[Bug 1413754] [NEW] decrypt_keyctl crashes kernel

Hadmut Danisch hadmut at danisch.de
Thu Jan 22 21:22:35 UTC 2015 

Public bug reported:

Hi,

I have a computer with an encrypted raid array (encrypted inside mdadm
raid, and lvm inside encrypted device), thus just a single encrypted
device. Worked pretty well for years.

Recently, I've added a small SSD as a system disk with root and swap to
make the machine faster. Now I had three encrypted block devices. Since
it was annoying to enter the same password three  times, I changed the
/etc/crypttab into

sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard
sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard,swap
md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl

to enter the password only once per boot.

Now, the system wasn't booting properly anymore. It came to asking for
the password in a regular way, but once I entered the password, system
went berserk. It either froze completely, or ignored most of the
keyboard keys, became extremely slow, sometimes came to the init
processes, but hang. Even if I was lucky enough to get a rescue root
shell, system did not work properly, it just did not make any sense and
seemed somewhat crazy. Impossible to use, and extremely slow.

Problems were permanent and happened with every boot, although
differing, but were completely gone after I used a rescue CDROM to
change the /etc/crypttab to its original state

sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

and rebuild the initramdisk. Now the system works just normal again (and
keeps asking me for the password three times).


So it pretty much looks as if decrypt_keyctl is somewhat incompatible with the kernel and somehow breaks kernel structures. 

regards
Hadmut

ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: cryptsetup 2:1.6.1-1ubuntu1
ProcVersionSignature: Ubuntu 3.13.0-43.72-generic 3.13.11.11
Uname: Linux 3.13.0-43-generic x86_64
NonfreeKernelModules: zfs zunicode zavl zcommon znvpair
ApportVersion: 2.14.1-0ubuntu3.6
Architecture: amd64
CurrentDesktop: XFCE
Date: Thu Jan 22 22:10:21 2015
SourcePackage: cryptsetup
UpgradeStatus: No upgrade log present (probably fresh install)
crypttab:
 sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
 sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
 md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

** Affects: cryptsetup (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug third-party-packages trusty

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to cryptsetup in Ubuntu.
https://bugs.launchpad.net/bugs/1413754

Title:
  decrypt_keyctl crashes kernel

Status in cryptsetup package in Ubuntu:
  New

Bug description:
  Hi,

  I have a computer with an encrypted raid array (encrypted inside mdadm
  raid, and lvm inside encrypted device), thus just a single encrypted
  device. Worked pretty well for years.

  Recently, I've added a small SSD as a system disk with root and swap
  to make the machine faster. Now I had three encrypted block devices.
  Since it was annoying to enter the same password three  times, I
  changed the /etc/crypttab into

  sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard
  sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl,discard,swap
  md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 h1 luks,keyscript=/lib/cryptsetup/scripts/decrypt_keyctl

  to enter the password only once per boot.

  Now, the system wasn't booting properly anymore. It came to asking for
  the password in a regular way, but once I entered the password, system
  went berserk. It either froze completely, or ignored most of the
  keyboard keys, became extremely slow, sometimes came to the init
  processes, but hang. Even if I was lucky enough to get a rescue root
  shell, system did not work properly, it just did not make any sense
  and seemed somewhat crazy. Impossible to use, and extremely slow.

  Problems were permanent and happened with every boot, although
  differing, but were completely gone after I used a rescue CDROM to
  change the /etc/crypttab to its original state

  sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
  sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
  md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

  and rebuild the initramdisk. Now the system works just normal again
  (and keeps asking me for the password three times).

  
  So it pretty much looks as if decrypt_keyctl is somewhat incompatible with the kernel and somehow breaks kernel structures. 

  regards
  Hadmut

  ProblemType: Bug
  DistroRelease: Ubuntu 14.04
  Package: cryptsetup 2:1.6.1-1ubuntu1
  ProcVersionSignature: Ubuntu 3.13.0-43.72-generic 3.13.11.11
  Uname: Linux 3.13.0-43-generic x86_64
  NonfreeKernelModules: zfs zunicode zavl zcommon znvpair
  ApportVersion: 2.14.1-0ubuntu3.6
  Architecture: amd64
  CurrentDesktop: XFCE
  Date: Thu Jan 22 22:10:21 2015
  SourcePackage: cryptsetup
  UpgradeStatus: No upgrade log present (probably fresh install)
  crypttab:
   sdc3_crypt UUID=cdb53b1b-58d8-4c61-baad-68e7f19b3920 none luks,discard
   sdc2_crypt UUID=b800eec1-ec70-44fd-aa17-0cc6dec90a9f none luks,discard,swap
   md1_crypt  UUID=a59b9b7e-233d-4519-af0f-3561607da1d9 none luks

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cryptsetup/+bug/1413754/+subscriptions

More information about the foundations-bugs mailing list