Ubuntu
ecryptfs-utils package

ecryptfs-mount-private no longer works after upgrading to Natty

Bug #791088 reported by Andy Brody
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ecryptfs-utils (Ubuntu)
New
Undecided
Unassigned

Bug Description

Binary package hint: ecryptfs-utils

After installing 11.04 while preserving my home partition, ecryptfs-mount-private can no longer mount my ~/.Private/ folder. Nothing in ~/.ecryptfs/ has changed since 2009. The folder does not use file name encryption. The login password for the user was the same prior to reinstalling. There is no ecryptfs group on the system, if that's relevant. Using ecryptfs-unwrap-passphrase gives the same hex string as I have in the backup I created when setting up the folder.

andy@wisp:~$ ls -l .ecryptfs/
total 8
-rw-r--r-- 1 andy andy 0 2009-02-02 00:42 auto-mount
-rw-r--r-- 1 andy andy 0 2009-02-02 00:42 auto-umount
-rw-r--r-- 1 andy andy 17 2009-02-02 00:42 Private.sig
-r-------- 1 andy andy 48 2009-02-02 00:42 wrapped-passphrase

andy@wisp:~$ ecryptfs-mount-private
Enter your login passphrase:
Inserted auth tok with sig [2535c96fec27579f] into the user session keyring
keyctl_search: Required key not available
Perhaps try the interactive 'ecryptfs-mount-private'
andy@wisp:~$ echo $?
1

andy@wisp:~$ cat .ecryptfs/Private.sig
00709f885098d3cf

andy@wisp:~$ keyctl list @u
1 key in keyring:
940249455: --alswrv 1000 1000 user: 2535c96fec27579f

However, the folder mounts just fine using mount.ecryptfs:

andy@wisp:~$ sudo mount.ecryptfs .Private/ Private/
Unable to find a list of options to parse, defaulting to interactive mount
Passphrase:
Select cipher:
 1) aes: blocksize = 16; min keysize = 16; max keysize = 32 (not loaded)
 2) blowfish: blocksize = 16; min keysize = 16; max keysize = 56 (not loaded)
 3) des3_ede: blocksize = 8; min keysize = 24; max keysize = 24 (not loaded)
 4) cast6: blocksize = 16; min keysize = 16; max keysize = 32 (not loaded)
 5) cast5: blocksize = 8; min keysize = 5; max keysize = 16 (not loaded)
Selection [aes]:
Select key bytes:
 1) 16
 2) 32
 3) 24
Selection [16]:
Enable plaintext passthrough (y/n) [n]:
Enable filename encryption (y/n) [n]:
Unable to find a list of options to parse, defaulting to interactive mount
Attempting to mount with the following options:
  ecryptfs_unlink_sigs
  ecryptfs_key_bytes=16
  ecryptfs_cipher=aes
  ecryptfs_sig=227fc24c2f0a936f
WARNING: Based on the contents of [/root/.ecryptfs/sig-cache.txt],
it looks like you have never mounted with this key
before. This could mean that you have typed your
passphrase wrong.

Would you like to proceed with the mount (yes/no)? : yes
Would you like to append sig [227fc24c2f0a936f] to
[/root/.ecryptfs/sig-cache.txt]
in order to avoid this warning in the future (yes/no)? : no
Not adding sig to user sig cache file; continuing with mount.
Mounted eCryptfs
andy@wisp:~$ cat Private/hello.txt
Hello, world!

Revision history for this message
Dustin Kirkland  (kirkland) wrote :

Thanks for the report -- sorry about that.

This is actually a duplicate of Bug #725862, which was fixed a few weeks ago. Thanks!

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.