Private, or any other directory owned by
the user.

Hello Dustin,

Dustin Kirkland [2009-11-05 14:51 -0000]:
> cat ~/.ecryptfs/Private.mnt
>
> Inside of that file will be the path of the encrypted mountpoint,
> which might be $HOME, $HOME/Private, or any other directory owned by
> the user.

Ah, interesting, thanks. I don't even have that, but then again my
/home is already very old (I think I set up ecryptfs ~/Private in
intrepid or even earlier; whenever it came up first)

So would you think that this is an appropriate test for "Has encrypted
(bits of) home directory"?

(in shell syntax)

  [ -d ~/.Private -a -d ~/.ecryptfs ] || [ -e ~/.ecryptfs/Private.mnt ]

Thanks,

Martin
--
Martin Pitt | http://www.piware.de
Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org)

Sorry, so if ~/.ecryptfs/wrapped-passphrase exists, but Private.mnt
does not, the assumption is that you have an Encrypted-Private.

If ~/.ecryptfs/wrapped-passphrase exists, and ~/.ecryptfs/Private.mnt
exists, then Private.mnt is consulted for the mount point for the
eCryptfs mount.

In most cases, this is either $HOME or $HOME/Private. However, some
users change this to other various directories. It really doesn't
matter to mount.ecryptfs_private, as long as the user OWNS the
directory specified in the file.

To be very specific, something like this, Martin...

if [ -e ~/.ecryptfs/wrapped-passphrase ]; then
  [ -e ~/.ecryptfs/Private.mnt ] && echo $(cat
~/.ecryptfs/Private.mnt) "is encrypted" || echo "$HOME/Private is
encrypted"
else
  echo "No automounted eCryptfs here. Move along."
fi

Thanks Dustin! Leann, does that give you enough info?

Hi Martin,

Yes, this would be great.

Taking Leann's comment as "Martin, please do that yourself" :-)

trunk r1648

Sorry, wrong bug.

trunk r1649

This bug was fixed in the package apport - 1.9.6-0ubuntu1

---------------
apport (1.9.6-0ubuntu1) lucid; urgency=low

  [ Brian Murray ]
  * debian/local/apport-collect: Strongly encourage collectors who are not
    the bug reporter to file a new bug report.

  [ Marco Rodrigues ]
  * debian/control: Fix lintian warnings. Move python-distutils-extra
    to b-d-i and add misc:Depends to apport-qt.

  [ Martin Pitt ]
  * New upstream version 1.9.5 and 1.9.6:
    - apport-retrace: Fix crash if InterpreterPath/ExecutablePath do not
      exist.
    - hookutils.py, attach_alsa(): Attach /proc/cpuinfo too, for CPU flags.
    - Fix crash if InterpreterPath does not exist any more at the time of
      reporting. (LP: #428289)
    - apport-gtk: Connect signals properly, to repair cancel/window close
      buttons. (LP: #427814)
    - Update German translations and fix "konnre" typo. (LP: #484119)
    - launchpad.py: Ensure that text attachments on initial bug filing are
      valid UTF-8. (LP: #453203)
    - man/apport-retrace.1: Document -R option.
    - Add pm-utils hook to record current operation, so that apportcheckresume
      can check it. Before this was kept in Ubuntu's pm-utils package.
    - general-hooks/generic.py: Check if using ecryptfs, and which directory.
      (LP: #444656)
  * data/general-hooks/ubuntu.py: Add distro release codename tag.
    (LP: #404250)
  * debian/local/apport-chroot: Fix last occurrence of "--no-dpkg" to be
    "--no-pkg". (LP: #487056)
  * debian/local/apport-collect: Use "apport-collect data" as comment for the
    apport-collect attachments to enable bug mail filtering. Thanks to Bryce
    Harrington for the suggestion.
 -- Martin Pitt <email address hidden> Wed, 02 Dec 2009 00:01:06 +0100