Bug#928956: Document removal of ecryptfs-utils from Buster

To: 928956@bugs.debian.org
Cc: Daniel Lange <DLange@debian.org>, Andrei POPESCU <andreimpopescu@gmail.com>, Julian Andres Klode <jak@debian.org>, "Laszlo Boszormenyi (GCS)" <gcs@debian.org>
Subject: Bug#928956: Document removal of ecryptfs-utils from Buster
From: Justin B Rye <justin.byam.rye@gmail.com>
Date: Wed, 15 May 2019 13:00:52 +0100
Message-id: <[🔎] 20190515120052.kxxivzszuljhkxkt@jbr.me.uk>
Reply-to: Justin B Rye <justin.byam.rye@gmail.com>, 928956@bugs.debian.org
In-reply-to: <[🔎] 2733c02d-17ac-6632-6d67-1dda438a56e5@debian.org>
References: <[🔎] 9f53e5c8-36be-5418-bb05-24b5bb869527@debian.org> <[🔎] 20190514065448.cmxvmrw4hxb7i7mb@pine64> <[🔎] 9f53e5c8-36be-5418-bb05-24b5bb869527@debian.org> <[🔎] 2733c02d-17ac-6632-6d67-1dda438a56e5@debian.org> <[🔎] 9f53e5c8-36be-5418-bb05-24b5bb869527@debian.org>

Daniel Lange wrote:
>>   * reason for removal
>>     not essential, but it helps to understand the issue
> #765854
> ecryptfs cannot unmount encrypted home directories due to systemd keeping
> the pam session active even after logout.
> Upstream bug https://github.com/systemd/systemd/issues/8598
> A work around (user unit file) has not been implemented and tested.
> 
>>   * what would be the alternative(s) available in buster
> there is none

Does Debian really not provide any alternative mechanisms for
filesystem encryption that users could switch over to?  A quick "apt
search" suggests that they could try encfs...

>>   * is there a (documented) migration path
> there is none

Sounds as if someone needs to write one, then.

> People with ecryptfs should not upgrade to Buster or enable and pin sid
> repositories where ecryptfs-utils, libecryptfs1 and friends are still
> available and continue to work (including the unmount bug linked above).

Is the problem a result of changes in ecryptfs-utils, PAM, systemd, or
what?  Would upgrading systemd etc to Buster but keeping the Stretch
version of ecryptfs-utils installed be a better or worse option than
installing the Sid version?

> CC'd jak (original bug submitter) and gcs (maintainer) in case they can add
> something. May be we can get the user unit file approach tested and if
> working into a point release and/or backports?
-- 
JBR	with qualifications in linguistics, experience as a Debian
	sysadmin, and probably no clue about this particular package

Reply to:

References:
- Bug#928956: Document removal of ecryptfs-utils from Buster
  - From: Daniel Lange <DLange@debian.org>
- Bug#928956: Document removal of ecryptfs-utils from Buster
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Bug#928956: Document removal of ecryptfs-utils from Buster
  - From: Daniel Lange <DLange@debian.org>

Prev by Date: Bug#929003: release-notes: Provide specific instructions to remove obsolete packages
Next by Date: Bug#929003: release-notes: Provide specific instructions to remove obsolete packages
Previous by thread: Bug#928956: Document removal of ecryptfs-utils from Buster
Next by thread: Processed: Re: Bug#928956: Document removal of ecryptfs-utils from Buster
Index(es):
- Date
- Thread