[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
I fixed/workarounded this by removing the cryptswap line from /etc/crypttab and instead adding swap to /etc/fstab (non-encrypted). Then I rebooted and the password prompt didn't come up anymore. This only started to come after I had some booting problems because I messed it up so I had to use boot-repair to get it to work somehow and fix the rest myself. This might be considered unsafe, but it works for me and should be suitable for my needs. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
I have this same bug in xenial. I see a line /dev/mapper/cryptswap1 none swap sw 0 0 in /etc/fstab I commented that line but I do not understand how to fix the issue and have a properly set-up encrypted swap. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
I forgot to mention that in /etc/crypttab I have cryptswap1 UUID=405a067e-5d92-4130-b8a6-f54c5ae33298 /dev/urandom swap,offset=1024,cipher=aes-xts-plain64 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
@Alexander: Please file a new bug report for 16.04, including your /etc/fstab, /etc/crypttab, and the output of "sudo blkid". -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Also showing for me in Ubuntu 16.06, in boot and update terminal ** Attachment added: "Screenshot of bug while updating" https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1453738/+attachment/4662880/+files/Screenshot%20from%202016-05-14%2015-12-01.png -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
This bug is showing up again in 16.04. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Yea, when will be on 14.04? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Will this be fixed for 14.04? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Changed in: ecryptfs-utils (Ubuntu Wily) Milestone: ubuntu-15.07 => None ** Changed in: ecryptfs-utils (Ubuntu Trusty) Milestone: ubuntu-14.04.3 => ubuntu-14.04.4 ** Changed in: ecryptfs-utils (Ubuntu Vivid) Milestone: None => vivid-updates -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Still broken on 15.04 GPT + encrypted home directory install. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Branch linked: lp:ecryptfs -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
This bug was fixed in the package ecryptfs-utils - 107-0ubuntu1.2 --- ecryptfs-utils (107-0ubuntu1.2) vivid-proposed; urgency=medium * Add setup-swap-check-links.patch: When commenting out existing swap, also consider device symlinks like /dev/mapper/ubuntu--vg-swap_1 or /dev/disks/by-uuid/ into account. Fixes broken cryptswap under LVM and manual setups. (LP: #1453738) * debian/ecryptfs-utils.postinst: On upgrade, uncomment underlying unencrypted swap partitions that are referred to by a device link when crypttab and fstab have a "cryptswap*" device referring to them. -- Martin Pitt Thu, 09 Jul 2015 09:04:27 +0200 ** Changed in: ecryptfs-utils (Ubuntu Vivid) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
# sudo apt-get install ecryptfs-utils/vivid-proposed Reading package lists... Done Building dependency tree Reading state information... Done Selected version '107-0ubuntu1.2' (Ubuntu:15.04/vivid-proposed [amd64]) for 'ecryptfs-utils' Suggested packages: opencryptoki zescrow-client The following packages will be upgraded: ecryptfs-utils 1 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. Need to get 0 B/105 kB of archives. After this operation, 4 096 B of additional disk space will be used. (Reading database ... 271391 files and directories currently installed.) Preparing to unpack .../ecryptfs-utils_107-0ubuntu1.2_amd64.deb ... Unpacking ecryptfs-utils (107-0ubuntu1.2) over (107-0ubuntu1.1) ... Processing triggers for man-db (2.7.0.2-5) ... Setting up ecryptfs-utils (107-0ubuntu1.2) ... Disabling unencrypted swap device /dev/mapper/ubuntu--vg-swap_1 in /etc/fstab to enable cryptswap1 => entry has been removed from fstab confirmed fix is ok -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
sorry, forgot some infos: tested package ecryptfs-utils version 107-0ubuntu1.2 updated from ecryptfs-utils version 107-0ubuntu1.1 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Tested the fix by upgrading an exisiting broken install. All good. Following message was shown: Disabling unencrypted swap device /dev/mapper/ubuntu--gnome--vg-swap_1 in /etc/fstab to enable cryptswap1 /etc/fstab was fixed. ** Tags removed: verification-needed ** Tags added: verification-done -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
For the SRU the step that should be tested most is upgrading an existing broken install. That should fix up /etc/fstab. I'm not sure how to teach the installers "install updates" option to also install from -proposed. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
How does one test this when it happens during installation? Does the 15.04 installer ISO get updated? Can we specify the Live Installer flash drive to apply the package via "dpkg" or "apt-get"? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Branch linked: lp:ubuntu/vivid-proposed/ecryptfs-utils -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Hello Denny, or anyone else affected, Accepted ecryptfs-utils into vivid-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/ecryptfs- utils/107-0ubuntu1.2 in a few hours, and then in the -proposed repository. Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users. If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision. Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance! ** Changed in: ecryptfs-utils (Ubuntu Vivid) Status: In Progress => Fix Committed ** Tags added: verification-needed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
