[debbugs-tracker] bug#19190: closed (Cannot boot with encrypted root)

[GNU bug Tracking System]

Your message dated Sun, 20 Sep 2015 22:14:33 +0200
with message-id <address@hidden>
and subject line Re: bug#19190: Cannot boot with encrypted root
has caused the debbugs.gnu.org bug report #19190,
regarding Cannot boot with encrypted root
to be marked as done.

(If you believe you have received this mail in error, please contact
address@hidden)


-- 
19190: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=19190
GNU Bug Tracking System
Contact address@hidden with problems

--- Begin Message --- Subject: Cannot boot with encrypted root Date: Wed, 26 Nov 2014 07:26:50 +0400

(Ludo suggested to report this as a bug, so this issue won’t get lost.)

While booting, GRUB prints this error:

error: file
‘/gnu/store/rz…-linux-libre-3.17.3/bzImage’ not found.

which is not surprising since the store is encrypted.

I’ve tried putting these lines after the “setparams” line in the GRUB
config (by hitting the ‘e’ key):

insmod luks
cryptomount hd0,gpt3
set root=crypto0

After pressing the ‘F10’ key, I get a password prompt.  And after that, a
bunch of warnings about ‘/dev/mapper/main’:

ext2fs_check_if_mount: Can’t check if filesystem is mounted due to
missing mtab file while determining whether /dev/mapper/main is mounted.
fsck.ext3: No such file or directory while trying to open
/dev/mapper/main
Possibly non-existent device?
‘fsck.ext3’ exited with code 8 on /dev/mapper/main; spawning REPL

In the REPL:

scheme@(guile-user)> ,use (gnu build linux-boot)
scheme@(guile-user)> (boot-system)
[…]
ERROR: In procedure mount:
ERROR: In procedure mount: Device or resource busy

My config is shown below:

(use-modules (gnu))

(define %linux-modules
  '(
    ;; cryptsetup/LUKS
    "dm-crypt.ko" "aes-x86_64.ko" "crc32.ko" "pcbc.ko" "xcbc.ko" 
"sha256-ssse3.ko"))

(operating-system
  (host-name "test")
  (timezone "Europe/Paris")
  (locale "en_US.UTF-8")

  (bootloader (grub-configuration
               (device "/dev/sda")))

  (initrd (lambda (fs . args)
            (apply base-initrd fs
                   #:extra-modules %linux-modules
                   args)))

  (mapped-devices (list (mapped-device
                         (source "/dev/sda3")
                         (target "main")
                         (type luks-device-mapping))))

  (file-systems (cons* (file-system
                         (device "/dev/mapper/main")
                         (mount-point "/")
                         (type "ext3"))
                       (file-system
                         (device "boot")
                         (type 'label)
                         (mount-point "/boot")
                         (type "ext3"))
                       %base-file-systems))

  (users (list (user-account
                (name "test")
                (group "users")

                (supplementary-groups '("wheel"
                                        "audio" "video"))
                (home-directory "/home/test")))))

pgp7AQB0fXxeC.pgp
Description: PGP signature

--- End Message ---

> --- Begin Message ---
>
>
>
> Subject: 
>
> Re: bug#19190: Cannot boot with encrypted root
>
>
>
>
> Date: 
>
> Sun, 20 Sep 2015 22:14:33 +0200
>
>
>
>
> User-agent: 
>
> Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)
>
>
>
>
> Duncan Keall <address@hidden> skribis:
>
> > The boot process still fails at mounting the root filesystem (as
> > expected):
> >
> >   fsck.ext4: No such file or directory while trying to open /dev/mapper/main
> >   Possibly non-existent device?
>
> It took us a while but this part is now fixed with cc0e575, and commit
> 07779d0 adds dm-crypt.ko and xts.ko and their dependencies to the
> default initrd.
>
> I’m closing this bug, but if you have time and interest, you’re welcome
> to confirm whether this works for you.
>
> Thanks!
>
> Ludo’.
>
>
> --- End Message ---