Bug 525877

Summary: LiveCD: dracut should provide a way to skip encrypted volumes
Product: [Fedora] Fedora Reporter: Charles R. Anderson <cra>
Component: livecd-toolsAssignee: Jeremy Katz <katzj>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: rawhideCC: awilliam, harald, katzj
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-10-06 10:42:48 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Charles R. Anderson 2009-09-26 15:40:19 UTC 
Description of problem:

When booting a LiveCD, dracut examines all devices and tries to decrypt/mount them.  There should be a way to skip this, because one may not wish to access the hard drive at all for the LiveCD boot, or one may not know the passphrase(s) to decrypt hard drive partition(s) or LV(s).

Version-Release number of selected component (if applicable):
desktop-i386-20090924.18.iso

How reproducible:
always

Steps to Reproduce:
1. boot 20090924 desktop LiveCD on a system that has encrypted hard drive
2.
3.
  
Actual results:
Dracut asks for passphrase for encrypted hard drive.  If there are many encrypted volumes, dracut asks for the passphrase for all of them in sequence.  There is no way to identify which device for which the passphrase is being asked, and there is no way to skip decrypting some/all devices.

On a system that contains many encrypted devices, the current behavior effectively makes booting the LiveCD impossible, because there is a never ending prompting for passphrases.

Expected results:
Each encrypted device for which a passphrase is asked should be identified somehow, and there hsould be a way to skip decrypting that device or all encrypted devices.  Alternatively, there should be a way to have the LiveCD skip all hard drive access entirely.


Additional info:
Comment 1 Harald Hoyer 2009-09-29 12:04:59 UTC 
add "rd_NO_LUKS" to the kernel command line and it does not decrypt any partitions



see man dracut.8:

crypto LUKS
       rd_NO_LUKS
              disable crypto LUKS detection

       rd_LUKS_UUID=<luks uuid>
              only activate the LUKS partitions with the given UUID
Comment 2 Adam Williamson 2009-10-22 20:31:14 UTC 
Changing this to CLOSED RAWHIDE, as we actually changed livecd-creator so the rd_NO_LUKS parameter is used, and hence live CDs don't activate encrypted volumes or mdraid sets.

-- 
Fedora Bugzappers volunteer triage team
https://fedoraproject.org/wiki/BugZappers