New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
cryptsetup pw dict files missing #679
Comments
@thepulze I am trying to understand what the easiest way is to identify if crypted devices are in use:
We are thinking of making some kind of |
Due to no fb close this issue |
@gdha We have run into this same problem. I am happy to be a tester. ReaR seems to be detecting that a luks volume is there just fine on its own and it would rebuild the luks partitions at rescue if not for the dictionary error. In fact, if you just add --force-password to the cryptsetup command in the rebuild script it will. However, it is not pulling all the password quality dictionaries needed for cryptsetup to run. I tried adding different libraries to the default conf file LIBS section but couldn't get it to work. |
@tastle73 perhaps with the help of |
I'm all ears. How could I do this? |
Edit in script
|
Just so you're aware, I ran ldd against cryptsetup while trying to fix it and found that it needed libpwquality.so.1 So I added that [root@rj ~]# ldd |
I ran strace as instructed and was able to determine what the dependancies are. I added them to default.conf in the COPY_AS_IS variable: COPY_AS_IS=( /usr/share/cracklib/* /etc/security/pwquality.conf $SHARE_DIR $VAR_DIR ) With this added, LUKS volumes are recreated as expected. Would you be able to have rear copy these in when LUKS is encountered?
Thomas Astle Physician's Computer Company |
@tastle73 thank you - your advise was useful. Committed it for 1.18. |
As a test I did a git pull today and ran make rpm. For some reason mdadm was missing at restore time. Copying it in from another system worked. |
Using Relax-and-Recover 1.17.2, restore of a CentOS 7.1.1503 system with crypto sw raid partition.
Restore process crashed because of missing pw dictionary files, used for pw quality check. Manually copying pw files to /usr/share/cracklib fixes the problem - resuming script execution worked afterwards.
Log:
+++ echo -e 'Please enter the password for vm-01(/dev/mapper/vg0-vm):'
+++ cryptsetup luksFormat -q --cipher aes-xts-plain64 --hash sha1 --uuid 9177bf34-a4b6-445c-8d02-ab39a06f4637 /dev/mapper/vg0-vm
/usr/share/cracklib/pw_dict.pwd.gz: No such file or directory
Password quality check failed:
The password fails the dictionary check - error loading dictionary
2015-10-29 19:10:21 An error occurred during layout recreation.
The text was updated successfully, but these errors were encountered: