[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: luks, crypttab: why 3 partition only 2 passphrases entered

On 08/02/2018 12:07 AM, Carles Pina i Estany wrote:
On Aug/01/2018, David Christensen wrote:
On 08/01/2018 03:47 PM, Carles Pina i Estany wrote:
I have a Debian Stretch and recently I added a new cyphered partition.
All works well but I don't understand why and it's bothering me.

$ cat /etc/crypttab
m2_root_crypt UUID=4e655198-a111-... none luks,discard
m2_swap_crypt UUID=56485640-8a04-... none luks,discard
ssd_dades_crypt UUID=8d1d855d-17a7-... none luks,discard

All three partitions have the same passphrase.

On restart I'm asked for two passwords:
The question is:
"Please unlock disk m2_root_crypt:"

I expcted to write the password three times.

My guess is that you made a mistake and stepped on your encrypted container
(ssd_dades_crypt?) when you created the new file system.  Did you keep a
copy of your console session?  Posting it would help.

Sadly I didn't keep a copy of my console session.

I got into the habit of cutting and pasting administrative console sessions into a log file (and putting the log file into a version control system). This technique has proven to be invaluable -- I recommend it to everyone.

Commands and something extra:
root@pinux:~# grep crypt /etc/fstab
/dev/mapper/m2_root_crypt	/               ext4    errors=remount-ro 0       1
/dev/mapper/m2_swap_crypt	none            swap    sw              0       0
/dev/mapper/ssd_dades_crypt	/home/carles/dades	ext4	errors=remount-ro 0 1


root@pinux:~# ls -l /dev/mapper/
total 0
crw------- 1 root root 10, 236 ago  1 23:34 control
lrwxrwxrwx 1 root root       7 ago  1 23:34 m2_root_crypt -> ../dm-0
lrwxrwxrwx 1 root root       7 ago  1 23:34 m2_swap_crypt -> ../dm-1
lrwxrwxrwx 1 root root       7 ago  1 23:34 ssd_dades_crypt -> ../dm-2


root@pinux:~# mount | grep dades
/dev/mapper/ssd_dades_crypt on /home/carles/dades type ext4 (rw,relatime,errors=remount-ro,data=ordered)


Please run the following command to learn more about the device mapper nodes:

# dmsetup info /dev/dm-*


Reply to: