[Bug 739073] New: Support of /etc/cryptotab silently dropped, no conversion done (Found after upgrade from 11.3)
https://bugzilla.novell.com/show_bug.cgi?id=739073 https://bugzilla.novell.com/show_bug.cgi?id=739073#c0 Summary: Support of /etc/cryptotab silently dropped, no conversion done (Found after upgrade from 11.3) Classification: openSUSE Product: openSUSE 12.1 Version: Final Platform: i586 OS/Version: openSUSE 11.3 Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: Ulrich.Windl@rz.uni-regensburg.de QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux i686; rv:9.0) Gecko/20111216 Firefox/9.0 SeaMonkey/2.6 When upgrading (due to end of life) from openSUSE 11.3 to 12.1, there was not notification about /etc/cryptotab being no longer supported in openSUSE 12.1. The upgrade started, but after finishing that, I found that I could not log in for no obvious reason. Investigating the problem I found that my encrypted /home was not mounted. There was no password prompt either. I found out that the current rccrypto refuses to handle the old /etc/cryptotab. I also found no notice in either the reference manual, nor in the release notes about that. So I wondered how to fix that disaster (having no access to all my personal files). Fortunately I found "convert_cryptotab" that helped me: My old cat /etc/cryptotab hat "/dev/loop0 /dev/sysVG/homeLV /home ext3 twofish256 acl,user_xattr" inside, while the new /etc/crypttab needed "cryptotab0 /dev/sysVG/homeLV none cipher=twofish-cbc-plain,hash=sha512,size=256,timeout=120". Reproducible: Always Steps to Reproduce: 1. Upgrade an older system using an encrypted filesystem to 12.1 Actual Results: There is no warning before upgrade. You cannot access your filesystem any more: You are not asked for a pass phrase any more. The documentation does not help you. You will curse the product. Expected Results: There should be a warning before upgrade about dropping support for the existing /etc/cryptotab. You should be able to access your date after upgrade. There should be documentation for the encrypted filesystem setup in case of emergencies. You should like the product. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c
Andreas Jaeger
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c1
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c2
Karl Eichwalder
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c3
--- Comment #3 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c4
Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c5
Karl Eichwalder
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c6
--- Comment #6 from Ulrich Windl
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c7
Karl Eichwalder
(In reply to comment #5) I'd like to point out that "ancient" mean that it still worked in OpenSUSE 11.3. Also I think "deprecated" is too weak, because it actually stopped working. Furthermore "convert_cryptotab" (AFAIK) only converts the syntax of some configuration file, but it does not convert the data representation on the device. So if the data representation itself is considered deprecated, says so, and give instruction how to convert the data into a future-safe representation.
lnussel, coolo, what do you think, please? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c8
--- Comment #8 from Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c9
--- Comment #9 from Karl Eichwalder
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c10
Karl Eichwalder
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c11
--- Comment #11 from Benjamin Brunner
https://bugzilla.novell.com/show_bug.cgi?id=739073
https://bugzilla.novell.com/show_bug.cgi?id=739073#c12
Benjamin Brunner
participants (1)
-
bugzilla_noreply@novell.com