[Bug 1413754] Re: decrypt_keyctl crashes kernel

Brian Murray brian at ubuntu.com
Wed Oct 7 18:40:44 UTC 2015 

** Tags added: vivid

** Changed in: cryptsetup (Ubuntu)
   Importance: Undecided => Medium

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to cryptsetup in Ubuntu.
https://bugs.launchpad.net/bugs/1413754

Title:
  decrypt_keyctl crashes kernel

Status in cryptsetup package in Ubuntu:
  Confirmed

Bug description:
  Hi,

  I have a computer with an encrypted raid array (encrypted inside mdadm
  raid, and lvm inside encrypted device), thus just a single encrypted
  device. Worked pretty well for years.

  Recently, I've added a small SSD as a system disk with root and swap
  to make the machine faster. Now I had three encrypted block devices.
  Since it was annoying to enter the same password three  times, I
  changed the /etc/crypttab into

  sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard
  sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard,swap
  md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl

  to enter the password only once per boot.

  Now, the system wasn't booting properly anymore. It came to asking for
  the password in a regular way, but once I entered the password, system
  went berserk. It either froze completely, or ignored most of the
  keyboard keys, became extremely slow, sometimes came to the init
  processes, but hang. Even if I was lucky enough to get a rescue root
  shell, system did not work properly, it just did not make any sense
  and seemed somewhat crazy. Impossible to use, and extremely slow.

  Problems were permanent and happened with every boot, although
  differing, but were completely gone after I used a rescue CDROM to
  change the /etc/crypttab to its original state

  sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
  sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
  md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

  and rebuild the initramdisk. Now the system works just normal again
  (and keeps asking me for the password three times).

  
  So it pretty much looks as if decrypt_keyctl is somewhat incompatible with the kernel and somehow breaks kernel structures. 

  regards
  Hadmut

  ProblemType: Bug
  DistroRelease: Ubuntu 14.04
  Package: cryptsetup 2:1.6.1-1ubuntu1
  ProcVersionSignature: Ubuntu 3.13.0-43.72-generic 3.13.11.11
  Uname: Linux 3.13.0-43-generic x86_64
  NonfreeKernelModules: zfs zunicode zavl zcommon znvpair
  ApportVersion: 2.14.1-0ubuntu3.6
  Architecture: amd64
  CurrentDesktop: XFCE
  Date: Thu Jan 22 22:10:21 2015
  SourcePackage: cryptsetup
  UpgradeStatus: No upgrade log present (probably fresh install)
  crypttab:
   sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
   sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
   md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cryptsetup/+bug/1413754/+subscriptions

More information about the foundations-bugs mailing list