Comment 2 for bug 268731

I'm adding some updates to this bug, but I've only been poking around for a day or so, so feel free to comment. First, this is currently a wishlist item but I'm going to argue that its a bug. Taking a look at the source for the PAM module in gnome-keyring it looks like pam_gnome_keyring.so supports the password service. (At least there is code in there for changing the keyring password when the login password is changed.) At this point it should just a matter of adding the line

password optional pam_gnome_keyring.so

to the appropriate config files in pam.d. (In particular passwd, but this should really include anything that uses PAM to change the login password. It could even be added to common-password, except I think this file is autogenerated by pam-auth-update.) So it should be a quick fix, but the problem is that it doesn't seem to work. By that I mean, if you sync the login and keyring passwords, then change the login password using passwd (after adding the above line to the passwd file in pam.d) then the keyring passwd remains unchanged. So the password service is implemented, but appears to be broken. I think the following bug may be relevent https://bugzilla.redhat.com/show_bug.cgi?id=250147. Also, I'm using how ecryptfs interacts with PAM as my model for how this should work, if that helps.