Bug#765594: systemd: Attempting to hibernate permanently breaks encrypted swap partition

Michael Biebl biebl at debian.org
Thu Oct 16 14:47:22 BST 2014 

Am 16.10.2014 um 15:36 schrieb Rebecca N. Palmer:
> Package: systemd
> Version: 215-5+b1
> Severity: normal
> 
> Dear Maintainer,
> 
> I have LUKS encrypted /, /home and swap; before attempting to hibernate,
> the initramfs could successfully mount swap, but I normally skipped this
> and let systemd mount it, as systemd's swap setup would report failure
> if the partition was already mounted.
> 
> After hibernating the system (with either 'sudo pm-hibernate' or
> 'systemctl hibernate'), attempting to mount swap in the initramfs would
> fail with "No key available with this passphrase", and the system would
> hence proceed to normal boot rather than resume.
> 
> systemd would then "successfully" mount the partition - *with or without
> the password* - and gnome-system-monitor would then say swap was
> available, but gnome-disk-utility would say the swap partition was
> locked.  Attempting to unlock the partition would fail, first with
> something to the effect of "device already exists/is already mounted",
> then after a 'cryptsetup close /dev/mapper/sda4_crypt', with "No key
> available with this passphrase".

If unlocking the crypt container failed, there should be no
/dev/mapper/sda4_crypt device.

> This persisted even after rebooting; the only fix I know is to
> completely re-create the partition:
> cryptsetup close /dev/mapper/sda4_crypt
> #delete and recreate the swap partition with (e.g.) gnome-disk-utility
> sudoedit /etc/crypttab #remove the old partition's entry
> sudo update-initramfs -u -k all

After recreating the crypt partition, does systemd unlock and mount
/dev/mapper/sda4_crypt properly?
What about /dev/mapper/sda5_crypt?

> After switching to sysvinit-core and Cinnamon desktop, hibernation
> worked normally.
> 
> I'm guessing at a destroyed LUKS header and systemd falling back to
> plain, but have no proof of that.

Please boot with systemd.log_level=debug on the kernel command line and
the attach the journal log (journalctl -alb).

Michael


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20141016/560c9492/attachment-0005.sig>

More information about the Pkg-systemd-maintainers mailing list