New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CRYP-7931: missing detection of swap volume inside encrypted volume group #1419
Comments
possible solution (just for inspiration):
extra check:
|
Or for each discovered swap device, check to see if it's an LV, then check all PVs of that VG to see if they're LUKS devices. This would not be completely robust for complex scenarios (nested PVs, etc.) but should cover most cases. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Concerning test CRYP-7931. When a swap volume is inside a LUKS encrypted volume group, the test outputs 'Found 0 encrypted and 1 unencrypted swap devices in use.'
Version
Expected behavior
I would expect the test to output 'Found 1 encrypted and 0 unencrypted swap devices in use.'
Output
Additional context
relevant source code:
lynis/include/tests_crypto
Line 188 in 59a3c4b
disk setup:
The text was updated successfully, but these errors were encountered: