[rsbac] Gentoo / RSBAC / Encrypted Root / Unmount fails
Michael Decker
MDecker at tesis.de
Wed Jul 12 08:19:47 CEST 2006
Hi,
sorry, for double posting, but at first, I thought, my mail was lost...
But does no one have an idea, what here happens?
Best regards,
Michael
-------- Original Message --------
From: Michael Decker <MDecker at tesis.de>
To: RSBAC Discussion and Announcements <rsbac at rsbac.org>,
gentoo-hardened at lists.gentoo.org
Subject: [rsbac] Gentoo / RSBAC / Encrypted Root / Unmount fails
Date: Tue Jul 11 2006 10:11:43 GMT+0200
> Hi,
>
> could somebody help me to solve this problem. I try to encrypting whole
> root device by doing this howto:
>
>
> So my booting fails caused by an unmount error.
>
> On booting an own created initrd will be started to open luks encrypted
> filesystem, so this last steps of linuxrc-script [2] fails (on umount
> command):
>
> --- SNIP ---
> pivot_root . initrd
>
> # Start init and flush ram device exec
> chroot . /bin/sh <<- EOF >/dev/console 2>&1
> umount initrd
> rm -rf initrd
> blockdev --flushbufs /dev/ram0
> exec /sbin/init ${CMDLINE}
> EOF
> --- SNAP ---
>
> So I get this error:
> --- SNIP ---
> EXT3 FS on dm-0, internal journal
> EXT3-fs: dm-0: 1 orphan inode deleted
> EXT3-fs: recovery complete.
> EXT3-fs: mounted filesystem with journal data mode.
> 0000000037|rsbac_free_dat_dentry(): freeing dat dir dentries
> 0000000038|do_umount() [sys_umount()]: umount failed -> calling
> rsbac_mount for Device 01:00
> --- SNAP ---
>
> I've run the kernel with this options:
> --- SNIP ---
> Kernel command line: root=/dev/ram0 rw init=/linuxrc rsbac_softmode
> console=ttyS0,57600 console=tty0
> --- SNAP ---
>
> Is this a RSBAC problem? Do I have to modify the script [2]? Perhaps
> could somebody give a suggestion?
>
> Best regards,
> Michael Decker
>
> [1]
> http://gentoo-wiki.com/SECURITY_Encrypting_Root_Filesystem_with_DM-Crypt_with_LUKS
> [2]
> http://gentoo-wiki.com/SECURITY_Encrypting_Root_Filesystem_with_DM-Crypt_with_LUKS#Initrd_Scripts
--
Michael Decker Michael.Decker at tesis.de
TESIS SYSware GmbH http://www.tesis.de
Baierbrunnerstr. 15 * 81379 Muenchen * Tel. +49 89 747377-0
More information about the rsbac
mailing list