View previous topic :: View next topic |
Author |
Message |
tweakt Tux's lil' helper
Joined: 16 Sep 2003 Posts: 92 Location: Boston, MA. USA
|
Posted: Tue Apr 25, 2006 2:49 am Post subject: luks support (almost) working in gnome-mount (gnome-2.14) |
|
|
I was browsing blogs today and stumbled across this:
http://blog.fubar.dk/?p=64
Note the last comment, where the author states this made it into Fedora Core 5. Well, I was running Gnome-2.14 and hadn't tried mounting a luks volume in a while so I tried it and was happy to get the following dialog:
http://img242.imageshack.us/img242/3420/screenshotunlockencrypteddata8.th.png
So I tried it, but it didn't work. No mount.
Time to debug...
Code: | gnome-mount -b -d /dev/sdb1 |
The first glitch there is gnome-mount was expecting /sbin/cryptsetup cryptsetup-luks installed into /bin
A simple symlink fixes that, though I bet you could adjust that from gconf
But then I get:
Code: | gnome-mount 0.4
** (gnome-mount:12462): WARNING **: Setup failed for /org/freedesktop/Hal/devices/volume_uuid_e4b1c1d5_bb5d_4c9b_b6aa_bb2e6e9df453: org.freedesktop.Hal.Device.Volume.Crypto.SetupError : /dev/sdb1 is already setup?
|
Crap. No time to pursue any further at this time. Seems like it's all there, just needs a little smoothing out packaging and config-wise. Hopefully this doesn't fall under the radar of Gentoo devs, I know there's a lot of testing and stabilization to be done for Gnome-2.14, but this is one very important and long awaited feature that would be nice to have working.
Here's what I'm running if you'd like to give it a shot:
Code: | $ emerge -pv gnome gnome-mount gnome-volume-manager dbus hal cryptsetup-luks
These are the packages that would be merged, in order:
Calculating dependencies... done!
[ebuild R ] gnome-base/gnome-2.14.0 USE="cdr dvdr hal -accessibility" 0 kB
[ebuild R ] gnome-base/gnome-mount-0.4-r1 USE="-debug" 0 kB
[ebuild R ] gnome-base/gnome-volume-manager-1.5.15 USE="crypt -debug -doc" 304 kB
[ebuild R ] sys-apps/dbus-0.61-r1 USE="X gtk mono python -debug -doc -qt" 0 kB
[ebuild R ] sys-apps/hal-0.5.7 USE="acpi crypt dmi -debug -doc -pcmcia" 0 kB
[ebuild R ] sys-fs/cryptsetup-luks-1.0.1-r2 USE="nls -dynamic" 0 kB
|
|
|
Back to top |
|
|
chk n00b
Joined: 08 Feb 2003 Posts: 15
|
Posted: Fri Jun 16, 2006 2:31 pm Post subject: |
|
|
tweakt, I have the same problem. When I try it the first time (after reboot) I get a different debug message:
Code: |
t41tux ~ # gnome-mount -b -d /dev/sda1
gnome-mount 0.4
Setup clear-text device for /dev/sda1.
** (gnome-mount:9528): WARNING **: Timeout for waiting for cleartext device... Exiting.
|
However the second one is similar to yours:
Code: |
t41tux ~ # gnome-mount -b -d /dev/sda1
gnome-mount 0.4
** (gnome-mount:11335): WARNING **: Setup failed for /org/freedesktop/Hal/devices/volume_uuid_9566f987_46a3_4ae4_b3fb_45a72adfae9d: org.freedesktop.Hal.Device.Volume.Crypto.SetupError : /dev/sda1 is already setup?
|
Does anybody else has this problem? |
|
Back to top |
|
|
Sachankara l33t
Joined: 11 Jun 2004 Posts: 696 Location: Stockholm, Sweden
|
Posted: Fri Jun 16, 2006 3:24 pm Post subject: |
|
|
It would also be nice to see something similar but for FUSE/EncFS instead. _________________ Gentoo Hardened Linux 2.6.21 + svorak (Swedish dvorak) |
|
Back to top |
|
|
tweakt Tux's lil' helper
Joined: 16 Sep 2003 Posts: 92 Location: Boston, MA. USA
|
Posted: Fri Jun 16, 2006 7:22 pm Post subject: |
|
|
Wow... It's been a while since I touched this. I've been experiementing with other distros recently so I haven't been very active on Gentoo specifically.
Glad to know others are interested in this stuff though.
Sachankara wrote: | It would also be nice to see something similar but for FUSE/EncFS instead. |
Yes, I agree. What I /really/ want is a stacked crypto filesystem. I don't like having to carve out entire block devices for encryption. It's great for entire systems, but not good for when you want to keep a few documents encrypted on a thumbdrive for example. Right now either you have to encrypt the whole thing, or you have to partition it in some way. If it could work atop vfat that would be awsome.
I know EncFS does something similar. If anyone is familar with how NTFS file encryption works, that is really what I want. You have a normal filesystem, but you can select single files and mark them as "encrypted" and they get encrypted. Simple as that. The system hashes some unique data associated with your login session for the key, so there's no need to enter another passphrase. |
|
Back to top |
|
|
Skyr n00b
Joined: 16 Mar 2005 Posts: 8
|
Posted: Fri Dec 01, 2006 10:52 pm Post subject: |
|
|
chk wrote: | Does anybody else has this problem? |
Have a look at Bug 137831: https://bugs.gentoo.org/show_bug.cgi?id=137831
I'm using: hal-0.5.7.1-r1, gnome-mount-0.4-r5, gnome-volume-manager-1.5.15-r3, cryptsetup-luks-1.0.3-r2
I had to do two things to get it working:
1. gnome-mount expects cryptsetup to be at /sbin/cryptsetup:
ln -s /bin/cryptsetup /sbin/cryptsetup
2. Apply the udev patch from the bug above. |
|
Back to top |
|
|
|