Ubuntu
linux package

/usr/bin/ecryptfs-setup-private fails with exit status 1 during install - User's home directory not encrypted

Bug #827197 reported by Jean-Baptiste Lallement on 2011-08-16

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	linux (Ubuntu)	Fix Released	High	Andy Whitcroft	Ubuntu ubuntu-11.10-beta-1
	Oneiric	Fix Released	High	Andy Whitcroft	Ubuntu ubuntu-11.10-beta-1

Bug Description

ubuntu server 20110816

During install, users's home directory is not encrypted despite the option 'Encrypt Home' has been selected.

Relevant part of the installation log:
debconf: --> GET user-setup/encrypt-home
debconf: <-- 0 true
debconf: --> GET anna/retriever
debconf: <-- 0 cdrom-retriever
anna-install: Installing crypto-modules
debconf: --> CAPB backup
debconf: <-- 0 multiselect backup progresscancel align plugin-terminal plugin-detect-keyboard
debconf: --> GET anna/retriever
debconf: <-- 0 cdrom-retriever
user-setup: watching '/run/udev' failed
udevadm[1670]: watching '/run/udev' failed
user-setup: INFO: Setting up swap: [/dev/sda5]
user-setup: WARNING: Commented out your unencrypted swap from /etc/fstab
user-setup: INFO: Successfully setup encrypted swap!
debconf: --> GET passwd/username
debconf: <-- 0 ubuntu
debconf: --> GET passwd/user-fullname
debconf: <-- 0 ubuntu
user-setup: Adding user `ubuntu' ...
user-setup: Adding new group `ubuntu' (1000) ...
groupadd[1704]: group added to /etc/group: name=ubuntu, GID=1000
groupadd[1704]: group added to /etc/gshadow: name=ubuntu
groupadd[1704]: new group: name=ubuntu, GID=1000
user-setup: Adding new user `ubuntu' (1000) with group `ubuntu' ...
useradd[1708]: new user: name=ubuntu, UID=1000, GID=1000, home=/home/ubuntu, shell=/bin/bash
user-setup: Creating home directory `/home/ubuntu' ...
user-setup: Setting up encryption ...
user-setup: ERROR: Cannot get ecryptfs version, ecryptfs kernel module not loaded?
user-setup: adduser: `/usr/bin/ecryptfs-setup-private -b -u ubuntu' returned error code 1. Exiting.

Full syslog attached

ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: user-setup (not installed)
ProcVersionSignature: Ubuntu 3.0.0-8.10-generic 3.0.1
Uname: Linux 3.0.0-8-generic i686
Architecture: i386
Date: Tue Aug 16 10:59:10 2011
EcryptfsInUse: Yes
ProcEnviron:
PATH=(custom, user)
LANG=en_US.utf8
SHELL=/bin/bash
SourcePackage: user-setup
UpgradeStatus: Upgraded to oneiric on 2011-07-12 (34 days ago)

Tags:

Revision history for this message

Jean-Baptiste Lallement (jibel) wrote on 2011-08-16:

syslog.gz Edit (164.1 KiB, application/octet-stream)

Changed in user-setup (Ubuntu Oneiric):
status:	New → Triaged
importance:	Undecided → High
assignee:	nobody → Canonical Foundations Team (canonical-foundations)
summary:	/usr/bin/ecryptfs-setup-private fails with exit status 1 during install + - User's home directory not encrypted
Changed in user-setup (Ubuntu Oneiric):
milestone:	none → ubuntu-11.10-beta-1

Revision history for this message

Colin Watson (cjwatson) wrote on 2011-08-19:

This is actually a kernel bug. ecryptfs is supposed to be built-in, but for some reason has turned into a module.

affects:	user-setup (Ubuntu Oneiric) → linux (Ubuntu Oneiric)
Changed in linux (Ubuntu Oneiric):
assignee:	Canonical Foundations Team (canonical-foundations) → nobody
milestone:	ubuntu-11.10-beta-1 → none

Jean-Baptiste Lallement (jibel) on 2011-08-19

Changed in linux (Ubuntu Oneiric):
assignee:	nobody → Canonical Kernel Team (canonical-kernel-team)

Colin Watson (cjwatson) on 2011-08-19

Changed in linux (Ubuntu Oneiric):
milestone:	none → ubuntu-11.10-beta-1

Revision history for this message

Andy Whitcroft (apw) wrote on 2011-08-19:

It does indeed appear that ecryptfs has moved itself back to being a module:

-rw-r--r-- root/root 189368 2011-08-13 02:31 ./lib/modules/3.0.0-8-generic/kernel/fs/ecryptfs/ecryptfs.ko

despite the config:

debian.master/config/config.common.ubuntu:CONFIG_ECRYPT_FS

And indeed on the machine:

$ grep ECRYPT_FS /boot/config-`uname -r`
CONFIG_ECRYPT_FS=m

Looking at the configuration options this is because ECRYPTFS is now dependant on ENCRYPTED_KEYS which is =m which drags ECRYPTSFS down to =m.

