-
Notifications
You must be signed in to change notification settings - Fork 1.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to mount encrypted chroot in ChromeOS 9647.0.0 #3274
Comments
Hi, My experience:
Looks like the ChromeOS update from Jun 5th, 2017 changes something in the FS and the crouton installer needs an update too. Be careful, when you update ChromeOS it'll break you Ubuntu and there's no way back, from my user point of view... Hardware: I am happy to submit logs. Please be specific in your request I am not a developer. Please help... |
Experiencing same/similar problem with Crouton since an update. The build date is apparently on Tuesday 6th June -- although it's only in the last day or two that I had the problem, but only since I restarted my Chromebook. There's a good chance I hadn't restarted/updated it before that since the update came out. I've attempted my usual command of
No idea how I can now get to my Ubuntu OS (I have Update: I have an ASUS C300. Version of Chrome OS listed in Settings > About is |
Exact same behavior here, as soon as I restarted with the update enabled it's no longer accessible (or install-able). I will submit the exact Chrome OS build once I am home in the mo i do not have access to the Chrome Book (it's my sons school book :() I think it's the 59 major version upgrade causing the issue. Lenovo N22 (Touch) |
This issue may be the same or related to the work being done on this PR:
Hope this helps, |
+1 same issue here, encrypted kali-rolling, broke the moment I updated ("critical" update, seemed to drop the Play Store on the main channel or something similar)
ASUS Chromebook Flip C302CA-DHM4 |
I confirm the issue comes with the update (59) and it affects the user / password handling. This runs w/o issue. Encryption doesn't work (for me) it throws the mount error. |
Same here, One Acer Chromebook 14 for Work, just updated to version 59.0.3071.91 (official build) (64-bit), getting "mount: mount(2) failed: No such file or directory Both just started this when I updated the chromebook to the latest version yesterday. I've backed up and restored both, which worked but did not change anything. Can't mount the chroots to get in and test anything. Renamed them to no effect. I'm stumbling around in the dark here so would love some help. |
chroots work w/o encryption only with the current crouton build. |
I've been testing PR #3278 "Create new session, then link user keychain to session keychain" and the 2 line patch works great. Many thanks to smerrill, drinkcat and dnschneid for coming up with the solution so quickly! |
Those two lines worked for me, and I learned something new. Thanks. |
Same problem. Couple of questions.
added to host-bin/mount-chroot?
Thanks ahead of time. |
@rj919 Yes those two lines When I added those two lines, it fixed the problem as if it had never happened. I did download the latest version of crouton although I don't know if that was necessary. I didn't update, delete or change my chroot, I didn't lose any data. I just got it back as if the issue had never occurred. What I did
|
YES! Thank you very much moclei. |
@moclei Thanks for the quick response!
However, it appears I need to perform this sequence from the root user each time I restart the chromebook. Do you know if there is a way to persist the config? |
@rj919 Sorry bud, I don't know, just learning about this myself. I'm installing a new chroot as we speak, without encryption, and I've got all my stuff ready to transfer over to that one. This will not be a problem with an un-encrypted chroot from what I've read above. I assume they will 'perma' fix this going forward, if they haven't already. I don't know if their fix will apply to newly installed, encrypted chroots only or if it will fix existing encrypted chroots. Perhaps someone more experienced than I will reply here and explain that. It's not super convenient to make a new chroot, re-install everything, transfer files etc. But I'm still loving having linux on my chromebook. |
@rj919 So far, I think I've permanently fixed my problem. Or, rather, the fix is already in crouton and I've managed to successfully apply it. And I have an encrypted chroot. Here, roughly, from memory, are the steps I followed, in case this helps:
Like @grafer74, at some point I restarted my Chromebook and rebooted -- it didn't work straight away but the second time I tried it, it updated crouton successfully -- something stuck and now the fix is persisting. Apologies that these final details are a little fuzzy but if you try following them and vary when you shut down or exit the superuser shell, hopefully it will work for you. Perhaps someone with a better understanding of the workings of it can explain the details of how the fix is applied. |
Actually, I released a new version of crouton with the patch last night, so you should just be able to update your chroot and things will work. |
It appears that a change in the latest dev channel update is breaking ecryptfs chroots. This is ChromeOS 9647.0.0 running on samus. I'm working through the changes and wanted to get this report out there in case anyone else is seeing this issue. There's been some filesystem changes in this release.
chronos@localhost ~ $ sudo enter-chroot -n jessie-development
Password:
Enter encryption passphrase for jessie-development:
mount: mount(2) failed: /run/crouton/mnt/stateful_partition/crouton/chroots/jessie-development: No such file or directory
Failed to mount jessie-development.
chronos@localhost ~ $ dmesg | tail -n 10
[ 6000.487521] SELinux: initialized (dev proc, type proc), uses genfs_contexts
[ 6001.066621] SELinux: initialized (dev proc, type proc), uses genfs_contexts
[ 6071.935105] SELinux: initialized (dev proc, type proc), uses genfs_contexts
[ 6072.239855] SELinux: initialized (dev proc, type proc), uses genfs_contexts
[ 6096.005517] Could not find key with description: [REDACTED]
[ 6096.005524] process_request_key_err: No key
[ 6096.005528] Could not find valid key in user session keyring for sig specified in mount option: [REDACTED]
[ 6096.005535] One or more global auth toks could not properly register; rc = [-2]
[ 6096.005541] Error parsing options; rc = [-2]
[ 6117.011786] haswell-pcm-audio haswell-pcm-audio: FW loaded, mailbox readback FW info: type 01, - version: 00.00, build 77, source commit id: 876ac6906f31a43b6772b23c7c983ce9dcb18a19
The text was updated successfully, but these errors were encountered: