Merge pull request #21 from google/fix

Add PAM package
author: Joseph Richey <joerichey@google.com> 2017-07-17 18:26:19 -0700
committer: GitHub <noreply@github.com> 2017-07-17 18:26:19 -0700
commit: 3d08d9f6891db3ca94337e9b987ef62cba535fe1 (patch)
tree: ca9476a0aecaf79cfc8716875db073ea54d5f748 /cmd/fscrypt/keys.go
parent: 6f32bbc8bf51d615ef23ed37aa40910ec23cd587 (diff)
parent: 1a4a020ad5766fce3b3ad719d85593a3e8159733 (diff)
1 files changed, 6 insertions, 5 deletions
diff --git a/cmd/fscrypt/keys.go b/cmd/fscrypt/keys.go
index 820ddec..65360a9 100644
--- a/cmd/fscrypt/keys.go
+++ b/cmd/fscrypt/keys.go
@@ -125,7 +125,7 @@ func makeKeyFunc(supportRetry, shouldConfirm bool, prefix string) actions.KeyFun
 		switch info.Source() {
 		case metadata.SourceType_pam_passphrase:
 			prompt := fmt.Sprintf("Enter %slogin passphrase for %s: ",
-				prefix, getUsername(info.UID()))
+				prefix, formatUsername(info.UID()))
 			key, err := getPassphraseKey(prompt)
 			if err != nil {
 				return nil, err
@@ -134,15 +134,16 @@ func makeKeyFunc(supportRetry, shouldConfirm bool, prefix string) actions.KeyFun
 			// To confirm, check that the passphrase is the user's
 			// login passphrase.
 			if shouldConfirm {
-				username := getUsername(info.UID())
-				ok, err := pam.IsUserLoginToken(username, key)
+				username, err := usernameFromID(info.UID())
 				if err != nil {
 					key.Wipe()
 					return nil, err
 				}
-				if !ok {
+
+				err = pam.IsUserLoginToken(username, key, quietFlag.Value)
+				if err != nil {
 					key.Wipe()
-					return nil, ErrPAMPassphrase
+					return nil, err
 				}
 			}
 			return key, nil
author	Joseph Richey <joerichey@google.com>	2017-07-17 18:26:19 -0700
committer	GitHub <noreply@github.com>	2017-07-17 18:26:19 -0700
commit	3d08d9f6891db3ca94337e9b987ef62cba535fe1 (patch)
tree	ca9476a0aecaf79cfc8716875db073ea54d5f748 /cmd/fscrypt/keys.go
parent	6f32bbc8bf51d615ef23ed37aa40910ec23cd587 (diff)
parent	1a4a020ad5766fce3b3ad719d85593a3e8159733 (diff)