This bug was fixed in the package ecryptfs-utils - 107-0ubuntu3 --- ecryptfs-utils (107-0ubuntu3) wily; urgency=medium * Rename libecryptfs0 to libecryptfs1 and adjust the packaging. It has actually shipped libecryptfs.so.1 since at least trusty. Add C/R/P: libecryptfs0 for smoother upgrades, this needs to be kept until after 16.04 LTS. ecryptfs-utils (107-0ubuntu2) wily; urgency=medium * Add setup-swap-check-links.patch: When commenting out existing swap, also consider device symlinks like /dev/mapper/ubuntu--vg-swap_1 or /dev/disks/by-uuid/ into account. Fixes broken cryptswap under LVM and manual setups. (LP: #1453738) * debian/ecryptfs-utils.postinst: On upgrade, uncomment underlying unencrypted swap partitions that are referred to by a device link when crypttab and fstab have a "cryptswap*" device referring to them. -- Martin Pitt Thu, 09 Jul 2015 12:20:47 +0200 ** Changed in: ecryptfs-utils (Ubuntu Wily) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Branch linked: lp:ubuntu/wily-proposed/ecryptfs-utils -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Wily fix uploaded. ** Changed in: ecryptfs-utils (Ubuntu Wily) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
This is the debdiff for vivid which I just uploaded. I verified that it repairs /etc/fstab and leads to a correctly booting system with encrypted swap for a vivid LVM+ecryptfs installation. It also behaves sufficiently correctly for an upgrade where the swap partition has been wiped by ubiquity from bug 953875. ** Patch added: "ecryptfs-utils vivid debdiff" https://bugs.launchpad.net/ubuntu/wily/+source/ecryptfs-utils/+bug/1453738/+attachment/4426897/+files/vivid.debdiff ** Changed in: ecryptfs-utils (Ubuntu Vivid) Status: Triaged => In Progress ** Description changed: When installing Ubuntu with "Use LVM" (but not encryption!), and "encrypt my home dir", the installer adds the original unencrypted swap to fstab. Then, ecryptfs-setup-swap keeps that, and additionally configures an encrypted swap via an UUID and without offset (which would trigger bug 953875 again!), so that you end up with *two* swap configs for one and the same partition, once unencrypted and once encrypted: fstab: /dev/mapper/ubuntu--vg-swap_1 none swap sw 0 0 /dev/mapper/cryptswap1 none swap sw 0 0 crypttab: cryptswap1 UUID=f636d7ef-9405-482d-a90a-5ba67026fcfb /dev/urandom swap,offset=1024,cipher=aes-xts-plain64 (UUID is for ubuntubuntu--vg-swap_1). This can't work, as the unencrypted one is faster, so trying to set up the encrypted one fails. + + SRU TEST CASE: + -- + - Install 15.04 with LVM (no encryption) and select "encrypt my home dir" + - Boot will ask you for a (nonexisting) passphrase for the swap partition; press Enter + - Install the update + - Reboot and verified that the bogus passphrase question is gone + - Verify that "swapon -s" has a swap partition (usually dm-2), and that /dev/mapper/cryptswap1 points to that. It should NOT be the unencrypted /dev/mapper/ubuntu--vg-swap_1!. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
I just did an LVM+ecryptfs installation on trusty, and it turns out that the even bigger breakage of bug 953875 trumps this bug -- i. e. in trusty you have a wiped /dev/mapper/ubuntu--vg-swap_1 due to the ubiquity part of that bug, thus the device in /etc/crypttab is invalid, and the invalid /etc/fstab mount is displayed quickly by mountall (in plymouth) but does not block the boot. Thus there is no security issue for trusty, just no swap and wasted disk space. Once we fix bug 953875 in trusty this one should get fixed as well, though. ** Changed in: ecryptfs-utils (Ubuntu Trusty) Importance: High => Medium ** Description changed: When installing Ubuntu with "Use LVM" (but not encryption!), and "encrypt my home dir", the installer adds the original unencrypted swap to fstab. Then, ecryptfs-setup-swap keeps that, and additionally configures an encrypted swap via an UUID and without offset (which would - trigger bug 953857 again!), so that you end up with *two* swap configs + trigger bug 953875 again!), so that you end up with *two* swap configs for one and the same partition, once unencrypted and once encrypted: fstab: /dev/mapper/ubuntu--vg-swap_1 none swap sw 0 0 /dev/mapper/cryptswap1 none swap sw 0 0 crypttab: cryptswap1 UUID=f636d7ef-9405-482d-a90a-5ba67026fcfb /dev/urandom swap,offset=1024,cipher=aes-xts-plain64 (UUID is for ubuntubuntu--vg-swap_1). This can't work, as the unencrypted one is faster, so trying to set up the encrypted one fails. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Utopic is EOL in two weeks, let's not bother. ** Changed in: ecryptfs-utils (Ubuntu Utopic) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Changed in: ecryptfs-utils (Ubuntu Wily) Status: Triaged => In Progress ** Changed in: ecryptfs-utils (Ubuntu Wily) Assignee: (unassigned) => Martin Pitt (pitti) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Notes for myself, please ignore. This resets what ecryptfs-setup-swap does and re-runs it, for testing a fixed version: sudo sed -i '/cryptswap/d' /etc/fstab /etc/crypttab && sudo sh -ex /usr/bin/ecryptfs-setup-swap --force; echo " fstab ---"; grep swap /etc/fstab; echo "--- crypttab "; cat /etc/crypttab; echo "--- swap stat ---"; swapon -s The problem is in the loop that tries to comment out existing swap from /etc/fstab: It only checks for UUID= and the resolved name like /dev/dm-1, but it does not take any symlinks like "/dev/mapper/ubuntu --vg-swap_1 -> ../dm-1" into account. This can be fixed with --- /usr/bin/ecryptfs-setup-swap2015-03-28 01:37:38.0 +0100 +++ ecryptfs-setup-swap 2015-07-09 08:51:38.554860202 +0200 @@ -149,7 +149,9 @@ for swap in $swaps; do info `gettext "Setting up swap:"` "[$swap]" uuid=$(blkid -o value -s UUID $swap) - for target in "UUID=$uuid" $swap; do + # /etc/fstab might use a symlink like /dev/mapper/ubuntu--vg-swap_1 + links=$(for d in $(udevadm info --query=symlink -n /dev/dm-1); do echo /dev/$d; done) + for target in "UUID=$uuid" $swap $links; do if [ -n "$target" ] && grep -qs "^$target\s\+" /etc/fstab; then sed -i "s:^$target\s\+:\#$target :" /etc/fstab warn "Commented out your unencrypted swap from /etc/fstab" This then produces fstab --- #/dev/mapper/ubuntu--vg-swap_1 noneswapsw 0 0 /dev/mapper/cryptswap1 none swap sw 0 0 --- crypttab cryptswap1 UUID=ddec94de-8a98-4e95-bf76-a01e79029f35 /dev/urandom swap,offset=1024,cipher=aes-xts-plain64 which works fine: lrwxrwxrwx 1 root root 7 Jul 9 08:55 /dev/mapper/cryptswap1 -> ../dm-2 $ sudo swapon -s FilenameTypeSizeUsedPriority /dev/dm-2 partition 2096636 0 -1 Now we need to clean this up on upgrades. The trick there is to avoid reintroducing bug 953875, from installations which don't have the "offset=" in crypttab. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
This is fixed on my machine. Thanks for your help! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Confirming problem and fix. Installed Ubuntu 15.04 desktop amd64 from standard ISO downloaded about a week ago. Chose to encrypt whole drive and encrypt home directory. When running apt-get upgrade, was getting asked for the crypt drive password over and over. Commented out the /dev/mapper/ubuntu--vg-swap_1 line in /etc/fstab then rebooted. This problem went away. A scripted way to comment out the offending fstab line is part of my Ubuntu install script at https://github.com/convissor/ubuntu_laptop_installation/blob/15.04/setup.sh -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
I confirm symptoms using fresh install of curernt Ubuntu 15.04 desktop amd64 .iso installed using VirtualBox VMDK. When I open a terminal and do "sudo apt-get update && sudo apt-get upgrade", then apt runs as expected, but it prompts for the swap password many times. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
Please, please, please disable swap entirely on Ubuntu (wily) or later, and instruct people to 'sudo apt-get install swapspace' if they simply can't live without swap. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
We need to fix existing stables at least, including trusty. Even though upstart doesn't give you a hint/error about the broken swap configuration, we are still using unencrypted swap there unintentionally. For an SRU we need to extend our horrible ecryptfs postinst hack to detect this situation, apply the "offset=" to crypttab, and comment out the unencrypted swap from /etc/fstab. Given that we have shipped broken swap partitions in pretty much every scenario with ecryptfs (bug 953875, this bug, and to a lesser degree bug 1447282), and static swap partitions are also inflexible and unnecessary on most modern hardware, we should also consider (for wily and later) to entirely stop configuring them, and consider other solutions like "swapspace". -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1453738] Re: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap
** Also affects: ecryptfs-utils (Ubuntu Wily) Importance: High Status: Triaged ** Changed in: ecryptfs-utils (Ubuntu Wily) Milestone: None => ubuntu-15.07 ** Also affects: ecryptfs-utils (Ubuntu Trusty) Importance: Undecided Status: New ** Also affects: ecryptfs-utils (Ubuntu Vivid) Importance: Undecided Status: New ** Also affects: ecryptfs-utils (Ubuntu Utopic) Importance: Undecided Status: New ** Changed in: ecryptfs-utils (Ubuntu Trusty) Milestone: None => ubuntu-14.04.3 ** Changed in: ecryptfs-utils (Ubuntu Trusty) Importance: Undecided => High ** Changed in: ecryptfs-utils (Ubuntu Utopic) Importance: Undecided => High ** Changed in: ecryptfs-utils (Ubuntu Vivid) Importance: Undecided => High ** Changed in: ecryptfs-utils (Ubuntu Trusty) Status: New => Triaged ** Changed in: ecryptfs-utils (Ubuntu Utopic) Status: New => Triaged ** Changed in: ecryptfs-utils (Ubuntu Vivid) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1453738 Title: installer in LVM mode sets up broken encrypted swap, using duplicate unencrypted swap To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/1453738/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
