From debbugs-submit-bounces@debbugs.gnu.org Tue Nov 25 23:27:48 2014 Received: (at submit) by debbugs.gnu.org; 26 Nov 2014 04:27:48 +0000 Received: from localhost ([127.0.0.1]:45521 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtUCi-0005HB-4C for submit@debbugs.gnu.org; Tue, 25 Nov 2014 23:27:48 -0500 Received: from eggs.gnu.org ([208.118.235.92]:39067) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtUCg-0005H4-CL for submit@debbugs.gnu.org; Tue, 25 Nov 2014 23:27:46 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XtUCX-00082x-2P for submit@debbugs.gnu.org; Tue, 25 Nov 2014 23:27:46 -0500 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=0.8 required=5.0 tests=BAYES_50 autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:48138) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XtUCW-00082t-W6 for submit@debbugs.gnu.org; Tue, 25 Nov 2014 23:27:37 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:40770) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XtUCQ-0007UD-Qd for bug-guix@gnu.org; Tue, 25 Nov 2014 23:27:36 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XtUCH-0007yy-02 for bug-guix@gnu.org; Tue, 25 Nov 2014 23:27:30 -0500 Received: from li305-5.members.linode.com ([178.79.168.5]:37256 helo=cooksoni.karetnikov.org) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XtUCG-0007yY-Qc for bug-guix@gnu.org; Tue, 25 Nov 2014 23:27:20 -0500 From: Nikita Karetnikov To: bug-guix@gnu.org Subject: Cannot boot with encrypted root Date: Wed, 26 Nov 2014 07:26:50 +0400 Message-ID: <8761e2wsjp.fsf@karetnikov.org> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x [generic] X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -4.1 (----) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -4.1 (----) --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable (Ludo suggested to report this as a bug, so this issue won=E2=80=99t get lo= st.) While booting, GRUB prints this error: error: file =E2=80=98/gnu/store/rz=E2=80=A6-linux-libre-3.17.3/bzImage=E2=80=99 not fou= nd. which is not surprising since the store is encrypted. I=E2=80=99ve tried putting these lines after the =E2=80=9Csetparams=E2=80= =9D line in the GRUB config (by hitting the =E2=80=98e=E2=80=99 key): insmod luks cryptomount hd0,gpt3 set root=3Dcrypto0 After pressing the =E2=80=98F10=E2=80=99 key, I get a password prompt. And= after that, a bunch of warnings about =E2=80=98/dev/mapper/main=E2=80=99: ext2fs_check_if_mount: Can=E2=80=99t check if filesystem is mounted due to missing mtab file while determining whether /dev/mapper/main is mounted. fsck.ext3: No such file or directory while trying to open /dev/mapper/main Possibly non-existent device? =E2=80=98fsck.ext3=E2=80=99 exited with code 8 on /dev/mapper/main; spawnin= g REPL In the REPL: scheme@(guile-user)> ,use (gnu build linux-boot) scheme@(guile-user)> (boot-system) [=E2=80=A6] ERROR: In procedure mount: ERROR: In procedure mount: Device or resource busy My config is shown below: (use-modules (gnu)) (define %linux-modules '( ;; cryptsetup/LUKS "dm-crypt.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko" "sha256-ss= se3.ko")) (operating-system (host-name "test") (timezone "Europe/Paris") (locale "en_US.UTF-8") (bootloader (grub-configuration (device "/dev/sda"))) (initrd (lambda (fs . args) (apply base-initrd fs #:extra-modules %linux-modules args))) (mapped-devices (list (mapped-device (source "/dev/sda3") (target "main") (type luks-device-mapping)))) (file-systems (cons* (file-system (device "/dev/mapper/main") (mount-point "/") (type "ext3")) (file-system (device "boot") (type 'label) (mount-point "/boot") (type "ext3")) %base-file-systems)) (users (list (user-account (name "test") (group "users") (supplementary-groups '("wheel" "audio" "video")) (home-directory "/home/test"))))) --=-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBAgAGBQJUdUh+AAoJEM+IQzI9IQ38glwQAIjpCx50uBQ/gw4y60WaIja4 iDE47RHemyoRz9JlWQx5xhsXcH/BCTMUkRexFB+WZjD20raU0Q5/0Aajuw+7wvr1 OUk+/G6y0+dKuxw7yZHbDWhTOelDpXYLrIou4dKsOi+Lu611I4dSqlDCnAVL8rso Jp/xPYOb913xgJ0FAeGPXuy+/6+baT4X1RbHIHy4ACsy7qyjjTzYUmVRozz7Qlg9 n+jwXVf/5pI08EF2bh9pjw5WjrJ1oumFOwjPhqiQFGWCbVKeWOGbVUeBg620J9dN g+OD9SFreL91NXTLrv7VVUts07ypEeGoJeofa7q/O1Bqv04F0wlb4FpR4t13+f69 RyHC7r8JU+b2rDF6QvDdl4CzjuGCtP1c7diUgZ1WYLKm8z1aeJFbDleN/sywhpYy JXajVYrfDZegXXs1jsef8CyeujTDDEhjNPANbGkx5fcq4pxeCeJ3r4x9G+XDQ2wR aW40aRgnURIl40QpAC+yc6nmusE7GSGijHs7PFTDj8lM1alUIQf6YBLpK2xmxTOn U1IGemOKio+kgK3GD9uuATktf8Zp78zw+yjYYw+5QxWozBjBIdoEiwJWzCaEo3UM BBev9R0aGeOiEnyKDKQHLNh5Vbf9i3wwSroMaofLLuyrU6DMG4fKbK8I3/ECyp1z a/zmgNkiAcMiwgT2yM1L =oS5t -----END PGP SIGNATURE----- --=-=-=-- From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 26 04:55:10 2014 Received: (at 19190) by debbugs.gnu.org; 26 Nov 2014 09:55:10 +0000 Received: from localhost ([127.0.0.1]:45558 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtZJV-0006Hn-S3 for submit@debbugs.gnu.org; Wed, 26 Nov 2014 04:55:10 -0500 Received: from hera.aquilenet.fr ([141.255.128.1]:60450) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtZJS-0006Hd-1L for 19190@debbugs.gnu.org; Wed, 26 Nov 2014 04:55:07 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 5B7B7A78; Wed, 26 Nov 2014 10:55:04 +0100 (CET) Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MuWiq+qApkyO; Wed, 26 Nov 2014 10:55:04 +0100 (CET) Received: from pluto (reverse-83.fdn.fr [80.67.176.83]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 088D0A6B; Wed, 26 Nov 2014 10:55:03 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Nikita Karetnikov Subject: Re: bug#19190: Cannot boot with encrypted root References: <8761e2wsjp.fsf@karetnikov.org> Date: Wed, 26 Nov 2014 10:55:03 +0100 In-Reply-To: <8761e2wsjp.fsf@karetnikov.org> (Nikita Karetnikov's message of "Wed, 26 Nov 2014 07:26:50 +0400") Message-ID: <878uiywako.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 19190 Cc: 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Thanks for the report. Let=E2=80=99s address the initrd/boot issue first. Nikita Karetnikov skribis: > After pressing the =E2=80=98F10=E2=80=99 key, I get a password prompt. Any message after entering the password prompt? > And after that, a bunch of warnings about =E2=80=98/dev/mapper/main=E2=80= =99: > > ext2fs_check_if_mount: Can=E2=80=99t check if filesystem is mounted due to > missing mtab file while determining whether /dev/mapper/main is mounted. > fsck.ext3: No such file or directory while trying to open > /dev/mapper/main > Possibly non-existent device? > =E2=80=98fsck.ext3=E2=80=99 exited with code 8 on /dev/mapper/main; spawn= ing REPL It looks like =E2=80=98cryptsetup open=E2=80=99 simply failed, and =E2=80= =98boot-system=E2=80=99 currently ignores that error, so it goes up to the file system check as shown above, which in turn fails and gets us to the debugger. Perhaps you could try running =E2=80=98cryptsetup=E2=80=99 by hand from the= REPL. That=E2=80=99s going to be a bit tedious; something like: (use-modules (srfi srfi-1) (ice-9 ftw)) (define cs (find (lambda (file) (string-contains file "cryptsetup")) (scandir "/gnu/store"))) (system* (string-append "/gnu/store/" cs "/bin/cryptsetup") "open" "--type" "luks" "/dev/whatever" "main") Then, please report the return value of =E2=80=98system*=E2=80=99, and check (file-exists? "/dev/mapper/main") Please also report any messages. Thanks in advance! Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 26 07:41:31 2014 Received: (at 19190) by debbugs.gnu.org; 26 Nov 2014 12:41:31 +0000 Received: from localhost ([127.0.0.1]:45663 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtbuV-0003WV-Fx for submit@debbugs.gnu.org; Wed, 26 Nov 2014 07:41:31 -0500 Received: from hera.aquilenet.fr ([141.255.128.1]:60603) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtbuT-0003WN-GO for 19190@debbugs.gnu.org; Wed, 26 Nov 2014 07:41:30 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 2B04AA6B; Wed, 26 Nov 2014 13:41:28 +0100 (CET) Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pqcSe5skqXJI; Wed, 26 Nov 2014 13:41:28 +0100 (CET) Received: from pluto (reverse-83.fdn.fr [80.67.176.83]) by hera.aquilenet.fr (Postfix) with ESMTPSA id C22BE63B; Wed, 26 Nov 2014 13:41:27 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Nikita Karetnikov Subject: Re: bug#19190: Cannot boot with encrypted root References: <8761e2wsjp.fsf@karetnikov.org> <878uiywako.fsf@gnu.org> Date: Wed, 26 Nov 2014 13:41:27 +0100 In-Reply-To: <878uiywako.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Wed, 26 Nov 2014 10:55:03 +0100") Message-ID: <87y4qyuoaw.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 19190 Cc: 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) I noticed an obvious issue in (gnu build linux-boot), which is that device-mapping (the #:pre-mount argument) would be performed after =E2=80=98mount-root-file-system=E2=80=99 has been called. Commit 67979e4 fixes that. To fix it, we=E2=80=99ll have to update =E2=80=98guix-devel=E2=80=99 in (gn= u packages package-management), and to regenerate a VM image that uses it. I can help with that. Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 26 11:04:55 2014 Received: (at 19190) by debbugs.gnu.org; 26 Nov 2014 16:04:55 +0000 Received: from localhost ([127.0.0.1]:46376 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xtf5L-0001aI-Dj for submit@debbugs.gnu.org; Wed, 26 Nov 2014 11:04:55 -0500 Received: from hera.aquilenet.fr ([141.255.128.1]:60876) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xtf5K-0001aA-0K for 19190@debbugs.gnu.org; Wed, 26 Nov 2014 11:04:54 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id AA184404D; Wed, 26 Nov 2014 17:04:52 +0100 (CET) Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sW0BSkQFS+A9; Wed, 26 Nov 2014 17:04:52 +0100 (CET) Received: from pluto (reverse-83.fdn.fr [80.67.176.83]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 49BCA63B; Wed, 26 Nov 2014 17:04:52 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Duncan Keall Subject: Re: bug#19190: Cannot boot with encrypted root References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 6 Frimaire an 223 de la =?utf-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0xEA52ECF4 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 83C4 F8E5 10A3 3B4C 5BEA D15D 77DD 95E2 EA52 ECF4 X-OS: x86_64-unknown-linux-gnu Date: Wed, 26 Nov 2014 17:04:51 +0100 In-Reply-To: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> (Duncan Keall's message of "Thu, 27 Nov 2014 01:05:17 +1300") Message-ID: <87ioi2uevw.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 19190 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Hi, :-) Duncan Keall skribis: >> Perhaps you could try running =E2=80=98cryptsetup=E2=80=99 by hand from = the REPL. > > I needed to replace "/bin/cryptsetup" with "/sbin/cryptsetup". After > that, cryptsetup accepted a password and printed these errors: > > device-mapper: table 253:0: crypt: Error allocating crypto tfm > device-mapper: ioctl: error adding target to table > device-mapper: reload ioctl on failed: No such file or directory > Failed to open temporary keystore device. > device-mapper: remove ioctl on temporary-cryptsetup-149 failed: No > such device or address I suspect this is due to missing modules. Does your initrd configuration have the modules Nikita=E2=80=99s configurat= ion shows? Thanks for testing so quickly! Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 26 11:40:12 2014 Received: (at 19190) by debbugs.gnu.org; 26 Nov 2014 16:40:12 +0000 Received: from localhost ([127.0.0.1]:46413 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtfdT-0002US-OT for submit@debbugs.gnu.org; Wed, 26 Nov 2014 11:40:12 -0500 Received: from out4-smtp.messagingengine.com ([66.111.4.28]:53926) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtbLS-0001Gg-QP for 19190@debbugs.gnu.org; Wed, 26 Nov 2014 07:05:19 -0500 Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 3979120AB8 for <19190@debbugs.gnu.org>; Wed, 26 Nov 2014 07:05:18 -0500 (EST) Received: from web2 ([10.202.2.212]) by compute1.internal (MEProxy); Wed, 26 Nov 2014 07:05:18 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=duncankeall.com; h=message-id:x-sasl-enc:from:to:cc:mime-version :content-transfer-encoding:content-type:subject:date; s=mesmtp; bh=/D+/z5lB3urG0eY3Ymu3IiXFOYw=; b=eU/mABzlBP3B6paAI0jGMNBlqFH5 f6fyKuH1c1qKJ92iP1yN9arSMIY5h2+aQoVitDXj7XBZFybCVNekpRwAuBYcr6um NQvmSARTLcZu15EE52WKRwvljPFUkkuHfAEHhS61/8cpMTn5pekgAMoBBGjI/csa 9T7TTW8xx5ZNJE0= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:x-sasl-enc:from:to:cc :mime-version:content-transfer-encoding:content-type:subject :date; s=smtpout; bh=/D+/z5lB3urG0eY3Ymu3IiXFOYw=; b=q5aqRVebLtk v9wjtprK3vYBuWbDleIfl0qBQgvXYFTNdGntdg1LKS7vsPeWjNRUA3q9rs9V6nlS 8Rk3AIxIJuXg35m9h1qi5cWcBVXFc+zqUpjC9mc+3bkVdos2doxgzfYTguc9ywvN CHZIyWREHnmP88EUTX4HdJ37csHUH24A= Received: by web2.nyi.internal (Postfix, from userid 99) id 0A534540481; Wed, 26 Nov 2014 07:05:18 -0500 (EST) Message-Id: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> X-Sasl-Enc: HrWoRFbSz/ddADiJ8RnC2/iZvqOVeRuns+7vRJRDq9/J 1417003517 From: Duncan Keall To: =?UTF-8?Q?Ludovic=20Court=C3=A8s?= MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="UTF-8" X-Mailer: MessagingEngine.com Webmail Interface - ajax-53201334 Subject: Re: bug#19190: Cannot boot with encrypted root Date: Thu, 27 Nov 2014 01:05:17 +1300 X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 19190 X-Mailman-Approved-At: Wed, 26 Nov 2014 11:40:10 -0500 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) Here's what I've found using a very similar setup to Nikita and after receiving the same error messages. > Any message after entering the password prompt? GRUB prints a single message "Slot 0 opened" and then it's into the kernel boot logs. The first related message appears to be the "ext2fs_check_if_mount..." one. > Perhaps you could try running =E2=80=98cryptsetup=E2=80=99 by hand from t= he REPL. I needed to replace "/bin/cryptsetup" with "/sbin/cryptsetup". After that, cryptsetup accepted a password and printed these errors: device-mapper: table 253:0: crypt: Error allocating crypto tfm device-mapper: ioctl: error adding target to table device-mapper: reload ioctl on failed: No such file or directory Failed to open temporary keystore device. device-mapper: remove ioctl on temporary-cryptsetup-149 failed: No such device or address The return value was 256, and afterwards /dev/mapper/main still did not exist. From debbugs-submit-bounces@debbugs.gnu.org Wed Nov 26 21:06:12 2014 Received: (at 19190) by debbugs.gnu.org; 27 Nov 2014 02:06:12 +0000 Received: from localhost ([127.0.0.1]:46754 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtoTE-0004PR-D0 for submit@debbugs.gnu.org; Wed, 26 