Jump to content
Read the Funtoo Newsletter: Summer 2023 ×

How to open an additional LUKS container at startup (initramfs) beside root or swap devices


matboe

Recommended Posts

Hello,

 

I have an encrypted LUKS root filesystem on one harddisk that I "open" with a passphrase at startup. The initrd.script of genkernel package provide the methods for decrypting. But if I understand the script(s) correct this will work only for encrypted root and swap devices. Normally I have my home directory on an additional raid10 setup which should be encrypted too. There is a comment at the top of the script which says that I need cryptsetup-luks for decrypting additional encrypted devices but this package does not exist anymore. Does someone is using a similar setup? Where would be the best place to add a hook for opening an additional LUKS container?

 

For testing I added already some code to initrd.script and I was able to enter a passphrase to open the additional LUKS container but then the init script was not able to mount / to /newroot.

 

Any ideas?

 

Matthias

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...