[Bug 848220] New: entering passphrase during boot unreliable
https://bugzilla.novell.com/show_bug.cgi?id=848220 https://bugzilla.novell.com/show_bug.cgi?id=848220#c0 Summary: entering passphrase during boot unreliable Classification: openSUSE Product: openSUSE 13.1 Version: RC 1 Platform: x86-64 OS/Version: Linux Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: ohering@suse.com QAContact: qa-bugs@suse.de Found By: Outsourced Testing Blocker: --- Created an attachment (id=565480) --> (http://bugzilla.novell.com/attachment.cgi?id=565480) systemd-something-passphrase-console-garbage.jpg 13.1rc2, build 00080, gnome desktop, fresh install. root on primary partition, 2 data mount points on unencrypted LVM partition, 2 data mount points on encrypted LVM partition. during bootup something asks for the passphrase. while doing that the booting proceeds until its realized that mount points are missing. then another something is started to ask for the passphrase. this seems to continue endlessly, yet another something is started. See attached screenshots. The result is that all compete for input and nothing is able to capture the full passphrase. IMO there must be a full, hard, uninteruptible, not-overwritten stop when something is started to ask for the passphrases. As seen in the screenshots, systemd still prints unrelated garbage all over the console screen, instead doing the hard stop and wait for something. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c1
--- Comment #1 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c
Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c2
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c3
--- Comment #3 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c4
--- Comment #4 from Olaf Hering
please describe more precisely your filesystem setup (copy /etc/fstab, /etc/crypttab) so I try to duplicate it.
==> /etc/fstab <== UUID=b3a576df-47e0-4a4e-9490-df6f66cc2217 / ext4 noatime,acl,user_xattr 1 1 /dev/esprimo_m9400_uncrypted/swap swap swap defaults 0 0 /dev/esprimo_m9400_uncrypted/esprimo_os112_root /11.2 ext4 ro,noatime,acl 1 2 UUID=efed2c5a-bc9c-41ff-8321-d1d91c6be87b /boot/sda2 ext3 noatime,acl 1 2 /dev/esprimo_m9400_WDC640_uncrypted-work/dist /dist ext3 noatime,acl 1 2 /dev/esprimo_m9400_WDC640_crypted-olh/olh-maildir /olh/maildir ext3 rw,noatime,acl 1 2 /dev/esprimo_m9400_WDC640_crypted-olh/olh-privat /olh/privat ext3 rw,noatime,acl 1 2 /dev/disk/by-id/ata-WDC_WD6400BEVT-22A0RT0_WD-WX80AB956472-part1 /winxp ntfs-3g ro,users,gid=users,fmask=133,dmask=022,locale=de_DE.UTF-8 0 0 /dev/esprimo_m9400_WDC640_uncrypted-work/work /work ext4 noatime,acl 1 2 ==> /etc/crypttab <== cr_ata-WDC_WD6400BEVT-22A0RT0_WD-WX80AB956472-part6 /dev/disk/by-id/ata-WDC_WD6400BEVT-22A0RT0_WD-WX80AB956472-part6 none none parted /dev/sda unit s print Model: ATA WDC WD6400BEVT-2 (scsi) Disk /dev/sda: 1250263728s Sector size (logical/physical): 512B/512B Partition Table: msdos Number Start End Size Type File system Flags 1 63s 88084394s 88084332s primary ntfs type=07 2 88084395s 89128619s 1044225s primary ext3 boot, type=83 3 89128620s 1237326299s 1148197680s extended type=05 5 89128683s 298841129s 209712447s logical lvm, type=8e 6 298841193s 566226989s 267385797s logical lvm, type=8e 7 566227053s 1237326298s 671099246s logical lvm, type=8e 4 1237327872s 1250263039s 12935168s primary ext4 type=83 blkid /dev/sda1: UUID="501C28A11C288456" TYPE="ntfs" /dev/sda2: LABEL="esprimo_boot" UUID="efed2c5a-bc9c-41ff-8321-d1d91c6be87b" TYPE="ext3" PTTYPE="dos" /dev/sda4: LABEL="esprimo_13.1" UUID="b3a576df-47e0-4a4e-9490-df6f66cc2217" TYPE="ext4" PTTYPE="dos" /dev/sda5: UUID="zMXFuv-00Lk-0NDt-IZLv-EacW-l4p1-UTJkRj" TYPE="LVM2_member" /dev/sda6: UUID="f4438350-85a7-46c0-8c6b-c49387410b75" TYPE="crypto_LUKS" /dev/sda7: UUID="34v5xA-ADGO-vHWc-jkcg-A920-MyS1-OerxLO" TYPE="LVM2_member" /dev/mapper/esprimo_m9400_uncrypted-esprimo_os112_root: LABEL="esprimo_os112_ro" UUID="67f683ad-4f3b-48a1-903e-c9c6fb2d9695" TYPE="ext4" /dev/mapper/esprimo_m9400_uncrypted-swap: LABEL="esprimo_swap" UUID="53d047bb-f19d-40ac-ac16-5180c215905e" TYPE="swap" /dev/mapper/esprimo_m9400_WDC640_uncrypted--work-dist: LABEL="dist" UUID="639b2f47-65f5-4b4c-add7-936ee59f2210" TYPE="ext3" /dev/mapper/esprimo_m9400_WDC640_uncrypted--work-work: LABEL="work" UUID="a558a81b-c388-4e21-bcb8-59e89541b3bf" TYPE="ext4" /dev/mapper/cr_ata-WDC_WD6400BEVT-22A0RT0_WD-WX80AB956472-part6: UUID="C4jRnB-JVVL-e5u1-arhw-f8UM-QB02-fx9qRJ" TYPE="LVM2_member" /dev/mapper/esprimo_m9400_WDC640_crypted--olh-olh--maildir: LABEL="cr_olh-maildir" UUID="c92f0528-c6f1-49ba-8916-7ce80dac0cff" TYPE="ext3" /dev/mapper/esprimo_m9400_WDC640_crypted--olh-olh--privat: LABEL="cr_olh-privat" UUID="954f8b02-7486-4763-b9af-1d94c931cce7" TYPE="ext3" -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c5
Dr. Werner Fink
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c6
--- Comment #6 from Dr. Werner Fink
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c7
--- Comment #7 from Frederic Crozat
Hmmm ... please show
find /etc/systemd/ /usr/lib/systemd/ -name '*crypt*' -ls
IMHO asking the passphrase should have such a strong dependency that other services have to wait on it and only after a timueout the system continue to boot. Normally this is done by systemd-cryptsetup(8), the systemd-cryptsetup-generator(8), and the password agent systemd-ask-password(1)
... maybe in /etc/crypttab there is no timeout nor an nofail option set?
By default, with 13.1, systemd cryptsetup has timeout disabled for prompting the passphrase, so it shouldn't be an issue. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c8
--- Comment #8 from Olaf Hering
(In reply to comment #4)
Indeed the fourth field for the options in your /etc/crypttab shows `none' ... !?
Please try to change this to e.g. timeout=1m,tries=3 or timeout=1m,tries=3,nofail
I tried the latter, this seems to improve it. My 11.4 has luks,timeout=0, but I think I entered that manually at some point. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c9
--- Comment #9 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c10
--- Comment #10 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c11
Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c12
Dr. Werner Fink
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c13
--- Comment #13 from Frederic Crozat
What other info is required? Passphrase handling (at least with plymouth) is now broken since at least 12.1.
This is strange, because it works fine on my own 13.1 system with plymouth and the other systems I'm testing.. So, we need to understand what is different on your system, compared to mine.. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c14
--- Comment #14 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c15
--- Comment #15 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c16
--- Comment #16 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c17
Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c18
--- Comment #18 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c19
Dr. Werner Fink
Does anyone happen to know how systemd dependencies are supposed to work?
This is simply math that is the original insserv (not the current perl script) had calcuated the same dependency chains in past. In physics this is used for (Quantum) Causal History Theory ;) In the original insserv I had also implemented the possiblity to check the dependency chains of the current systemd via dbus call to be able to show up problems before using them. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c20
--- Comment #20 from Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c21
--- Comment #21 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c23
--- Comment #23 from Olaf Hering
https://bugzilla.novell.com/show_bug.cgi?id=848220
https://bugzilla.novell.com/show_bug.cgi?id=848220#c24
--- Comment #24 from Olaf Hering
participants (1)
-
bugzilla_noreply@novell.com