Package: clevis-dracut Version: 20-1 Severity: normal Dear Maintainer,
the systemctl -q --root "$initdir" add-wants cryptsetup.target clevis-luks-askpass.path call in /usr/lib/dracut/modules.d/60clevis/module-setup.sh fails with: Failed to add dependency on unit: Unit cryptsetup.target does not exist which results in the /etc/systemd/system/cryptsetup.target.wants/clevis-luks-askpass.path symlink missing from the generated initrd, and failing to automatically unlock the LUKS volume for the root filesystem on boot. Running dracut -v reveals that this is because dracut processes the clevis module before the systemd-cryptsetup one: [...] dracut[I]: *** Including module: clevis *** Failed to add dependency on unit: Unit cryptsetup.target does not exist [...] dracut[I]: *** Including module: systemd-cryptsetup *** [...] This is presumably because the clevis module uses sequence number 60 whereas systemd-cryptsetup uses 71. Note that this started happening after upgrading the systemd-cryptsetup package from 258.1-2 to 260.1-1. As a local workaround, I've disabled the systemctl call in /usr/lib/dracut/modules.d/60clevis/module-setup.sh and added it to a separate 72clevis-cryptsetup module instead. -- System Information: Debian Release: forky/sid APT prefers testing-debug APT policy: (500, 'testing-debug'), (500, 'stable-security'), (500, 'testing'), (103, 'unstable-debug'), (103, 'unstable'), (102, 'experimental-debug'), (102, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.19.6+ (SMP w/16 CPU threads; PREEMPT) Kernel taint flags: TAINT_UNSIGNED_MODULE Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), LANGUAGE=en_CA:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages clevis-dracut depends on: ii clevis-systemd 20-1 ii dracut 110-8 ii dracut-network 110-8 clevis-dracut recommends no packages. clevis-dracut suggests no packages. -- no debconf information
