3223 – systemd update to 37-6 broke mounting encrypted fs during boot.

Bug 3223 - systemd update to 37-6 broke mounting encrypted fs during boot.

Summary: systemd update to 37-6 broke mounting encrypted fs during boot.

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	RPM Packages (show other bugs)
Version:	Cauldron
Hardware:	x86_64 Linux

Priority:	release_blocker Severity: critical
Target Milestone:	---
Assignee:	D Morgan
QA Contact:

URL:
Whiteboard:	QA
Keywords:

Depends on:
Blocks:	1292 2120
	Show dependency tree / graph

Reported:	2011-10-29 16:49 CEST by Jari S
Modified:	2012-02-11 11:53 CET (History)
CC List:	5 users (show)

See Also:
Source RPM:	systemd-37-6.mga2.src.rpm
CVE:
Status comment:

Attachments
Booting failed if automounted encrypted partition in /etc/fstab (983.40 KB, image/jpeg) 2012-01-27 16:44 CET, Jari S	Details
Booting failed if automounted encrypted partition in /etc/fstab (348.05 KB, image/png) 2012-01-27 17:01 CET, Jari S	Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Description Jari S 2011-10-29 16:49:43 CEST

Description of problem:
Systemd update to 37-6 on 29.10.2011 broke my encrypted partition automount. Problem probably is with systemd not asking the password anymore and failing due not being able to mount partition configured to be automatically mounted during boot.

Version-Release number of selected component (if applicable):
systemd-37-6.mga2

How reproducible:
Always.

Steps to Reproduce:
1. Create encrypted partition using cryptsetup
2. Configure /etc/crypttab to include correct config
3. Configure /etc/fstab to automount secure partition using "LABEL="
4. Reboot

Manuel Hiebel 2011-10-29 16:53:10 CEST

Blocks: (none) => 2120

Comment 1 Sander Lepik 2011-10-29 18:11:36 CEST

Are you using dracut or mkinitrd?

CC: (none) => sander.lepik

Comment 2 Jari S 2011-10-29 18:39:38 CEST

mkinitrd

Comment 3 Sander Lepik 2011-10-29 20:29:23 CEST

Please test with dracut as well as it will be preferred in the future.

Comment 4 Jari S 2011-10-30 06:34:04 CET

Same thing with dracut and last nights' systemd update to 37-7.

D Morgan 2011-10-31 00:35:56 CET

Priority: Normal => release_blocker
CC: (none) => dmorganec
Severity: normal => critical

Comment 5 Oliver Burger 2011-11-07 17:04:24 CET

Same thing, when doing a cauldron installation using the boot.iso.
The encrypted device can't be mounted during the installation and it is not mounted at boot time.

CC: (none) => oliver.bgr

Comment 6 Oliver Burger 2011-11-28 12:47:59 CET

Any news on this one?

Colin, I assigned it to you, please reassign to someone else, if it's not your bug.

CC: (none) => mageia
Assignee: bugsquad => dmorganec

Comment 7 Colin Guthrie 2011-11-28 12:58:50 CET

Sorry no input yet. I've just not had time to look at this as I don't have this kind of setup to hand easily. I was hoping to setup various VMs etc, but just not gotten around to it yet.

If you have the ability to debug it Oliver, then please do by all means and I can offer advice where applicable.

Comment 8 Jari S 2011-12-09 02:42:50 CET

The boot process stops between last "Started Initialize storage subsystems (RAID, LVM, etc.)." message and "Starting LSB: Supports the direct execution of binary formats...." message. I does not give any password question nor does it indicate finding any encrypted partition. I do have correctly set /etc/crypttab as it has worked before.

Comment 9 Colin Guthrie 2011-12-09 10:57:29 CET

Just to double check do you now use dracut as initrd? If not, please try it. I'm only suggesting this as it could related to how udev is used to identify encrypted partitions. This is a bit of a random suggestion as I've still not had time to look fully into this issue.

Comment 10 Jari S 2011-12-09 11:42:42 CET

Dracut. I started with mkinitrd and moved to dracut. Same problem remains.

