Bug ID 1184419
Summary Leap 15.3 cannot handle encrypted swap with random key
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.3
Hardware x86-64
OS Other
Status NEW
Severity Major
Priority P5 - None
Component Kernel
Assignee kernel-bugs@opensuse.org
Reporter nwr10cst-oslnx@yahoo.com
QA Contact qa-bugs@suse.de
Found By ---
Blocker --- 

User-Agent:       Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101
Firefox/78.0
Build Identifier: 

I heard about this problem in a forum post:

https://forums.opensuse.org/showthread.php/552398-encrypted-swap-on-raid1-not-working

I then reproduced the problem in a KVM virtual machine (I did not use RAID).

I used the expert partitioner, and allocated a 2G partition for swap.  I then
attempted to encrypt that partition with a random key.  The installer seemed to
handle this well, except I ended up with an error message.

I was able to continue and ignore the error message.  I had to click "Continue"
several to proceed to the install.

The installed system looked fine.  But, on boot, in prompted me for an
encryption key for "cr_swap".  I hit CTRL-D to skip that.  The system booted,
but without swap.

I then configured the Leap 15.2 update repo as an additional repo. And I
installed kernel-default-5.3.18-lp152.66.2 from there.

Rebooting, I used the grub menu to boot with that Leap 15.2 kernel. And it
booted just fine with the swap working as it should.

It looks as if this kind of encryption is supported by the 15.2 kernel, but is
not supported by the 15.3 kernel.

Reproducible: Always




In my opinion, this is a serious security issue and should be a show stopper
for Leap 15.3 (until fixed).

I'll note that bug 1183063 is another (different) crypto-related issue with
Leap 15.3

You are receiving this mail because: