Ubuntu
mandos package

mandos premount script needs setsid which is not in initrd

Bug #1931287 reported by Christian Rusa
10
This bug affects 2 people
Affects Status Importance Assigned to Milestone
mandos (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

The last lines of /usr/share/initramfs-tools/scripts/init-premount/mandos are
elif [ -x /usr/bin/cryptroot-unlock ]; then
    setsid /lib/mandos/mandos-to-cryptroot-unlock &
fi

As setsid is not present in the initramfs this premount script fails.

Tested on a fresh install of 20.04.

Workaround to solve this problem was to create a hook in /etc/initramfs-tools/hooks/
which simply does
cp -a /usr/bin/setsid $DESTDIR/bin/setsid

PS: Package was mandos-client not mandos (server), but form states - "mandos-client" does not exist in Ubuntu

ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: mandos-client 1.8.9-2
ProcVersionSignature: Ubuntu 5.4.0-74.83-generic 5.4.114
Uname: Linux 5.4.0-74-generic x86_64
ApportVersion: 2.20.11-0ubuntu27.18
Architecture: amd64
CasperMD5CheckResult: skip
Date: Tue Jun 8 18:53:16 2021
SourcePackage: mandos
UpgradeStatus: No upgrade log present (probably fresh install)
modified.conffile..etc.mandos.plugin-runner.conf: [modified]
mtime.conffile..etc.mandos.plugin-runner.conf: 2021-06-08T18:19:25.887512

Revision history for this message
Christian Rusa (ehristian) wrote :
Revision history for this message
Mandos Maintainers (mandos-maintainers) wrote (last edit ):

This was fixed in Mandos 1.8.12 (released eleven months ago).

Revision history for this message
Christian Rusa (ehristian) wrote :

ubuntu 20.04 uses version 1.8.9.
Any plans to backport this fix?

Looks like it should be easy:

- setsid /lib/mandos/mandos-to-cryptroot-unlock &
+ # Use setsid if available
+ if command -v setsid >/dev/null 2>&1; then
+ setsid /lib/mandos/mandos-to-cryptroot-unlock &
+ else
+ /lib/mandos/mandos-to-cryptroot-unlock &
+ fi

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in mandos (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.