[Bug 1827928] Re: efi encrypted /boot grub installation does not include crypto support
fantasticfears
fantasticfears at gmail.com
Fri Nov 8 11:43:14 UTC 2019
ubuntu 18.04.3 LTS has this issue. I'm not interested in secure boot but
encrypted /boot. The grub package points to grub2-common
(2.02-2ubuntu8.13). Even with the update detailed in the other post, the
problem still exists. I can't load cryptomount and ubuntu starts with
only grub shell.
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to grub2-signed in Ubuntu.
https://bugs.launchpad.net/bugs/1827928
Title:
efi encrypted /boot grub installation does not include crypto support
Status in grub2-signed package in Ubuntu:
Confirmed
Bug description:
Installing with full disk encryption, including /boot, resulted in the
following error after grub loaded: "error: Can't find command
'cryptomount'"
This is identical to the OpenSUSE bug identified at
https://forums.opensuse.org/showthread.php/511111
Including an efi, secureboot grub image that is capable of encrypted
/boot filesystem mounting is essential for securing the desktop. I see
this issue as a prerequisite for bug #1773457.
OpenSUSE resolved this issue by including crypto support in their .efi
grub images. I believe that this should be the default for Ubuntu as
well, or an additional crypto-enabled grub efi package should be made
available.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/grub2-signed/+bug/1827928/+subscriptions
More information about the foundations-bugs
mailing list