Ubuntu
cryptsetup package

cryptgnupg-sc initramfs script with plymouth locks up pinentry

Bug #1903875 reported by Keeley Hoek
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
cryptsetup (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

It's great that the `cryptgnupg-sc` keyscript exists and runs out-of-the-box, and it (and its brethren) should be more widely known!

However, `cryptgnupg-sc` prompts using `pinentry-ncurses` which 1. hides behind plymouth so it looks like everything has hung, and 2. actually locks up when you try to enter a password (try it) because (I believe) plymouth captures [ENTER] so you can't actually select OK on the pinentry dialog.

To fix this, I think all that needs to happen is the copy of `pinentry` copied into the initramfs by the `cryptgnupg-sc` hook needs to be replaced. Are the maintainers aware of this project: https://github.com/werwurm/plymentry which essentially does this? (That repository also houses some scripts which are irrelevant for our purposes here.)

Is there scope to ship a tiny binary which replaces pinentry along with `cryptsetup-initramfs`? (GNUPG would be none-the-wiser.) This would make the family of shipped keyscripts work really well just by setting up `/etc/crypttab`, without any initramfs script hacking at all. At the moment it's tantalizingly close!

Kind regards,
Keeley

See original description
Keeley Hoek (khoek)
description: updated
Keeley Hoek (khoek)
description: updated
description: updated
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in cryptsetup (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.