Ubuntu
ecryptfs-utils package

  1. Bug #283477
  2. Comment #22

Comment 22 for bug 283477

Revision history for this message
Chris Sheats (yawnbox) wrote :

I changed my user's passphrase for Ubuntu Server 15.10 to a 65+ character passphrase. Now I cannot save files that my user has permission to access and root must be used.

Log errors:

/var/log/auth.log

Apr 17 21:23:47 user sshd[18527]: pam_ecryptfs: Error adding passphrase key token to user session keyring; rc = [-5]
Apr 17 21:24:01 user sudo: Error attempting to unwrap passphrase from file [/home/user/.ecryptfs/wrapped-passphrase]; rc = [-5]
Apr 17 22:22:12 user sshd[19924]: Error attempting to unwrap passphrase from file [/home/user/.ecryptfs/wrapped-passphrase]; rc = [-5]

I attempted to recover:

sudo ecryptfs-recover-private /home/.ecryptfs/user/.Private

Printed error:

INFO: Found [/home/.ecryptfs/user/.Private].
Try to recover this directory? [Y/n]: y
INFO: Found your wrapped-passphrase
Do you know your LOGIN passphrase? [Y/n] y
INFO: Enter your LOGIN passphrase...
Passphrase:
Passphrase is too long. Use at most 64 characters long passphrase.
Usage:

ecryptfs-insert-wrapped-passphrase-into-keyring [file]
or
printf "%s" "wrapping passphrase" | ecryptfs-insert-wrapped-passphrase-into-keyring [file] -

ERROR: The key required to access this private data is not available.

Log error:

Apr 17 22:30:52 user ecryptfs-insert-wrapped-passphrase-into-keyring: Error attempting to unwrap passphrase from file [/home/.ecryptfs/user/.Private/../.ecryptfs/wrapped-passphrase]; rc = [-5]

Limiting passphrases to 64 characters is not legitimate.