Nov 2014 21:06:12 -0500 Received: from out4-smtp.messagingengine.com ([66.111.4.28]:40543) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XtoT6-0004P9-Fb for 19190@debbugs.gnu.org; Wed, 26 Nov 2014 21:06:10 -0500 Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id B24472095D for <19190@debbugs.gnu.org>; Wed, 26 Nov 2014 21:06:03 -0500 (EST) Received: from web2 ([10.202.2.212]) by compute3.internal (MEProxy); Wed, 26 Nov 2014 21:06:03 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=duncankeall.com; h=message-id:x-sasl-enc:from:to:cc:mime-version :content-transfer-encoding:content-type:subject:date:in-reply-to :references; s=mesmtp; bh=CFoesmHGwQ0ZWS97GvtwYj6Fj24=; b=aATTYH QoH5ksoBV7cgoPE//l0I3hGqwqjXZqPkdYAOQrq/c0jvy+gF1Qfrs38HA6m4s2dB T1TWMugpRfx1r1WJGv6viJ5FNk61agHT5gCgdOHf2Lcxwvv7RXlXdZh8OgQME8ME iZDDzKXCNKia5fW0kWmuxozy8/TqEI2rmz0do= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:x-sasl-enc:from:to:cc :mime-version:content-transfer-encoding:content-type:subject :date:in-reply-to:references; s=smtpout; bh=CFoesmHGwQ0ZWS97Gvtw Yj6Fj24=; b=lQ9ZqRNrcKWGn39XyasrFrIbtpWo71cKUaoEyCCkq9GZSEWYdNe6 lItFQIupRJR/GLdbg65sdhRIP6kf1KHAA3jlQ1H5lBMo2v3qRqQd2tifAe4L3Xzd 2qgR3HbNK7Zc/tn/qAhplMixSztE613bD6tg14ArHvIpzf/ahX+oaRc= Received: by web2.nyi.internal (Postfix, from userid 99) id 7EB2B540501; Wed, 26 Nov 2014 21:06:03 -0500 (EST) Message-Id: <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> X-Sasl-Enc: JYKYzpUF2i6CbyhNuDrCkdrjdfrmjK+a3rLGGGJMXaZs 1417053963 From: Duncan Keall To: =?UTF-8?Q?Ludovic=20Court=C3=A8s?= MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="UTF-8" X-Mailer: MessagingEngine.com Webmail Interface - ajax-53201334 Subject: Re: bug#19190: Cannot boot with encrypted root Date: Thu, 27 Nov 2014 15:06:03 +1300 In-Reply-To: <87ioi2uevw.fsf@gnu.org> References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> <87ioi2uevw.fsf@gnu.org> X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 19190 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) > Does your initrd configuration have the modules Nikita=E2=80=99s configur= ation > shows? Here are the configurations I have tested which all result in the errors posted above: ("dm-crypt.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko" "sha256-sss= e3.ko") ("dm-crypt.ko" "cryptd.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko"= "sha256-ssse3.ko") ("dm-crypt.ko" "cryptd.ko" "crc32-pclmul.ko" "aes-x86_64.ko" "crc32.ko" "= pcbc.ko" "xcbc.ko" "sha256-ssse3.ko") I could also add "aesni-intel.ko" but it resulted in a different set of kernel errors on boot: aesni_intel: Unknown symbol ablk_decrypt (err 0) aesni_intel: Unknown symbol lrw_free_table (err 0) aesni_intel: Unknown symbol ablk_set_key (err 0) ... ERROR: In procedure load-linux-module: Unknown error -1 For reference, here are all the modules loaded on my current system which might be related: aes_x86_64 aesni_intel af_alg algif_skcipher arc4 ccm crc32_pclmul crc32c_intel crc_t10dif crct10dif_common crct10dif_pclmul cryptd ctr dm_crypt dm_mod gf128mul ghash_clmulni_intel lrw xor From debbugs-submit-bounces@debbugs.gnu.org Thu Nov 27 05:12:46 2014 Received: (at 19190) by debbugs.gnu.org; 27 Nov 2014 10:12:46 +0000 Received: from localhost ([127.0.0.1]:46996 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xtw45-00007p-Oi for submit@debbugs.gnu.org; Thu, 27 Nov 2014 05:12:46 -0500 Received: from hera.aquilenet.fr ([141.255.128.1]:33389) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xtw42-00007f-Ro for 19190@debbugs.gnu.org; Thu, 27 Nov 2014 05:12:44 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 41CF3402A; Thu, 27 Nov 2014 11:12:40 +0100 (CET) Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yFRuv0XQEpv8; Thu, 27 Nov 2014 11:12:40 +0100 (CET) Received: from pluto (pluto.bordeaux.inria.fr [193.50.110.57]) by hera.aquilenet.fr (Postfix) with ESMTPSA id 050F8A78; Thu, 27 Nov 2014 11:12:39 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Duncan Keall Subject: Re: bug#19190: Cannot boot with encrypted root References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> <87ioi2uevw.fsf@gnu.org> <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> Date: Thu, 27 Nov 2014 11:12:39 +0100 In-Reply-To: <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> (Duncan Keall's message of "Thu, 27 Nov 2014 15:06:03 +1300") Message-ID: <87tx1lostk.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 19190 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) Duncan Keall skribis: > Here are the configurations I have tested which all result in the errors > posted above: > > ("dm-crypt.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko" "sha256-s= sse3.ko") > ("dm-crypt.ko" "cryptd.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.k= o" "sha256-ssse3.ko") > ("dm-crypt.ko" "cryptd.ko" "crc32-pclmul.ko" "aes-x86_64.ko" "crc32.ko"= "pcbc.ko" "xcbc.ko" "sha256-ssse3.ko") > > I could also add "aesni-intel.ko" but it resulted in a different set of > kernel errors on boot: > > aesni_intel: Unknown symbol ablk_decrypt (err 0) > aesni_intel: Unknown symbol lrw_free_table (err 0) > aesni_intel: Unknown symbol ablk_set_key (err 0) > ... > ERROR: In procedure load-linux-module: Unknown error -1 Presumably that=E2=80=99s because one of its prerequisites hasn=E2=80=99t b= een loaded yet. The difficulty is that modules need to be listed in topological order: things that aesni_intel.ko depends on must appear before aesni_intel.ko. On my machine, I see: --8<---------------cut here---------------start------------->8--- $ lsmod|grep aes aesni_intel 165373 3=20 ablk_helper 13597 1 aesni_intel cryptd 20359 4 ghash_clmulni_intel,aesni_intel,ablk_helper lrw 13286 1 aesni_intel glue_helper 13990 1 aesni_intel aes_x86_64 17131 1 aesni_intel --8<---------------cut here---------------end--------------->8--- So the right order for these would be: cryptd aes_x86_64 ablk_helper lrw aesni_intel We=E2=80=99ll have to change the initrd build to figure that out automatica= lly, but in the meantime, we have to sort them by hand. Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Sat Dec 13 17:01:32 2014 Received: (at 19190) by debbugs.gnu.org; 13 Dec 2014 22:01:32 +0000 Received: from localhost ([127.0.0.1]:45072 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xzukl-0006HF-9g for submit@debbugs.gnu.org; Sat, 13 Dec 2014 17:01:31 -0500 Received: from hera.aquilenet.fr ([141.255.128.1]:43518) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Xzuki-0006H4-Cj for 19190@debbugs.gnu.org; Sat, 13 Dec 2014 17:01:29 -0500 Received: from localhost (localhost [127.0.0.1]) by hera.aquilenet.fr (Postfix) with ESMTP id 6BD5C425E; Sat, 13 Dec 2014 23:01:27 +0100 (CET) Received: from hera.aquilenet.fr ([127.0.0.1]) by localhost (hera.aquilenet.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2C2SxetXBMBZ; Sat, 13 Dec 2014 23:01:27 +0100 (CET) Received: from pluto (reverse-83.fdn.fr [80.67.176.83]) by hera.aquilenet.fr (Postfix) with ESMTPSA id E735611B8; Sat, 13 Dec 2014 23:01:26 +0100 (CET) From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Duncan Keall Subject: Re: bug#19190: Cannot boot with encrypted root References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> <87ioi2uevw.fsf@gnu.org> <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> <87tx1lostk.fsf@gnu.org> Date: Sat, 13 Dec 2014 23:01:16 +0100 In-Reply-To: <87tx1lostk.fsf@gnu.org> ("Ludovic \=\?utf-8\?Q\?Court\=C3\=A8s\=22'\?\= \=\?utf-8\?Q\?s\?\= message of "Thu, 27 Nov 2014 11:12:39 +0100") Message-ID: <877fxvxl8z.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: 1.0 (+) X-Debbugs-Envelope-To: 19190 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 1.0 (+) ludo@gnu.org (Ludovic Court=C3=A8s) skribis: > Duncan Keall skribis: > >> Here are the configurations I have tested which all result in the errors >> posted above: >> >> ("dm-crypt.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko" "sha256-= ssse3.ko") >> ("dm-crypt.ko" "cryptd.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.= ko" "sha256-ssse3.ko") >> ("dm-crypt.ko" "cryptd.ko" "crc32-pclmul.ko" "aes-x86_64.ko" "crc32.ko= " "pcbc.ko" "xcbc.ko" "sha256-ssse3.ko") >> >> I could also add "aesni-intel.ko" but it resulted in a different set of >> kernel errors on boot: >> >> aesni_intel: Unknown symbol ablk_decrypt (err 0) >> aesni_intel: Unknown symbol lrw_free_table (err 0) >> aesni_intel: Unknown symbol ablk_set_key (err 0) >> ... >> ERROR: In procedure load-linux-module: Unknown error -1 > > Presumably that=E2=80=99s because one of its prerequisites hasn=E2=80=99t= been loaded > yet. > > The difficulty is that modules need to be listed in topological order: This particular problem was fixed in 0e704a2 a couple of weeks ago. For testing, you would need to start from an image generated from current master with: ./pre-inst-env \ guix system disk-image --image-size=3D800MiB gnu/system/install.scm Let me know if anything else is needed. Ludo=E2=80=99. From debbugs-submit-bounces@debbugs.gnu.org Mon Dec 15 05:49:42 2014 Received: (at 19190) by debbugs.gnu.org; 15 Dec 2014 10:49:42 +0000 Received: from localhost ([127.0.0.1]:46489 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Y0TDi-0007pM-E6 for submit@debbugs.gnu.org; Mon, 15 Dec 2014 05:49:42 -0500 Received: from out3-smtp.messagingengine.com ([66.111.4.27]:60059) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Y0TDf-0007pD-Sc for 19190@debbugs.gnu.org; Mon, 15 Dec 2014 05:49:40 -0500 Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 70471206C8 for <19190@debbugs.gnu.org>; Mon, 15 Dec 2014 05:49:39 -0500 (EST) Received: from web5 ([10.202.2.215]) by compute1.internal (MEProxy); Mon, 15 Dec 2014 05:49:39 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=duncankeall.com; h=message-id:x-sasl-enc:from:to:cc:mime-version :content-transfer-encoding:content-type:in-reply-to:references :subject:date; s=mesmtp; bh=7MIi+o5w7L13Vf1EILKKqoE3P1g=; b=MgMB PicpMEvf1NU6AVhomtUWRzillfQzXN2wI9chv66IvvUoiC0atUnaHN6obF3h6wzr qWBQS0d8TAe3niZw/oY8fC6UZgVWrsmJ7e2okfwROSK+FuifMPxCPshCrDnhf19I YcZjMtF6HfEwOGGhbapzVvkPFYXachZDh7VzyjM= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:x-sasl-enc:from:to:cc :mime-version:content-transfer-encoding:content-type:in-reply-to :references:subject:date; s=smtpout; bh=7MIi+o5w7L13Vf1EILKKqoE3 P1g=; b=csLntjlvnYpKKTEIAO9WCHrAUn5K2rPoz+QZOiJmYJCs+W38UH2mN1nO wg1gEOD0RFbazSOvYKEbCT6YpI2xvJInDFGeGSg3nD3qZcCUTXTTv6kHBj6rchhD 7rUouujfgXbVIUv78qaMKJIiYPfXIsSfs0Kk3DUufiRHI6shnkw= Received: by web5.nyi.internal (Postfix, from userid 99) id 42148B21082; Mon, 15 Dec 2014 05:49:39 -0500 (EST) Message-Id: <1418640579.2467571.202978541.4A391362@webmail.messagingengine.com> X-Sasl-Enc: JNf/2Mhv9F1QXhLRvr1tmO7oba5rKhMrF8ZLAurmKnOS 1418640579 From: Duncan Keall To: =?UTF-8?Q?Ludovic=20Court=C3=A8s?= MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain X-Mailer: MessagingEngine.com Webmail Interface - ajax-54d79604 In-Reply-To: <877fxvxl8z.fsf@gnu.org> References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> <87ioi2uevw.fsf@gnu.org> <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> <87tx1lostk.fsf@gnu.org> <877fxvxl8z.fsf@gnu.org> Subject: Re: bug#19190: Cannot boot with encrypted root Date: Mon, 15 Dec 2014 23:49:39 +1300 X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 19190 Cc: Nikita Karetnikov , 19190@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) Thanks for the update, Ludovic! I've just tested another install with a fresh image from master, using as similar setup as possible to before. The boot process still fails at mounting the root filesystem (as expected): fsck.ext4: No such file or directory while trying to open /dev/mapper/main Possibly non-existent device? However I found that cryptsetup was missing from the store during the early-boot REPL, so I wasn't able to test manually mounting the encrypted filesystem. Nothing in the commit history since v0.8 jumped out as being responsible, so I'm assuming I've missed something obvious during install. I'll have to keep looking! From debbugs-submit-bounces@debbugs.gnu.org Sun Sep 20 16:14:49 2015 Received: (at 19190-done) by debbugs.gnu.org; 20 Sep 2015 20:14:49 +0000 Received: from localhost ([127.0.0.1]:39233 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Zdl0b-0002yo-6x for submit@debbugs.gnu.org; Sun, 20 Sep 2015 16:14:49 -0400 Received: from eggs.gnu.org ([208.118.235.92]:48250) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1Zdl0Y-0002yg-Sd for 19190-done@debbugs.gnu.org; Sun, 20 Sep 2015 16:14:47 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1Zdl0Y-0003H1-5A for 19190-done@debbugs.gnu.org; Sun, 20 Sep 2015 16:14:46 -0400 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,T_RP_MATCHES_RCVD autolearn=disabled version=3.3.2 Received: from fencepost.gnu.org ([2001:4830:134:3::e]:52302) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Zdl0O-0003FI-GT; Sun, 20 Sep 2015 16:14:36 -0400 Received: from reverse-83.fdn.fr ([80.67.176.83]:34284 helo=pluto) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_128_CBC_SHA1:128) (Exim 4.82) (envelope-from ) id 1Zdl0N-0002kx-Hu; Sun, 20 Sep 2015 16:14:36 -0400 From: ludo@gnu.org (Ludovic =?utf-8?Q?Court=C3=A8s?=) To: Duncan Keall Subject: Re: bug#19190: Cannot boot with encrypted root References: <1417003517.3640091.195610409.39CCFAAC@webmail.messagingengine.com> <87ioi2uevw.fsf@gnu.org> <1417053963.3820317.195899889.5AAEB90A@webmail.messagingengine.com> <87tx1lostk.fsf@gnu.org> <877fxvxl8z.fsf@gnu.org> <1418640579.2467571.202978541.4A391362@webmail.messagingengine.com> Date: Sun, 20 Sep 2015 22:14:33 +0200 In-Reply-To: <1418640579.2467571.202978541.4A391362@webmail.messagingengine.com> (Duncan Keall's message of "Mon, 15 Dec 2014 23:49:39 +1300") Message-ID: <87oagwj1au.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-Received-From: 2001:4830:134:3::e X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: 19190-done Cc: Nikita Karetnikov , 19190-done@debbugs.gnu.org, Petter X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) Duncan Keall skribis: > The boot process still fails at mounting the root filesystem (as > expected): > > fsck.ext4: No such file or directory while trying to open /dev/mapper/m= ain > Possibly non-existent device? It took us a while but this part is now fixed with cc0e575, and commit 07779d0 adds dm-crypt.ko and xts.ko and their dependencies to the default initrd. I=E2=80=99m closing this bug, but if you have time and interest, you=E2=80= =99re welcome to confirm whether this works for you. Thanks! Ludo=E2=80=99. From unknown Mon Jun 23 23:53:23 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Mon, 19 Oct 2015 11:24:04 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator