[Bug 1103670] New: Full encryption password prompt with wrong keymap
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670 Bug ID: 1103670 Summary: Full encryption password prompt with wrong keymap Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Bootloader Assignee: jsrain@suse.com Reporter: massimo.burcheri@gmx.de QA Contact: jsrain@suse.com Found By: --- Blocker: --- New installation of LEAP 15.0 with full encryption including /boot does prompt for the grub cryptodisk password but does not respect the DE keymap selected at installation, whereas following password prompts for /etc/crypttab volumes does respect the DE keymap. In combination one need to type "different" passwords for both prompts regarding the different keymaps. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
Jiri Srain
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670#c1
Michael Chang
New installation of LEAP 15.0 with full encryption including /boot does prompt for the grub cryptodisk password but does not respect the DE keymap selected at installation, whereas following password prompts for /etc/crypttab volumes does respect the DE keymap.
Do you use any non ascii character for password ?
In combination one need to type "different" passwords for both prompts regarding the different keymaps.
Would you mind to provide an example to help understanding the problem ? Please note that grub2 input does not support dead key like circumflex. Thanks. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670#c2
--- Comment #2 from Michael Chang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670#c3
--- Comment #3 from Massimo Burcheri
zypper in console-setup zypper in xkbcomp grub2-kbdcomp -o /boot/grub2/de.gkb de
# grub2-kbdcomp -o /boot/grub2.de.gkb de WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan code 0x54 Unknown keyboard scan code 0x65 Unknown keyboard scan code 0x7f Sorry, I can't test this anymore as I changed my LEAP installation to separate /boot partition and /etc/crypttab only for the luksOpen. There the keymap is correct. Would you agree that the LEAP installation should set and install the right grub keymap for grub cryptodisk? Or is this only a rare case on special firmware and default console input? Using the wrong keymap is hard to detect when using a sophisticated password at installation and it's just failing at reboot. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670#c4
--- Comment #4 from Michael Chang
The password contains a '-' character which is on different keycode for the US and the german DE layout.
(In reply to Michael Chang from comment #2)
zypper in console-setup zypper in xkbcomp grub2-kbdcomp -o /boot/grub2/de.gkb de
# grub2-kbdcomp -o /boot/grub2.de.gkb de WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" WARNING: Unknown X keysym "dead_belowmacron" Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan identifier KP_Comma Unknown keyboard scan code 0x54 Unknown keyboard scan code 0x65 Unknown keyboard scan code 0x7f
The warning looks harmless to me. It happened for me also but my testing went fine.
Sorry, I can't test this anymore as I changed my LEAP installation to separate /boot partition and /etc/crypttab only for the luksOpen. There the keymap is correct.
You can. Use hotkey 'c' in grub menu to enter grub command mode for typing and test the keymap.
Would you agree that the LEAP installation should set and install the right grub keymap for grub cryptodisk?
Yes.
Or is this only a rare case on special firmware and default console input?
If you switch to use another keyboard with layout different to your bios default, the problem could happen. And unfortunately many if them do not offer option to change keyboard layout.
Using the wrong keymap is hard to detect when using a sophisticated password at installation and it's just failing at reboot.
I agree it is frustrating and we have to figure out a better plan. We obviously need to change keymap in grub2 for the password and doing it manually is a bit much for casual user. And in case of regression by using at_keyboard, we'd better constrain it when text input is required for booting. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670#c5
Michael Chang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
Michael Chang
http://bugzilla.opensuse.org/show_bug.cgi?id=1103670
Michael Chang
participants (1)
-
bugzilla_noreply@novell.com