Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly

To: "maximilian attems" <maks@sternwelten.at>
Cc: "Daniel Kahn Gillmor" <dkg-debian.org@fifthhorseman.net>, 370556@bugs.debian.org
Subject: Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
From: David Härdeman <david@2gen.com>
Date: Tue, 6 Jun 2006 09:31:44 +0200 (CEST)
Message-id: <[🔎] 34589.145.64.134.242.1149579104.squirrel@www.hardeman.nu>
Reply-to: David Härdeman <david@2gen.com>, 370556@bugs.debian.org
In-reply-to: <[🔎] 20060605230523.GJ28353@baikonur.stro.at>
References: <[🔎] 20060605210515.9796.44629.reportbug@squeak.fifthhorseman.net> <[🔎] 20060605230523.GJ28353@baikonur.stro.at>

Hey Maximilian, thanks for the CC.

On Tue, June 6, 2006 1:05, maximilian attems said:
> On Mon, Jun 05, 2006 at 05:05:15PM -0400, Daniel Kahn Gillmor wrote:
>> root=/dev/mapper/croot ro
>
> this is obviously wrong,
> current cryptsetup scripts expect the cryptoroot to be set by cryptopts,
> try
> root=/dev/mapper/squeak0 cryptopts=cryptsource=/dev/mapper/croot

I guess this isn't very clear, but if you have an encrypted root partition
on top of lvm/evms/md, you have to point the root variable to the
underlying lvm/evms/md partition (this is a limitation of how the current
initramfs system works).

So, could you try to just change the root variable to
root=/dev/mapper/squeak0-rt and boot? Skip the cryptopts variable
suggested above, it should already be set to something sane via a config
file in the initramfs.

> i never found the way those cryptopts are specified to be pretty,
> README.initramfs is not yet enlighting on the subject,
> adding Davic on cc.

I agree that they're not pretty. OTOH, once all bugs are ironed out, they
shouldn't be necessary save for exceptional cases. I'll write more
documentation when the dust settles and the scripts become more stable.

>> Proposal:
>>
>> What if the end user could supply a list of volume groups that need
>> activation in some environment variable stored in conf.d/lvm?  if that
>> variable was set, it would be the one used, otherwise, the script
>> would try to automatically detect the proper vg.

I think a better approach (which I've suggested before) would be to have a
list of devices that should be present before we try to mount root. That
list could then contain md/lvm/evms/crypto/dmraid devices as necessary, in
the proper order.

E.g. for root-on-lvm-on-crypto-on-lvm-on-raid-on-two-hds
rootdeps=/dev/hda,/dev/hdb,/dev/md0,/dev/mapper/basevg-baselv,/dev/mapper/cryptdevice,/dev/mapper/mainvg-rootlv

Then each script can inspect the list and bring up the next device in the
order if it knows how to do so.

Regards,
David

Reply to:

Follow-Ups:
- Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
  - From: maximilian attems <maks@sternwelten.at>
- Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
  - From: Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>

References:
- Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
  - From: Daniel Kahn Gillmor <dkg-debian.org@fifthhorseman.net>
- Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
  - From: maximilian attems <maks@sternwelten.at>

Prev by Date: Re: Bug#369017 closed by Manoj Srivastava <srivasta@debian.org> (Bug#369017: fixed in kernel-package 10.048)
Next by Date: Bug#370418: failed Installation report for etch beta2 on oldworld PowerPC Mac (beige g3)
Previous by thread: Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
Next by thread: Bug#370556: initramfs-tools: does not handle cryptroot-on-lvm properly
Index(es):
- Date
- Thread