[Bug 1206640] [NEW] Encrypted home inaccessible after iso upgrade

Michael Nelson 1206640 at bugs.launchpad.net
Tue Jul 30 18:45:10 UTC 2013 

Public bug reported:

Steps to reproduce:
 1) Start with an existing ubuntu installation [1] with an encrypted home directory for 'username'
 2) Create a bootable USB of 13.10, reboot to installer and choose the "upgrade your existing ubuntu installation" (ie. keep the home directory)
 3) When prompted for a user name/passphrase, enter the same "username" and passphrase (I assumed it'd either realise it was the same or tell me to choose a different username)
4) After completion/reboot, login to the (only) 'username' account

Expected result:
 * Login works with encrypted home being unencrypted with the (same) passphrase

Actual result
 * Login flicks away from login screen, but then immediately returns without explanation, leaving the user unable to login.

After initial panic, it turns out it was pretty simple to rectify. Doing `ls -al` for /home/username (in a rescue console) showed that all the encrypted file data was owned by uid/gid 1001 (the old username I assume). The new 'username' user had uid/gid of 1000. To fix I did the following:
 1) Reboot and choose the "Ubuntu advanced options" grub menu item, then root shell.
 2) Ensure / is writable with `mount -o remount,rw /`
 3) `usermod --uid 1001 username`
 4) `groupmod --gid 1001 username`
Reboot and login as normal.

I'm assuming there's nothing that needs to change in ecryptfs-utils but
I'll add it just in case so Dustin et al can verify.

[1] Note: as I'd previously upgraded to 13.10 via apt but experienced
issues, I was really overriding the existing 13.10 ubuntu.

ProblemType: Bug
DistroRelease: Ubuntu 13.10
Package: ubiquity (not installed)
ProcVersionSignature: Ubuntu 3.10.0-6.17-generic 3.10.3
Uname: Linux 3.10.0-6-generic x86_64
ApportVersion: 2.11-0ubuntu1
Architecture: amd64
Date: Tue Jul 30 20:14:41 2013
EcryptfsInUse: Yes
InstallCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.10.0-6-generic.efi.signed root=UUID=05643352-201b-43e8-976a-c1d40d591e80 ro quiet splash
MarkForUpload: True
SourcePackage: ubiquity
UpgradeStatus: No upgrade log present (probably fresh install)

** Affects: ecryptfs-utils (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: ubiquity (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug saucy

** Also affects: ecryptfs-utils (Ubuntu)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to ubiquity in Ubuntu.
https://bugs.launchpad.net/bugs/1206640

Title:
  Encrypted home inaccessible after iso upgrade

Status in “ecryptfs-utils” package in Ubuntu:
  New
Status in “ubiquity” package in Ubuntu:
  New

Bug description:
  Steps to reproduce:
   1) Start with an existing ubuntu installation [1] with an encrypted home directory for 'username'
   2) Create a bootable USB of 13.10, reboot to installer and choose the "upgrade your existing ubuntu installation" (ie. keep the home directory)
   3) When prompted for a user name/passphrase, enter the same "username" and passphrase (I assumed it'd either realise it was the same or tell me to choose a different username)
  4) After completion/reboot, login to the (only) 'username' account

  Expected result:
   * Login works with encrypted home being unencrypted with the (same) passphrase

  Actual result
   * Login flicks away from login screen, but then immediately returns without explanation, leaving the user unable to login.

  After initial panic, it turns out it was pretty simple to rectify. Doing `ls -al` for /home/username (in a rescue console) showed that all the encrypted file data was owned by uid/gid 1001 (the old username I assume). The new 'username' user had uid/gid of 1000. To fix I did the following:
   1) Reboot and choose the "Ubuntu advanced options" grub menu item, then root shell.
   2) Ensure / is writable with `mount -o remount,rw /`
   3) `usermod --uid 1001 username`
   4) `groupmod --gid 1001 username`
  Reboot and login as normal.

  I'm assuming there's nothing that needs to change in ecryptfs-utils
  but I'll add it just in case so Dustin et al can verify.

  [1] Note: as I'd previously upgraded to 13.10 via apt but experienced
  issues, I was really overriding the existing 13.10 ubuntu.

  ProblemType: Bug
  DistroRelease: Ubuntu 13.10
  Package: ubiquity (not installed)
  ProcVersionSignature: Ubuntu 3.10.0-6.17-generic 3.10.3
  Uname: Linux 3.10.0-6-generic x86_64
  ApportVersion: 2.11-0ubuntu1
  Architecture: amd64
  Date: Tue Jul 30 20:14:41 2013
  EcryptfsInUse: Yes
  InstallCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.10.0-6-generic.efi.signed root=UUID=05643352-201b-43e8-976a-c1d40d591e80 ro quiet splash
  MarkForUpload: True
  SourcePackage: ubiquity
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ecryptfs-utils/+bug/1206640/+subscriptions

More information about the foundations-bugs mailing list