skip trying to decrypt device if it already exists
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Bionic Backports |
Fix Released
|
Undecided
|
James Page | ||
vaultlocker |
Fix Released
|
Medium
|
Rodrigo Barbieri | ||
vaultlocker (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Eoan |
Fix Released
|
Medium
|
Unassigned | ||
Focal |
Fix Released
|
Medium
|
Unassigned |
Bug Description
[Impact]
Restarting a vaultlocker-decrypt systemd unit after it has successfully executed results in a hanging vaultlocker process.
[Test Case]
Encrypt a block device using vaultlocker.
Restart the systemd unit associated with the device.
[Regression Potential]
Low - the change simply skips dmcrypt opening of the block device if it is already open on the local system.
[Original Bug Report]
In a scenario where vaultlocker decrypted the device but it ended up not being mounted (either due to bug https:/
To cleanly mount the device, I attempted to:
- Restart vaultlocker-
Feb 12 18:20:16 juju-cc9161-
Feb 12 18:20:16 juju-cc9161-
Feb 12 18:20:16 juju-cc9161-
Feb 12 18:20:16 juju-cc9161-
Feb 12 18:20:16 juju-cc9161-
I stopped the service and killed the two processes it spawns in order to stop vaultlocker.
- Restart "var-lib-
If vaultlocker was patched to transition directly to "active" (and then inactive/dead), then restarting either one of them would be able to *only* mount the decrypted device in this scenario.
My workaround that worked was to run "cryptsetup luksClose /dev/mapper/
Changed in vaultlocker: | |
assignee: | nobody → Rodrigo Barbieri (rodrigo-barbieri2010) |
tags: | added: sts |
Changed in vaultlocker: | |
status: | In Progress → Fix Committed |
Changed in vaultlocker (Ubuntu): | |
status: | New → Triaged |
importance: | Undecided → Medium |
Changed in vaultlocker: | |
importance: | Undecided → Medium |
Changed in vaultlocker: | |
status: | Fix Committed → Fix Released |
no longer affects: | vaultlocker (Ubuntu Bionic) |
Changed in vaultlocker (Ubuntu Eoan): | |
status: | New → Triaged |
importance: | Undecided → Medium |
description: | updated |
Changed in bionic-backports: | |
status: | New → In Progress |
assignee: | nobody → James Page (james-page) |
Changed in bionic-backports: | |
status: | In Progress → Fix Released |
PR: https:/ /github. com/openstack- charmers/ vaultlocker/ pull/9