[Bug 1825189] [NEW] Using full disk encryption, on a multipath device (in this case FCP) ended up in trying to open/unlock a wrong DM device

Frank Heimes 1825189 at bugs.launchpad.net
Wed Apr 17 13:55:11 UTC 2019 

Public bug reported:

When doing a full disk encrypted installation with d-i using 
"Guided - use entire disk and setup encrypted LVM"
on a multipath device (in this case zFCP/SCSI)
the post-install reboot ends in busybox/initramfs
while trying to open/unlock an incorrect device-maper device.
d-i tries to open /dev/mapper/mpatha5 but only /dev/mapper/mpatha-part5 exists.

Fixing the wrong device in crypttab like:
echo "mpatha5_crypt /dev/mapper/mpatha-part5 none luks,discard" > ./
cryptroot/crypttab
and trying to open it manually:
cryptsetup open --key-file /etc/zkey/repository/mpatha5_crypt.skey --key-size 1024 --cipher paes-xts-plain64 /dev/mapper/mpatha-part5 mpatha5_crypt
and leaving busybox again seems to work.

For more details see attachment ...

** Affects: ubuntu-z-systems
     Importance: Medium
     Assignee: Dimitri John Ledkov (xnox)
         Status: New

** Affects: debian-installer (Ubuntu)
     Importance: Undecided
         Status: New

** Attachment added: "details.txt"
   https://bugs.launchpad.net/bugs/1825189/+attachment/5256551/+files/details.txt

** Also affects: debian-installer (Ubuntu)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to debian-installer in Ubuntu.
https://bugs.launchpad.net/bugs/1825189

Title:
  Using full disk encryption, on a multipath device (in this case FCP)
  ended up in trying to open/unlock a wrong DM device

Status in Ubuntu on IBM z Systems:
  New
Status in debian-installer package in Ubuntu:
  New

Bug description:
  When doing a full disk encrypted installation with d-i using 
  "Guided - use entire disk and setup encrypted LVM"
  on a multipath device (in this case zFCP/SCSI)
  the post-install reboot ends in busybox/initramfs
  while trying to open/unlock an incorrect device-maper device.
  d-i tries to open /dev/mapper/mpatha5 but only /dev/mapper/mpatha-part5 exists.

  Fixing the wrong device in crypttab like:
  echo "mpatha5_crypt /dev/mapper/mpatha-part5 none luks,discard" > ./
  cryptroot/crypttab
  and trying to open it manually:
  cryptsetup open --key-file /etc/zkey/repository/mpatha5_crypt.skey --key-size 1024 --cipher paes-xts-plain64 /dev/mapper/mpatha-part5 mpatha5_crypt
  and leaving busybox again seems to work.

  For more details see attachment ...

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-z-systems/+bug/1825189/+subscriptions

More information about the foundations-bugs mailing list