[Bug 723406] New: encrypted /var is not accessed by initrd
https://bugzilla.novell.com/show_bug.cgi?id=723406 https://bugzilla.novell.com/show_bug.cgi?id=723406#c0 Summary: encrypted /var is not accessed by initrd Classification: openSUSE Product: openSUSE 11.4 Version: Final Platform: x86-64 OS/Version: openSUSE 11.4 Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: yoshi314@gmail.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:8.0) Gecko/20100101 Firefox/8.0 I've installed opensuse 11.4 on a following layout root is on ssd. it's a GPT partition layout /var is on hdd, as a lvm volume which is inside of encrypted PV. 11.4 installer opens encrypted device and discovers lvm volumes. Setup goes without issues. Generated initrd does not include luks support (i've filed a bug about that), and after rebuilding with mkinitrd -A fails to open the luks device - it claims that aes-cbc-essiv is not supported by kernel, even though the installer kernel had no issues opening it. I've tried updating to tumbleweed kernel. Regenerated the initrd (mkinitrd -A as before). Hit similar issue as before. Either mkinitrd -A does not include crypto modules, or there is something wrong with stock kernel configuration. Using a dracut generated initrd from custom built vanilla kernel works with this installation. Reproducible: Always Steps to Reproduce: 1. Install system in aforementioned partition setup 2. Rebuild initrd 3. enter luks password at boot, no lvm volumes are found 4. manual attempts to use luksOpen from recovery shell fail due to errors suggesting lacking crypto features 5. Try again with tumbleweed kernel and -A generated kernel 6. no lvm volumes are found; will check for more info booted with parameters luks=box luks_box=/dev/sda1 Actual Results: system waits for /var lvm volume and times out. eventual recovery shell or botched boot. Expected Results: normal system boot luks volume info : LUKS header information for /dev/sda1 Version: 1 Cipher name: aes Cipher mode: cbc-essiv:sha256 Hash spec: sha1 Payload offset: 4096 (....) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=723406
https://bugzilla.novell.com/show_bug.cgi?id=723406#c
zj jia
https://bugzilla.novell.com/show_bug.cgi?id=723406
https://bugzilla.novell.com/show_bug.cgi?id=723406#c1
Michal Marek
https://bugzilla.novell.com/show_bug.cgi?id=723406
https://bugzilla.novell.com/show_bug.cgi?id=723406#c2
marcin kowalski
https://bugzilla.novell.com/show_bug.cgi?id=723406
https://bugzilla.novell.com/show_bug.cgi?id=723406#c3
--- Comment #3 from marcin kowalski
https://bugzilla.novell.com/show_bug.cgi?id=723406
https://bugzilla.novell.com/show_bug.cgi?id=723406#c4
Michal Marek
participants (1)
-
bugzilla_noreply@novell.com