Lab 10.1

thebiz

Hi,

I have been pulling my hair out trying to get this to work correctly during the last 2 days!

Everything in Lab 10.1 works fine until the reboot at the end and it then all falls apart.

Admittedly, I changed the encrypted directory from being on the root directory to being a directory off my home directory. Should that make a difference?

Problem symptoms:

I get prompted 3 times (!) to enter the encryption passphrase on boot.

Along with the passphrase prompt I get the following message:

"The disk drive for /home//.secret is not ready yet or not present. Continue to wait. Press S to skip mounting or M for manual recovery."

After entering the passphrase three times as prompted I am obliged to Press S to skip mount and continue boot.

Does anyone have any bright ideas about how to solve this?

Diagnostic information:

:~$ cat /etc/crypttab

/dev/mapper/secret-disk /dev/sda11 none luks



:~$ cat /etc/fstab

# /etc/fstab: static file system information.

#

# Use 'blkid' to print the universally unique identifier for a

# device; this may be used with UUID= as a more robust way to name devices

# that works even if disks are added and removed. See fstab(5).

#

#


UUID=0288dc9a-30c5-4a83-ace9-c8c93318a798 / ext4 errors=remount-ro 0 1

/dev/mapper/secret-disk /home//.secret ext4 defaults 0 2

UUID=86064e89-1272-4937-9092-ee51b1b6a8d5 none swap sw 0 0

UUID=697d8f2a-4d77-4a4c-b48a-a90a525e31b1 /var/lib/transmission-daemon/downloads ext4 defaults 0 1

:~$ ll /dev/sda*

brw-rw---- 1 root disk 8, 0 apr 23 10:38 /dev/sda

brw-rw---- 1 root disk 8, 1 apr 23 10:38 /dev/sda1

brw-rw---- 1 root disk 8, 10 apr 23 10:38 /dev/sda10

brw-rw---- 1 root disk 8, 11 apr 23 10:41 /dev/sda11

brw-rw---- 1 root disk 8, 2 apr 23 10:38 /dev/sda2

brw-rw---- 1 root disk 8, 3 apr 23 10:38 /dev/sda3

brw-rw---- 1 root disk 8, 4 apr 23 10:38 /dev/sda4

brw-rw---- 1 root disk 8, 5 apr 23 10:38 /dev/sda5

brw-rw---- 1 root disk 8, 6 apr 23 10:38 /dev/sda6

brw-rw---- 1 root disk 8, 7 apr 23 10:38 /dev/sda7

brw-rw---- 1 root disk 8, 8 apr 23 10:38 /dev/sda8

brw-rw---- 1 root disk 8, 9 apr 23 10:38 /dev/sda9

:~$ ll /home/ | grep .secret

drwxrwxr-x 2 4096 apr 23 10:17 .secret/

coop

1) your /etc/crypttab line looks wrong. You have two device nodes instead of something like
secret-disk /dev/sda4
as in the lab solution.
2) I assume in your /etc/fstab you put in a real username instead of <username>
3) I assume /home/yourname/.secret exists as a directory (usually empty)

thebiz

Hi Jerry,
I edited /etc/crypttab as suggested and its working.

I did take a look at the Ubuntu crypttab manpage

I don't know why the following was not clear...

The first field, target, describes the mapped device name. It must be a
plain file name without any directory components. A mapped device which
encrypts/decrypts data to/from the source device will be created at
/dev/mapper/target by cryptsetup.

...but I do remember being indignant that a target would come before a source in the configuration parameters. For as long as I can remember source has always come before target. I am probably being a pompous old fart but this seems to be the equivalent of bad grammar.

Anyway, thanks for you assistance.