[pkg-cryptsetup-devel] Bug#638317: /lib/cryptsetup/cryptdisks.functions: Existence of TABFILE checked before overridable in cryptdisks.functions
Douglas Huff
dhuff at jrbobdobbs.org
Thu Aug 18 15:29:07 UTC 2011
Package: cryptsetup
Version: 2:1.3.0-3
Severity: normal
File: /lib/cryptsetup/cryptdisks.functions
The TABFILE environment variable is overwritten indiscrimently no matter
it's previous value. It is subsequently checked whether the path
contained in this variable exists on the filesystem before any other
method of overriding is available.
Suggestions:
Move:
# Sanity checks
[ -x /sbin/cryptsetup ] || exit 0
[ -f "$TABFILE" ] || exit 0
Below:
if [ -r /etc/default/cryptdisks ]; then
. /etc/default/cryptdisks
fi
So that the systems admin can define this file without needing a dummy
/etc/crypttab in place.
-- Package-specific info:
-- /proc/cmdline
BOOT_IMAGE=/vmlinuz-3.0.0-1-amd64 root=/dev/mapper/backupsvg-rootlv ro quiet
-- /etc/crypttab
# <target name> <source device> <key file> <options>
-- /etc/fstab
# /etc/fstab: static file system information.
#
# Use 'blkid' to print the universally unique identifier for a
# device; this may be used with UUID= as a more robust way to name devices
# that works even if disks are added and removed. See fstab(5).
#
# <file system> <mount point> <type> <options> <dump> <pass>
proc /proc proc defaults 0 0
/dev/mapper/backupsvg-rootlv / ext4 errors=remount-ro 0 1
# /boot was on /dev/sda1 during installation
UUID=1856f547-63d0-443d-b5a0-8f7298d3ce46 /boot ext2 defaults 0 2
/dev/mapper/backupsvg-homelv /home ext4 defaults 0 2
/dev/mapper/backupsvg-tmplv /tmp ext4 defaults 0 2
/dev/mapper/backupsvg-usrlv /usr ext4 defaults 0 2
/dev/mapper/backupsvg-varlv /var ext4 defaults 0 2
/dev/mapper/backupsvg-swaplv none swap sw 0 0
-- lsmod
Module Size Used by
ums_realtek 12750 0
cryptd 14549 0
aes_x86_64 16796 4
aes_generic 33026 1 aes_x86_64
xts 12688 2
gf128mul 13044 1 xts
nfsd 260697 13
nfs 259361 0
lockd 71503 2 nfsd,nfs
fscache 36721 1 nfs
auth_rpcgss 37204 2 nfsd,nfs
nfs_acl 12511 2 nfsd,nfs
sunrpc 168873 19 nfsd,nfs,lockd,auth_rpcgss,nfs_acl
ext2 63732 1
loop 22711 0
dm_crypt 22611 1
sp5100_tco 12900 0
arc4 12458 2
rt2800pci 13908 0
rt2800lib 39487 1 rt2800pci
crc_ccitt 12347 1 rt2800lib
rt2x00pci 12845 1 rt2800pci
rt2x00lib 37998 3 rt2800pci,rt2800lib,rt2x00pci
mac80211 182631 3 rt2800lib,rt2x00pci,rt2x00lib
cfg80211 132564 2 rt2x00lib,mac80211
rfkill 19080 1 cfg80211
psmouse 55656 0
evdev 17558 3
pcspkr 12579 0
serio_raw 12846 0
k10temp 12611 0
eeprom_93cx6 12455 1 rt2800pci
i2c_piix4 12536 0
snd_hda_codec_hdmi 26321 1
radeon 648372 1
ttm 52979 1 radeon
snd_hda_intel 26140 0
snd_hda_codec 72699 2 snd_hda_codec_hdmi,snd_hda_intel
drm_kms_helper 27216 1 radeon
processor 27942 2
thermal_sys 17949 1 processor
drm 163231 3 radeon,ttm,drm_kms_helper
snd_hwdep 13186 1 snd_hda_codec
button 12930 0
snd_pcm 68104 3 snd_hda_codec_hdmi,snd_hda_intel,snd_hda_codec
snd_timer 22581 1 snd_pcm
i2c_algo_bit 12850 1 radeon
i2c_core 23909 5 i2c_piix4,radeon,drm_kms_helper,drm,i2c_algo_bit
snd 52823 6 snd_hda_codec_hdmi,snd_hda_intel,snd_hda_codec,snd_hwdep,snd_pcm,snd_timer
power_supply 13475 1 radeon
soundcore 13152 1 snd
snd_page_alloc 13043 2 snd_hda_intel,snd_pcm
ext4 313917 6
mbcache 13066 2 ext2,ext4
jbd2 62574 1 ext4
crc16 12343 1 ext4
dm_mod 63164 21 dm_crypt
sg 25985 0
sd_mod 36259 4
crc_t10dif 12348 1 sd_mod
ata_generic 12479 0
usb_storage 47996 2 ums_realtek
usbhid 40516 0
hid 73172 1 usbhid
uas 13299 0
pata_atiixp 12697 0
xhci_hcd 68261 0
ohci_hcd 26576 0
ahci 25089 2
libahci 22767 1 ahci
libata 149043 4 ata_generic,pata_atiixp,ahci,libahci
ehci_hcd 40090 0
r8169 42411 0
mii 12675 1 r8169
scsi_mod 162442 5 sg,sd_mod,usb_storage,uas,libata
usbcore 124242 8 ums_realtek,usb_storage,usbhid,uas,xhci_hcd,ohci_hcd,ehci_hcd
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 3.0.0-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages cryptsetup depends on:
ii debconf [debconf-2.0] 1.5.40 Debian configuration management sy
ii dmsetup 2:1.02.63-3.1 The Linux Kernel Device Mapper use
ii libc6 2.13-10 Embedded GNU C Library: Shared lib
ii libcryptsetup1 2:1.3.0-3 libcryptsetup shared library
ii libpopt0 1.16-1 lib for parsing cmdline parameters
cryptsetup recommends no packages.
Versions of packages cryptsetup suggests:
ii busybox 1:1.18.5-1 Tiny utilities for small and embed
ii dosfstools 3.0.9-1 utilities for making and checking
ii initramfs-tools [linux-initra 0.99 tools for generating an initramfs
ii liblocale-gettext-perl 1.05-7 module using libc functions for in
ii udev 172-1 /dev/ and hotplug management daemo
-- debconf information:
cryptsetup/prerm_active_mappings: true
More information about the pkg-cryptsetup-devel
mailing list