[Bug 535475] New: cannot hibernate with encrypted swap partition
http://bugzilla.novell.com/show_bug.cgi?id=535475 Summary: cannot hibernate with encrypted swap partition Classification: openSUSE Product: openSUSE 11.2 Version: Milestone 6 Platform: i386 OS/Version: Linux Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: s.assmann@gmx.de QAContact: qa@suse.de Found By: --- Created an attachment (id=315864) --> (http://bugzilla.novell.com/attachment.cgi?id=315864) pm-suspend.log User-Agent: Mozilla/5.0 (X11; U; Linux i686; de; rv:1.9.1.2) Gecko/20090730 SUSE/3.5.2-2.4 Firefox/3.5.2 During install I selected to encrypt the swap partition (sda4) and left the password blank. Yast even informs that this is a valid thing. Now I tried to hibernate the system and it fails. Name Flags Part Type FS Type [Label] Size (MB) ------------------------------------------------------------------------------ sda1 Primary NTFS [^D] 39999.54 sda2 Boot Primary Linux ext3 16105.10 sda3 Primary Linux 61204.31 sda4 Primary Linux swap / Solaris 2722.57 Will attach pm-suspend.log ERROR: resume partition '/dev/sda4' not active, can not suspend Reproducible: Always Steps to Reproduce: 1. during install encrypt swap and use blank password 2. 3. Actual Results: cannot hibernate Expected Results: hibernate works -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 shuang qiu <sqiu@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |sqiu@novell.com AssignedTo|bnc-team-screening@forge.pr |nld10-bugs-qa@forge.provo.n |ovo.novell.com |ovell.com -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 Stephan Kulow <coolo@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|Basesystem |Mobile Devices AssignedTo|nld10-bugs-qa@forge.provo.n |mobile-bugs@forge.provo.nov |ovell.com |ell.com -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User hmacht@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c1 Holger Macht <hmacht@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO CC| |hmacht@novell.com Info Provider| |s.assmann@gmx.de --- Comment #1 from Holger Macht <hmacht@novell.com> 2009-09-30 12:26:19 MDT --- But it works when not using a blank password? Or haven't you tried that? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User s.assmann@gmx.de added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c2 Stefan Assmann <s.assmann@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|s.assmann@gmx.de | --- Comment #2 from Stefan Assmann <s.assmann@gmx.de> 2009-10-01 01:41:21 MDT --- Hi Holger, yes it works fine when a password is specified, but as yast allows you to leave the password blank it should also work without. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User hmacht@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c3 Holger Macht <hmacht@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |rjw@novell.com, | |yast2-maintainers@suse.de --- Comment #3 from Holger Macht <hmacht@novell.com> 2009-10-01 02:08:42 MDT --- Ok, so we have a couple of solutions here: 1. Modify s2disk to accept an empty password 2. Don't allow to set an empty password in YaST 3. Add a warning to YaST that an empty password might cause problems with suspend Open for discussion ;-) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User rjw@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c4 --- Comment #4 from Rafael Wysocki <rjw@novell.com> 2009-10-07 16:02:11 MDT --- I'm not even sure it's directly related to s2disk. Namely, s2disk knows nothing about the encryption of swap and just expects the swap partition to be accessible to it. s2disk can encrypt its image, but this has nothing to do with swap encryption. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User rjw@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c5 --- Comment #5 from Rafael Wysocki <rjw@novell.com> 2009-10-07 16:04:12 MDT --- So, I guess the easiest thing to do would be to disable swap encryption if the password is empty. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 User dutchkind@txoriaskea.org added comment http://bugzilla.novell.com/show_bug.cgi?id=535475#c6 David Kerkhof <dutchkind@txoriaskea.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dutchkind@txoriaskea.org --- Comment #6 from David Kerkhof <dutchkind@txoriaskea.org> 2009-10-16 01:04:58 MDT --- When the password is left empty the swap is encrypted with a random password which is lost at shut down. So every boot you have a fresh swap. So PLEASE don't disable swap encryption when the password is left empty since I then don't have an encrypted swap or I have to type another password at boot! This is in my opinion the way it is meant to be. Concerning hybernate and encrypted swap, if you seach the internet you will find it is impossible to hybernate to an encrypted swap. I made a workaround by creating an extra swap partition that is not used by the system. I add this swap to grub and added a script in /etc/pm/sleep.d which will swapon this swap as the first thing when hibernate is started, and swapoff when the system is resumed. I have tested it and this works great. Of course you would want to change resume so it encrypts the hybernate image to the swap, it doesn't make sense to encrypt your swap and then use an unencrypted hybernate image with all your running stuff open for any visitor. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=535475 http://bugzilla.novell.com/show_bug.cgi?id=535475#c7 --- Comment #7 from Vojtech Zeisek <Vojtech.Zeisek@opensuse.org> 2010-03-14 10:20:52 CET --- I think the way to encrypt disc is to make small /boot and big encrypted LVM containing / and swap. This way works for me (suspending also hibernating). Previously, I had encrypted /home and encrypted swap with blank password and suspending and hibernating worked... -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=535475 https://bugzilla.novell.com/show_bug.cgi?id=535475#c8 Uwe Drechsel <uwedr@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |WONTFIX --- Comment #8 from Uwe Drechsel <uwedr@suse.com> 2011-08-26 12:54:19 CEST --- The lifecycle of openSUSE 11.2 ended on May 12th 2011. I'm closing this bug to make it easier to focus on upcoming releases. Thank you for reporting this issue and we are sorry that we have not be able to fix it before this version reached its end of life. If you would still like to see this bug fixed and are able to reproduce it against a maintained version, please reopen this bug and change the 'version' of this bug to the applicable version. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=535475 https://bugzilla.novell.com/show_bug.cgi?id=535475#c9 --- Comment #9 from Uwe Drechsel <uwedr@suse.com> 2011-08-26 12:58:12 CEST --- The lifecycle of openSUSE 11.2 ended on May 12th 2011. I'm closing this bug to make it easier to focus on upcoming releases. Thank you for reporting this issue and we are sorry that we have not be able to fix it before this version reached its end of life. If you would still like to see this bug fixed and are able to reproduce it against a maintained version, please reopen this bug and change the 'version' of this bug to the applicable version. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com