[pkg-cryptsetup-devel] Bug#915214: cryptsetup-initramfs: Scripts from /usr/share/initramfs-tools/hooks/ don't add files to initramfs when /tmp/ and /var/tmp/ are mounted with noexec

[Mikhail Morfikov]

Package: cryptsetup-initramfs
Version: 2:2.0.5-2
Severity: important

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Dear Maintainer,

The /usr/share/initramfs-tools/hooks/cryptkeyctl file has the following lines:

- ------------------------------------
# Check whether cryptroot hook has installed decrypt_keyctl script
if [ ! -x "$DESTDIR/lib/cryptsetup/scripts/decrypt_keyctl" ]; then
    exit 0
fi
- ------------------------------------

My system has the /tmp/ and /var/tmp/ mounted with the "noexec" flag. In such
case, it looks like the check returns false and the /bin/keyctl binary isn't
added to the initramfs. Everything backs to normal when the tmp dirs are
remounted with the "exec" flag.

Also, the rest of files in /usr/share/initramfs-tools/hooks/crypt* have similar
check.




-----BEGIN PGP SIGNATURE-----
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=H5V0
-----END PGP SIGNATURE-----