OK, my proposal was missing something - you need the password to unwrap... :-p
So the best would IMHO that you simply check that the password is the right one during the auth phase, and only unwrap the folder after, for example in a child process. For now, in the pam_sm_authenticate function, there's at the end: > 178 tmp_pid = waitpid(child_pid, NULL, 0); The only interest of waiting for the child to finish is to return PAM_SUCCESS on success, which is not really useful since ecryptfs is always optional. So I suggest the module forks ASAP and only returns error if the password is not the right one. Please do something, that's really lousy that you need 2 seconds to unlock gnome-screensaver! ;-) -- pam_encryptfs.so causes authentication to be slow https://bugs.launchpad.net/bugs/295429 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
