433406 – RFE: FC9 more descriptive boot prompt

Bug 433406 - RFE: FC9 more descriptive boot prompt

Summary: RFE: FC9 more descriptive boot prompt

Keywords:
Status:	CLOSED RAWHIDE
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	cryptsetup-luks
Sub Component:
Version:	rawhide
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Peter Jones
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2008-02-19 03:19 UTC by Ray Todd Stevens
Modified:	2008-04-15 17:51 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2008-04-15 17:35:32 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
Patch to add device to the prompt (1.08 KB, patch) 2008-04-15 16:16 UTC, Bill Nottingham	no flags	Details \| Diff
View All

Description Ray Todd Stevens 2008-02-19 03:19:32 UTC

When you boot up the encrypted volume thing asks for "LUKS Password:"    Now
this lacks a little in description.

How about some kind of an indicator of which volume we are talking about in case
in the future we are dealing with more than one.   More important how about
something like "LUKS disk volume password:"   So that less skilled people can
know what you are asking about.

Also how about adding 9 alpha 1 to the list of versions so that this can be
tracked better.

Comment 1 Ray Todd Stevens 2008-02-19 14:09:22 UTC

Also apparently when you type in the pass phrase,  you only have one shot at it.
 Now having go after go at it may be a security issue, but only one chance will
get users to start throwing their computers through a window. ;-)

Comment 2 Till Maas 2008-03-03 21:46:14 UTC

Imho an initscripts bug, therefore I change the component. If you consider this
to be a bug in cryptsetup, please use cryptsetup-luks as the component.

Comment 3 Bill Nottingham 2008-03-04 01:37:00 UTC

initscripts is not involved with this prompt.

Comment 4 Till Maas 2008-03-04 09:17:05 UTC

Hm, changing the prompt to be "LUKS disk volume password:" in cryptsetup sounds
wrong to me, because it may not be a disk volume, because cryptsetup can be used
to encrypt any file/block device (e.g. cds, usb sticks, floppies).

A change to

"LUSK password to open %s as %s:" with the device and the name for the mapping
provided would not hurt, imho. Nevertheless, it is possible to pipe the passwort
to cryptsetup and get it first from the user with an arbitrary prompt, which
would allow to provide even more information about the volume, e.g. it could be
explained that it is the root partition when the root partition is mounted.

Comment 5 Ray Todd Stevens 2008-03-04 12:21:46 UTC

How about just LUSK encrption key password:   Instead of just LUSK Password.

At least that gives people who are not conversent with what LUKS is a clue as to
what they are dealing with and which password is being asked for.

Comment 6 Ray Todd Stevens 2008-03-09 22:38:34 UTC

I did just check and found a difference in the process.   It has fixed the
comment #1.   This is a BIG help.   If you enter the password wrong now, it asks
again.  At least if you guess wrong in what password we are talking about you
get a second chance without having to totally restart the boot process.

Comment 7 Bill Nottingham 2008-04-15 16:16:20 UTC

Created attachment 302488 [details]
Patch to add device to the prompt

Here's a patch that adds the device name. I'm not sure the mapper device is
particularly relevant, but I could be wrong.

The reason I'd rather do this in cryptsetup for now is that trying to do all
the prompting and piping from shell would be a real pain.

Comment 8 Bill Nottingham 2008-04-15 17:35:32 UTC

Added in 1.0.6-2.

Comment 9 Bill Nottingham 2008-04-15 17:51:46 UTC

*** Bug 437261 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.