Pushed patches to fix this up to Oneiric.

Changed in linux (Ubuntu Oneiric):
status:	Triaged → Fix Committed
assignee:	Canonical Kernel Team (canonical-kernel-team) → Andy Whitcroft (apw)

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-08-20:

This bug was fixed in the package linux - 3.0.0-9.12

---------------
linux (3.0.0-9.12) oneiric; urgency=low

[ Andy Whitcroft ]

  * [Config] standardise CONFIG_NETFILTER_XT_TARGET_TCPOPTSTRIP=m
  * [Config] move ECRYPT_FS back to =y for all architectures
    - LP: #827197
  * record the compiler in the ABI and check for inconsistant builds

[ Leann Ogasawara ]

  * Revert "SAUCE: OMAP: DSS2: enable hsclk in dsi_pll_init for OMAP36XX"
  * Revert "SAUCE: OMAP: DSS2: check for both cpu type and revision, rather
    than just revision"
  * Revert "SAUCE: ARM: OMAP: Add macros for comparing silicon revision"
  * rebase to v3.0.2
  * rebase to v3.0.3
  * Temporarily ignore module check
  * [Config] Set CONFIG_DM_MIRROR=m on amd64, i386, and arm
  * [Config] Set CONFIG_DM_MULTIPATH=m on amd64, i386, and arm
  * [Config] Set CONFIG_DM_SNAPSHOT=m on amd64, i386, and arm
  * [Config] Enable CONFIG_EDAC_AMD8111=m on powerpc
  * [Config] Enable CONFIG_EDAC_AMD8131=m on powerpc
  * [Config] Enable CONFIG_EDAC_CPC925=m on powerpc
  * [Config] Enable CONFIG_EDAC_PASEMI=m on powerpc
  * [Config] Set CONFIG_EFI_VARS=m on amd64 and i386

[ Stefan Bader ]

  * [Upstream] xen-blkfront: Drop name and minor adjustments for emulated
    scsi devices
    - LP: #784937
  * [Config] Force perf to use libiberty for demangling
    - LP: #783660

[ Stefano Stabellini ]

* [Upstream] xen: Do not enable PV IPIs when vector callback not present
- LP: #791850

[ Tim Gardner ]

* [Config] updateconfigs after rebase to 3.0.2

[ Upstream Kernel Changes ]

  * Not all systems expose a firmware or platform mechanism for changing
    the backlight intensity on i915, so add native driver support.
    - LP: #568611
  * rebase to v3.0.2
  * rebase to v3.0.3
-- Leann Ogasawara <email address hidden> Mon, 15 Aug 2011 13:35:57 -0700

Changed in linux (Ubuntu Oneiric):
status:	Fix Committed → Fix Released

Revision history for this message

Jean-Baptiste Lallement (jibel) wrote on 2011-08-23:

I verified with Oneiric Desktop 20110822 which ships kernel 3.0.0-13 and the error is still there with the same error message.
Reopening.

Changed in linux (Ubuntu Oneiric):
status:	Fix Released → In Progress

Revision history for this message

Andy Whitcroft (apw) wrote on 2011-08-23:

Seems that the fix didn't take somehow. I have re-fixed it and further added a rule to the config enforcer to prevent it undoing itself again.

Changed in linux (Ubuntu Oneiric):
status:	In Progress → Fix Committed

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-08-23:

This bug was fixed in the package linux - 3.0.0-9.14

---------------
linux (3.0.0-9.14) oneiric; urgency=low

[ Andy Whitcroft ]

  * [Config] re-fix ECRYPT_FS=y
    - LP: #827197
  * enforcer -- ensure we have CONFIG_ECRYPT_FS=y
    - LP: #827197
-- Leann Ogasawara <email address hidden> Tue, 23 Aug 2011 08:32:55 -0700

Changed in linux (Ubuntu Oneiric):
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

syslog.gz Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntulinux package

/usr/bin/ecryptfs-setup-private fails with exit status 1 during install - User's home directory not encrypted

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
linux package