Comment 11 Oliver Burger 2011-12-14 09:45:55 CET

Strangely enough:
When switching to the AMD graphics in drakx11, the system asks for the decryption password at boot and the partition get decrypted.
When switching to the Sandy Bridge integrated graphics, the system does not ask for the password and thus the partition is not decrypted.

The problem is, the X server doesn't run, when using the AMD graphics, but that's off topic here.

Comment 12 Colin Guthrie 2011-12-14 10:48:45 CET

I wonder if this is KMS integration in plymouth. I had intended to update our plymouth to the git master version (similar to fedora) which may integrate better when asking for passwords. I guess the AMD graphics disable KMS.

IIRC you can pass nokms=1 (tho' not sure if this works with dracut...) to disable kms even on intel so that could be a test if you can figure out the necessary foo to do it...

Comment 13 Manuel Hiebel 2012-01-05 19:08:36 CET

General ping for Alpha 3

Whiteboard: (none) => QA

Dan Fandrich 2012-01-19 08:23:50 CET

CC: (none) => dan

Comment 14 D Morgan 2012-01-27 00:17:06 CET

can you test with systemd 39 ?

Comment 15 Jari S 2012-01-27 16:19:52 CET

Tested with systemd 39 but problem is still there.

Comment 16 Colin Guthrie 2012-01-27 16:22:20 CET

I suspect it's more of a plymouth issue over all. Can you remove the "splash=.." option from the kernel command line - does it ask you for a password then?

Comment 17 Jari S 2012-01-27 16:44:46 CET

Created attachment 1444 [details]
Booting failed if automounted encrypted partition in /etc/fstab

Comment 18 Jari S 2012-01-27 16:46:34 CET

I tried with no "splash=..." but no luck. Attachment 1444 [details] contains image on where the boot ends up.

Comment 19 Colin Guthrie 2012-01-27 16:55:10 CET

OK, so I guess /mnt/secure is the problem?

As a workaround, you can add noauto to the fstab options, but can can you show me the current line in fstab such that I can create a similar setup here to reproduce.

Cheers

Comment 20 Jari S 2012-01-27 17:01:27 CET

Created attachment 1445 [details]
Booting failed if automounted encrypted partition in /etc/fstab

Comment 21 Jari S 2012-01-27 17:04:35 CET

# grep secure /etc/fstab
LABEL=secure /mnt/secure ext4 discard,acl,noatime 0 0
# cat /etc/crypttab
secure UUID="<blk_id_removed>"

Could you please remove attachment 1444 [details]. I cannot do it. I made another image which is smaller, attachment 1445 [details].

Comment 22 Oliver Burger 2012-01-27 17:08:16 CET

No change without "splash=..." line.
But the strange behaviour described in comment 11, is gone.
The system does not ask for any password, no matter what kernel command line and graphics driver used.

Comment 23 Colin Guthrie 2012-01-27 17:13:17 CET

Comment on attachment 1444 [details]
Booting failed if automounted encrypted partition in /etc/fstab

I can only obsolete it, not delete it.

Attachment 1444 is obsolete: 0 => 1

Comment 24 Jari S 2012-01-27 17:15:12 CET

(In reply to comment #23)
> 
> I can only obsolete it, not delete it.
>
 Ok. Thanks anyway for obsoleting, hopefully someone will eventually delete it.

Marja Van Waes 2012-01-29 11:06:58 CET

Blocks: (none) => 1292

Comment 25 D Morgan 2012-02-11 03:32:52 CET

what about this bug with systemd 40 ?

Comment 26 Jari S 2012-02-11 03:40:36 CET

The problem is solved. Encrypted partition can be mounted during boot so from my point of view this bug can be closed.

Comment 27 Oliver Burger 2012-02-11 09:36:20 CET

Confirming, it's working again as it should be.

Comment 28 Sander Lepik 2012-02-11 11:53:27 CET

Closing as fixed then.

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Note You need to log in before you can comment on or make changes to this bug.