[Bug 775360] New: SystemD does not enable encrypted partition.
https://bugzilla.novell.com/show_bug.cgi?id=775360 https://bugzilla.novell.com/show_bug.cgi?id=775360#c0 Summary: SystemD does not enable encrypted partition. Classification: openSUSE Product: openSUSE 12.2 Version: RC 2 Platform: VMWare OS/Version: openSUSE 12.2 Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: carlos.e.r@opensuse.org QAContact: qa-bugs@suse.de Found By: --- Blocker: --- SystemD does not enable encrypted partition. I have a test 12.2 system on VMware Player. It boots to runlevel 3, intentionally, and has a separate /usr partition, also intentionally - this is a factory test system :-) Now I'm testing encrypted filesystems. First I created a dedicated virtual disk (~1GB). Then, in the guest, using the yast partitioner, I created and ext4 encrypted partition. The program did its job and exited. The new filesystem at "/cripta" was accessible. Then I rebooted. Boot process stopped at a message about "plymouth" something for a long time - I did not see any prompt for password. "/cripta" is not mounted. Remember that I'm booting in text mode. There are messages in the log about a prompt for password having timed out - but I assure you, there was no such thing. Aug 10 05:19:27 Elanor2 vmtoolsd[479]: Starting vmtoolsd ..done Aug 10 03:19:28 Elanor2 SuSEfirewall2: Firewall rules set to CLOSE. Aug 10 03:19:28 Elanor2 SuSEfirewall2_init[446]: Loading basic firewall rules ..done Aug 10 03:19:28 Elanor2 systemd-cryptse[367]: Timed out Aug 10 03:19:28 Elanor2 systemd-cryptse[367]: Failed to query password: Timer expired Aug 10 03:19:28 Elanor2 systemd[1]: cryptsetup@cr_sdb1.service: main process exited, code=exited, status=1 Aug 10 03:19:28 Elanor2 systemd[1]: Job cripta.mount/start failed with result 'dependency'. Aug 10 03:19:28 Elanor2 systemd[1]: Job fsck@dev-mapper-cr_sdb1.service/start failed with result 'dependency'. Aug 10 03:19:28 Elanor2 systemd[1]: Job dev-mapper-cr_sdb1.device/start failed with result 'dependency'. Aug 10 03:19:28 Elanor2 systemd[1]: Unit cryptsetup@cr_sdb1.service entered failed state. Aug 10 03:19:28 Elanor2 network[594]: Setting up (localfs) network interfaces: and a bit later: Aug 10 03:22:15 Elanor2 systemd-logind[450]: New session 1 of user root. Aug 10 03:22:15 Elanor2 dbus-daemon[473]: dbus[473]: [system] Activating via systemd: service name='org.freedesktop.ConsoleKit' unit='console-kit-daemon.service' Aug 10 03:22:15 Elanor2 dbus[473]: [system] Activating via systemd: service name='org.freedesktop.ConsoleKit' unit='console-kit-daemon.service' Aug 10 03:22:15 Elanor2 dbus-daemon[473]: dbus[473]: [system] Activating service name='org.freedesktop.PolicyKit1' (using servicehelper) Aug 10 03:22:15 Elanor2 dbus[473]: [system] Activating service name='org.freedesktop.PolicyKit1' (using servicehelper) Aug 10 03:22:15 Elanor2 polkitd[3258]: started daemon version 0.104 using authority implementation `local' version `0.104' Aug 10 03:22:15 Elanor2 dbus-daemon[473]: dbus[473]: [system] Successfully activated service 'org.freedesktop.PolicyKit1' Aug 10 03:22:15 Elanor2 dbus[473]: [system] Successfully activated service 'org.freedesktop.PolicyKit1' Aug 10 03:22:15 Elanor2 dbus-daemon[473]: dbus[473]: [system] Successfully activated service 'org.freedesktop.ConsoleKit' Aug 10 03:22:15 Elanor2 dbus[473]: [system] Successfully activated service 'org.freedesktop.ConsoleKit' Aug 10 03:22:15 Elanor2 login: ROOT LOGIN ON tty1 Aug 10 03:23:45 Elanor2 systemd[1]: Job dev-mapper-cr_sdb1.device/start timed out. Aug 10 03:23:45 Elanor2 systemd[1]: Job cryptsetup@cr_sdb1.service/start failed with result 'dependency'. Aug 10 03:23:45 Elanor2 systemd[1]: Job cripta.mount/start failed with result 'dependency'. Aug 10 03:23:45 Elanor2 systemd[1]: Job fsck@dev-mapper-cr_sdb1.service/start failed with result 'dependency'. Aug 10 03:23:45 Elanor2 systemd[1]: Job dev-mapper-cr_sdb1.device/start failed with result 'timeout'. Aug 10 03:23:45 Elanor2 systemd-cryptse[3192]: Timed out Aug 10 03:23:45 Elanor2 systemd-cryptse[3192]: Failed to query password: Timer expired Aug 10 03:23:45 Elanor2 systemd[1]: cryptsetup@cr_sdb1.service: main process exited, code=exited, status=1 Aug 10 03:23:45 Elanor2 systemd[1]: Unit cryptsetup@cr_sdb1.service entered failed state. Aug 10 03:28:38 Elanor2 sshd[3323]: Connection closed by 192.168.18.1 [preauth] Manual mounting does not work: Elanor2:~ # rccrypto start redirecting to systemctl Failed to issue method call: Unit crypto.service is masked. Elanor2:~ # Later, while I'm writing this, there is a prompt in the VT1 and the ssh session I have opened from the host: Broadcast message from root@Elanor2 (Fri, 10 Aug 2012 03:32:54 +0200): Password entry required for 'Please enter passphrase for disk VMware_Virtual_S (cr_sdb1) on /cripta!' (PID 3428). Please enter password with the systemd-tty-ask-password-agent tool! But running that produces no results: Elanor2:~ # systemd-tty-ask-password-agent Elanor2:~ # Now, I boot again in graphical mode (runlevel 5). This time I do see the prompt for the password, in the boot splash display. I enter it, but it is rejected. I enter it three times, and it is rejected 3 times. I Know that the password I enter is correct, because I set it easy: "criptopolis". I wrote it on a file immediately after setting it up with the partitioner. Booting in system V mode produces the expected result, it asks for the password and the partition is mounted as expected at the first attempt. Manual mount (rccrypto) works also as it should. It is system D which does not work. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c1
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c2
--- Comment #2 from Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c3
Carlos Robinson
please test with plymouth 0.8.6.1-1.12.1 (or later) (from update channel), I think it is fixed.
No, it is not... Console displays this messages (copied by hand, photo available on request): Starting udev Coldplug all Devices... Starting Show Plymouth Boot Screen... Started udev Coldplug all Devices and it waits there for a minute or so. The log is available on request.
if it isn't, please provides /etc/crypttab and /etc/fstab.
See #2 The service can not be started manually: Elanor2:~/Bugzilla # rccrypto status redirecting to systemctl crypto.service Loaded: masked (/dev/null) Active: inactive (dead) Elanor2:~/Bugzilla # rccrypto stop redirecting to systemctl Elanor2:~/Bugzilla # rccrypto start redirecting to systemctl Failed to issue method call: Unit crypto.service is masked. Elanor2:~/Bugzilla # -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c4
--- Comment #4 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c5
--- Comment #5 from Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c6
--- Comment #6 from Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c7
--- Comment #7 from Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c8
--- Comment #8 from Carlos Robinson
I can't, the submit button on the attachment page does not work. I'll try again.
It failed because of this: -rw-r----- 1 root root 310131 Aug 13 17:12 messages Bugzilla fails silently. This is another bug. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c9
--- Comment #9 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c10
--- Comment #10 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c11
--- Comment #11 from Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c12
--- Comment #12 from Carlos Robinson
any reason for using console=tty1 ?
A leftover from my normal boot: title Desktop -- openSUSE 12.2 - system D, verbose II root (hd0,2) kernel /boot/vmlinuz root=/dev/disk/by-label/Main resume=/dev/disk/by-label/Swap showopts splash=verbose console=tty1 loglevel=3 vga=0x333 3 initrd /boot/initrd which in turn was derived in the mail list or forums as a method to get a boot with messages in the screen. Is that a problem? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c13
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c14
Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c15
Carlos Robinson
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c16
--- Comment #16 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c17
Thomas Blume
https://bugzilla.novell.com/show_bug.cgi?id=775360
https://bugzilla.novell.com/show_bug.cgi?id=775360#c18
Carlos Robinson
participants (1)
-
bugzilla_noreply@novell.com