You are not logged in.
- Topics: Active | Unanswered
#1 2013-02-24 01:20:46
- Darkgod
- Member
- Registered: 2012-11-12
- Posts: 7
Install a fully encrypted systems on multiple HDD
I've been reading through the forms and all I can find is how to install on multiple partitions not multiple HDD.
Here is what I have
2 1TB Drives /dev/sda and dev/sdb
I tried encrypting them both then using LVM and extending my Volgroup to include /dev/sdb and creating lvcreate on the extended Volgroup.
The issue I have is when the system boots it can't find root.. 
I've done this a number of times with multiple partitions but never multiple HDD any help would be greatly appreciated.
Offline
#2 2013-02-24 03:32:25
- WonderWoofy
- Member
- From: Los Gatos, CA
- Registered: 2012-05-19
- Posts: 8,414
Re: Install a fully encrypted systems on multiple HDD
Unfortunately the encrypt hook included with mkinitcpio is only set up to work for one drive. There is a mkinitcpio-encrypt-multi hook in the AUR but I am pretty sure it is outdated. I have seen something in these very threads about how to take what is there and adapt it to the current mkinitcpio though (I ran into this issue a few months ago).
What I ended up doing (and I felt like it was a cleaner solution) was to put the whole Luks/LVM setup on top of a software RAID setup. So it essentially made the two drives a since block device, which you have mkinitcpio put together before doing and decryption. This is because I typically stripe my LVM anyway, so I figured it was not much different, functionality wise, to have a separate device-mapper function handling that for me.
Offline
#3 2013-02-24 04:05:45
- Darkgod
- Member
- Registered: 2012-11-12
- Posts: 7
Re: Install a fully encrypted systems on multiple HDD
I think I can do a raid on the motherboard, I'll try that have seen some issues with it and Linux.
Offline
#4 2013-02-24 04:29:46
- WonderWoofy
- Member
- From: Los Gatos, CA
- Registered: 2012-05-19
- Posts: 8,414
Re: Install a fully encrypted systems on multiple HDD
If you do a raid from the motherboard, know that it is actually a fake-raid system. The bios can only read from the raided disks, and loads the kernel. It then hands over the raid functionality to the operating system, for which you have to set up and have tools available. This being the case, you might as well just use mdadm, since it is freakin' awesome anyway.
Offline