Failing to boot when using the "Encrypt my data" to boot.

Support for security such as Firewalls and securing linux
Post Reply
JDMac
Posts: 20
Joined: 2015/01/06 09:31:58

Failing to boot when using the "Encrypt my data" to boot.

Post by JDMac » 2015/01/07 11:34:36

Basic Info:
Using VMPlayer - 7.0.0 build-2305329
ISO: CentOS-7.0-1406-x86_64-DVD.iso
2 Cores / 4 GB / 20 GB HDD (Added as SCSI).
Installation Type: Minimal

Problem found:
Installing CentOS using automatic partitioning and drive encryption, successfully installs but fails to boot.
Same options, excluding the encryption, normally boots fine.
No prompt for passphrase, only lines shown on attempting to boot are:

Code: Select all

[   10.751264] sd 0:0:0:0: [sda] Assuming drive cache: write through
[   10.752945] sd 0:0:0:0: [sda] Assuming drive cache: write through
[   10.758126] sd 0:0:0:0: [sda] Assuming drive cache: write through
The underscore cursor is left flashing on the next line to this.

If I reboot rescue mode, same deal.
Tried using the Troubleshooting > Rescue and CentOS system, from the bootable ISO.
It is able to mount the /dev/sda2 partition the installation created so I browsed into /mnt/sysimage/etc
Opened crypttab:

Code: Select all

luks-########-####-####-############ UUID=########-####-####-####-############ none
Single line, so appears to me that the anaconda installer is trying to luks encrypt the entire PV.

Opening fstab:

Code: Select all

/dev/mapper/centos-root / xfs defaults,x-systemd.device-timeout=0 1 1
UUID=########-####-####-####-############ /boot xfs defaults 1 2
/dev/mapper/centos-swap swap swap defaults,x-systemd.device-timeout=0 0 0
Not sure I can see anything wrong with that, since I believe that the usual cipher parameter for swap isn't needed as this is PV level luks encryption. - Feel free to correct me on this. :)

Query to CentOS Community:
I've done a fair bit of searching, both on Google and here on the forum, and found now direct reports of others experiencing this so wondered if the community has by directly asking.
It works fine on Centos 6.6, just not CentOS 7.

Thanks,

JDMac

User avatar
TrevorH
Forum Moderator
Posts: 27438
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Failing to boot when using the "Encrypt my data" to boot

Post by TrevorH » 2015/01/07 11:36:28

It's a known bug. Remove rhgb quiet from the kernel command line in /boot/grub2/grub.cfg or its EFI equivalent. Can also be done from the grub command prompt at boot time on a one-time basis.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
CentOS 5 has been EOL for nearly 3 years and should no longer be used for anything!
Full time Geek, part time moderator. Use the FAQ Luke

JDMac
Posts: 20
Joined: 2015/01/06 09:31:58

Re: Failing to boot when using the "Encrypt my data" to boot

Post by JDMac » 2015/01/07 11:59:42

Excellent, worked a treat. Thank you very much.

Is this a bug upstream from RHEL Sources or just local to CentOS? - Guess it's something that'll be address 7.1 perhaps?

User avatar
TrevorH
Forum Moderator
Posts: 27438
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Failing to boot when using the "Encrypt my data" to boot

Post by TrevorH » 2015/01/07 12:01:41

I think it's a RHEL bug but the bug report I know about is in the CentOS bug tracker.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
CentOS 5 has been EOL for nearly 3 years and should no longer be used for anything!
Full time Geek, part time moderator. Use the FAQ Luke

JDMac
Posts: 20
Joined: 2015/01/06 09:31:58

Re: Failing to boot when using the "Encrypt my data" to boot

Post by JDMac » 2015/01/07 12:06:04

Thanks for your help and confirming TrevorH. I'll dig it out the bugtracker then for reference.

Post Reply

Return to “CentOS 7 - Security Support”