You are not logged in.
- Topics: Active | Unanswered
#1 2015-10-10 19:05:19
- tomwor
- Member
- From: Berlin, Germany
- Registered: 2015-10-10
- Posts: 1
LVM on LUKS: no decryption passphrase prompt, /boot/vmlinuz not found
Hi,
I managed to get the simple setup with an encrypted root and unencrypted swap to work before, but I'm now trying again with both being encrypted in LVM on LUKS.
/dev/sda1: /boot
/dev/sda2:
-> LVM
Storage-root: /
Storage-swapvol: [SWAP]
mkinitcpio.conf has the encrypt and lvm2 parameters set and
"mkinitcpio -p linux" creates the correct boot files
/boot/loader/entries/arch.conf everything set
title Arch Linux
linux /boot/vmlinuz-linux
initrd /boot/initramfs-linux.img
options cryptdevice=UUID=<device-UUID>:Storage root=/dev/mapper/Storage-root rw
"bootctl install" copied everything to the right place.
But at reboot it doesn't decrypt /dev/sda2, gives me no password prompt.
Then "/boot/vmlinuz-linux" is not found, even though that's not even on the encrypted partitions, it's just a regular fat32 with flags "boot,esp".
Is this really everything that needs to be configured in the link here:
https://wiki.archlinux.org/index.php/Dm … VM_on_LUKS
Or is there something missing?
I remember having set some stuff in /etc/crypttab with the other setup, but crypttab is not mentioned at all on this page:
https://wiki.archlinux.org/index.php/Dm … VM_on_LUKS
Offline
#2 2015-10-11 08:46:00
- boban_dj
- Member
- Registered: 2015-03-17
- Posts: 150
Re: LVM on LUKS: no decryption passphrase prompt, /boot/vmlinuz not found
This maybe of help?https://bbs.archlinux.org/viewtopic.php … 1#p1554121 and this one: https://bbs.archlinux.org/viewtopic.php?id=201853
Last edited by boban_dj (2015-10-11 08:47:57)
Offline
#3 2015-10-12 09:26:13
- hussam
- Member
- Registered: 2006-03-26
- Posts: 572
- Website
Re: LVM on LUKS: no decryption passphrase prompt, /boot/vmlinuz not found
try replacing
linux /boot/vmlinuz-linux
initrd /boot/initramfs-linux.imgwith
linux /vmlinuz-linux
initrd /nitramfs-linux.imgsince you are booting the non-encrypted /boot partition. Note that there is no actual '/boot' folder in the boot partition. that folder is in the root partition which is not available till you enter the luks passphrase.
My manually written grub.cfg file is:
set timeout=5
menuentry 'Arch Linux' {
set gfxpayload=1280x1024
set root='hd0,1'
linux /vmlinuz-linux cryptdevice=/dev/sda3:root root=/dev/mapper/root resume=/dev/sda2 ro quiet kdbus=1
initrd /intel-ucode.img /initramfs-linux.img
}which works with regular luks encryption
Last edited by hussam (2015-10-12 09:29:03)
Offline