Boot Password Fails Always When First Entry Was Incorrect #1740
Comments
|
Are you still experiencing this issue on 3.1 (stable)? I am unable to reproduce it. |
|
@axon-qubes I am still having the issue with the latest stable build I have installed. Since you are unable to reproduce perhaps it is more specific to my configuration. I am using non UEFI booting and have Qubes installed on a BTRFS encrypted raid 0. Let me know if I can provide any other information to help. While this is technically a bug I can actually see it possible being useful, no HID based brute forcing will work because the first attempt failing causes all others to fail even if they are correct. But I don't like using a bug to (arguably) "enhance" security. |
Yes, it sounds like it probably has to do with one of those factors.
During the startup process, when you reach the grey screen with the Qubes logo where you usually enter your passphrase, press the Delete key to view the console. You can also enter your passphrase from this interface. See if you notice any helpful or relevant error messages through the startup process (especially after entering your passphrase incorrectly). |
|
@axon-qubes: I get no errors or anything I would not expect after entering it wrong followed by correct, it just goes back to the prompt after entering it correctly or incorrectly. After entering it wrong one or two more times it says the crypto service for the root disk has failed and no longer will ask for passwords. |
|
Maybe @marmarek can help. |
|
Does it prompt for the same thing (when you switch to text prompt)? Or maybe second and next prompts are about different disk? Do you see any additional messages between prompts? |
|
@marmarek The second prompt is for the same disk. In between attempts (not including when the previously mentioned crypto fail message occurs) it just says "Started Forward Password Requests to Plymouth" which it prints 3 or 4 times each attempt before prompting for input once more. |
andrewdavidwong
added
T: bug
|
Could you take a photo of that output page? |
|
@ileyd: My apologies but I have switched to using If anyone else wants to try and replicate this I was using legacy/csm/bios booting on BTRFS raid0 for the root disk and the re-install that is not affected by this issue was the same except I used lvm2 (non thin) raid0 for the root disks and UEFI booting. |
|
Having now upgraded to 3.2rc3 where I was unable to successfully get UEFI booting to work (worked fine on 3.1 but thats another issue) so I am now using legacy/csm/bios booting with the ssd's in BTRFS raid0 and I have noticed that this issue has returned. Can't test further right now but wanted to make it known that this still seems to be happening for me. |
|
@Nekroze How about now? Are you still experiencing this issue? |
andrewdavidwong
added
the
help wanted
|
@andrewdavidwong Unfortunately my laptop has taken a long dirt nap. I have ordered a Librem 13 however it will not have the hardware configuration required to test this however it was still happening as of about a month ago. |
|
In that case, since no one else has been able to reproduce this (as far as I'm aware), we'll close this one for now. If anyone experiences this in the future, let us know. |
|
I've intermittently observed this as long as I can remember, even recently. After reading #977, where @rustybird describes:
I now wonder if the behavior I've been observing is not in fact the requirement of typing the correct passphrase twice if I mis-type it the first time. My passphrase is quite long and complex, and I've noticed a correlation between bad ergonomic positioning of the angle of my laptop relative to my arms and the frequency of getting it wrong, meaning that if I type it wrong the first time, there's a good chance I'll get it wrong more than once afterwards. There have been times where I very carefully type the password and strongly suspect I typed it correctly, but did continue booting. Perhaps I did get it right and then it prompts again (without observable difference) for the swap partition? Perhaps that's been the real issue all along? |
|
FWIW I'm not using btrfs, as seemed to be related to #977. |
|
Potentially relevant: #1912 (comment) ? |
Could very well be. This one is inherently difficult to diagnose. |
At least with respect to normal usage. If you wanted to test it, perhaps the way to go would be to have a very short, simple password (just for testing purposes, so that you can be sure you've typed it correctly), then see whether typing it incorrectly leads to having to type it in twice. |
|
@andrewdavidwong @jpouellet - do you still experience this issue in normal use? At all? If not, can I suggest closure? |
Not that I readily recall.
Sure. |
|
Closing this for now as "cannot reproduce." If you believe this is a mistake, or if anyone can reproduce the issue, please leave a comment, and we'll be happy to reopen this. Thank you. |
andrewdavidwong
added
R: cannot reproduce
I have a consistent issue on my laptop using Qubes 3.1 RC2 where if I enter the boot up password (for an encrypted root file system) and type the password incorrect the first time, any following attempts to input the password (regardless of the password being correct or not) will not be accepted and will not progress to boot.
The only solution I have found is to reboot and type it in correctly the first time.
The text was updated successfully, but these errors were encountered: