[Bug 1352578] Re: Manual Encrypted LVM Broken in Xubuntu 14.04.1 Installer

John Ross johnross at johnross.com
Mon Aug 4 22:25:51 UTC 2014 

** Information type changed from Private Security to Public

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ubiquity in Ubuntu.
https://bugs.launchpad.net/bugs/1352578

Title:
  Manual Encrypted LVM Broken in Xubuntu 14.04.1 Installer

Status in “ubiquity” package in Ubuntu:
  New

Bug description:
  I believe the package is Ubiquity, but I could be wrong. Please advise
  and revise accordingly.

   In any case, the issue at hand is associated with the package that
  runs directly from the installation media and handles manual
  partitioning, encrypting, and formatting of the harddrives. It affects
  Xubuntu 14.04 and 14.04.1 installation media. I have only tested
  AMD/X64. I would expect it is present in i386 but have not tested and
  confirmed this to be true. Likewise, I would also presume it may
  affect other releases of 14.04 such as Ubuntu, Kubuntu, etc.  Again, I
  have not had time to test all these configurations.

  The issue is that the installer does NOT allow one to manually
  configure an encrypted LVM setup. There is of course an automated
  encrypted LVM setup does appear to work, but the manual "something
  else" option is broken when it comes to LVM. My tests have shown that
  it is possible to manually create partitions , encrypted containers,
  and specify formatting and mount points, but there is (as near as I
  can determine) NOT any option to configure LVM on top of encrypted
  containers.  This is a serious omission!

  Historically, the LVM has been used on top of the encryption
  containers to enable the swap space to be safely encrypted.  I have
  used the alternate installers to configure manual encrypted LVM
  installations on Xubuntu 12.04 and previous releases of Ubuntu going
  back to 7.04. The lack of manual encrypted LVM is a critical omission
  since the default automatic encrypted LVM solution is often
  inappropriate for the hardware or otherwise unacceptable to the user's
  needs.

  I have provided a screen shot showing options available for
  configuring an encrypted container using a VMWare test installation.
  (Note: I have the same result when testing on real hardware.)  Anyway,
  at this point, in the install process the old 12.04 series alternate
  installer would give the option to setup LVM. The 14.04 installer
  lacks this feature and presents the user only with options to format
  the partition or assign it as swap space. There needs to be an option
  somewhere to setup LVM but it does not exist?

  I apologize in advance if I have missed something here. Please educate
  me if I am doing something wrong.

  If I am correct and there is a workaround to solve the problem please
  reply as otherwise I am unable to upgrade to 14.04. Thanks!

  Lastly, I have indicated that this bug is a security vulnerability
  because not having an manual encrypted LVM option might lead a
  potential user to proceed with an unencrypted solution rather than a
  preferred encrypted solution.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ubiquity/+bug/1352578/+subscriptions

More information about the foundations-bugs mailing list