passwdqc is not part of a clean install, even if passwords are set to expire

Apparently when I installed karmic, I enabled expiration of passwords. Also apparently, my 90 day password expiration happened. I say this because when I tried to log in this morning, the gdm login screen would accept my password and then try to get me to change it (showing '(current) UNIX password:'). However, after entering the password again, I could see the message 'Module not found', and then I was back at the user selection screen.

Booting to live CD and mounting my volume, I could see the auth.log file:

PAM unable to dlopen(/lib/security/pam_passwdqc.so): /lib/security/pam_passwdqc.so: cannot open shared object file: No such file or directory

I edited the /etc/pam.d/common-password file to comment out the line indicating that this module was required, and was then able to log in.

I see two possible solutions:
(1) be sure that this module is included in the installation, or
(2) make the module optional in the pam configuration file

I'm not sure that pam-passwdqc is the right package on which to open this bug; it seems more likely that it should be opened against the setup/installer, but I think this way it can at least be routed correctly.