Ubuntu
ubuntu-release-upgrader package

Nested Encryption (eCryptfs home-folder on encrypted partion) after update to Ubuntu 14.04

Bug #1311883 reported by Hans-Gregor Gehrke
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
ubuntu-release-upgrader (Ubuntu)
Expired
High
Unassigned

Bug Description

Hi,

after upgrading from Ubuntu 13.10 to 14.04 my home-dir was automatically encrypted using eCryptfs. Although useful, my home-dir is within an encrypted volume. And now encryption is nested. As a result, my data-throughput dropped to 30 Mb/s (120 MB/s before on SSD within encrypted volume)
I did solve the problem by removing the encryption layer added by eCryptfs (ecryptfs-setup-private --undo). Now I would like to suggest adding a user query for adding the encryption during update, at least, if encrypted volumes are already in use for the home-dir.

regards Gregor

See original description
Revision history for this message
Hans-Gregor Gehrke (b-u6untu-r) wrote :

I use the 64bit Standard Ubuntu, I updated using the graphical update client. My homefolder is within an encrypted (cryptsetup-luks) partition mounted automatically via crypttab and fstab.

Revision history for this message
Brian Murray (brian-murray) wrote :

Did you boot off a CD to complete the upgrade or did you use something on your Ubuntu system?

Changed in ubuntu-release-upgrader (Ubuntu):
status: New → Incomplete
importance: Undecided → High
Revision history for this message
Hans-Gregor Gehrke (b-u6untu-r) wrote :

I used the graphical "Software Updater", which is also used for regular updates (clicking on major system update). The update was started from the encrypted system, all required packages were downloaded from default sources defined in the Ubuntu repertory. During the update procedure I chose all default option (none related to encryption but rather to configurations of e.g Mysql etc.)

(Also the decryption was done using just the installed system by coping the data of "home" to a different hard drive, removing the home folder (using a different sudo-account), finally. restore home directory without encryption. This procedure is probably best done from pure command-promt to avoid troubles with locked files in the cache caused by the graphical interface.)

description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

[Expired for ubuntu-release-upgrader (Ubuntu) because there has been no activity for 60 days.]

Changed in ubuntu-release-upgrader (Ubuntu):
status: Incomplete → Expired
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.