Arch Linux

moebic

Member

Registered: 2015-06-23

Posts: 3

Fresh install with encrypted partition won't boot

Hello everyone,

this is my first post and I hope I chose the appropriate sub-forum.

I created the following partitions during install:
- boot partition
- encrypted (luks) partition with /, /home and swap LVMs

I configured my kernel with:

HOOKS="base udev autodetect modconf block keyboard keymap encrypt lvm2 filesystems fsck"

and compiled it. The first reboot gave me some 'usb not detected' error, so I deleted
the keyboard option and recompiled the kernel. I also configured GRUB according to
the wiki and lsblk -l:

GRUB_CMDLINE_LINUX="cryptdevice=/dev/sda2:main root=/dev/mapper/main-root resume=/dev/mapper/main-swap"

After rebooting once again, I'm now stuck at the passphrase; after typing it in, nothing
happens, not even an error message and I have to hard reset. I suspect it has something
to do with my GRUB config.

This is my first shot at an encrypted system (aswell as LVMs) and I'm pretty much clueless... Any input
would be greatly appreciated.

Head_on_a_Stick

Member

From: London

Registered: 2014-02-20

Posts: 7,732

Website

Re: Fresh install with encrypted partition won't boot

I suspect it has something to do with my GRUB config.

Post your GRUB config.

---

Are you infected with Wetiko?

moebic

Member

Registered: 2015-06-23

Posts: 3

Re: Fresh install with encrypted partition won't boot

Post your GRUB config.

Edit: posted wrong config
GRUB:

#
# DO NOT EDIT THIS FILE
#
# It is automatically generated by grub-mkconfig using templates
# from /etc/grub.d and settings from /etc/default/grub
#

### BEGIN /etc/grub.d/00_header ###
insmod part_gpt
insmod part_msdos
if [ -s $prefix/grubenv ]; then
  load_env
fi
if [ "${next_entry}" ] ; then
   set default="${next_entry}"
   set next_entry=
   save_env next_entry
   set boot_once=true
else
   set default="0"
fi

if [ x"${feature_menuentry_id}" = xy ]; then
  menuentry_id_option="--id"
else
  menuentry_id_option=""
fi

export menuentry_id_option

if [ "${prev_saved_entry}" ]; then
  set saved_entry="${prev_saved_entry}"
  save_env saved_entry
  set prev_saved_entry=
  save_env prev_saved_entry
  set boot_once=true
fi

function savedefault {
  if [ -z "${boot_once}" ]; then
    saved_entry="${chosen}"
    save_env saved_entry
  fi
}

function load_video {
  if [ x$feature_all_video_module = xy ]; then
    insmod all_video
  else
    insmod efi_gop
    insmod efi_uga
    insmod ieee1275_fb
    insmod vbe
    insmod vga
    insmod video_bochs
    insmod video_cirrus
  fi
}

set menu_color_normal=cyan/black
set menu_color_highlight=black/cyan

if loadfont unicode ; then
  set gfxmode=auto
  load_video
  insmod gfxterm
  set locale_dir=$prefix/locale
  set lang=en_US
  insmod gettext
fi
terminal_input console
terminal_output gfxterm
if [ x$feature_timeout_style = xy ] ; then
  set timeout_style=menu
  set timeout=3
# Fallback normal timeout code in case the timeout_style feature is
# unavailable.
else
  set timeout=3
fi
### END /etc/grub.d/00_header ###

### BEGIN /etc/grub.d/10_linux ###
menuentry 'Arch Linux' --class arch --class gnu-linux --class gnu --class os $menuentry_id_option 'gnulinux-simple-e620b9d2-73cc-4b5a-b746-c8793dca81df' {
	load_video
	set gfxpayload=keep
	insmod gzio
	insmod part_msdos 
	insmod ext2
	set root='hd0,msdos1'
	if [ x$feature_platform_search_hint = xy ]; then
	  search --no-floppy --fs-uuid --set=root --hint-bios=hd0,msdos1 --hint-efi=hd0,msdos1 --hint-baremetal=ahci0,msdos1  5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
	else
	  search --no-floppy --fs-uuid --set=root 5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
	fi
	echo	'Loading Linux linux ...'
	linux	/vmlinuz-linux root=UUID=e620b9d2-73cc-4b5a-b746-c8793dca81df rw cryptdevice=/dev/sda2:main root=/dev/mapper/main-root resume=/dev/mapper/main-swap lang=de quiet
	echo	'Loading initial ramdisk ...'
	initrd	 /initramfs-linux.img
}
submenu 'Advanced options for Arch Linux' $menuentry_id_option 'gnulinux-advanced-e620b9d2-73cc-4b5a-b746-c8793dca81df' {
	menuentry 'Arch Linux, with Linux linux' --class arch --class gnu-linux --class gnu --class os $menuentry_id_option 'gnulinux-linux-advanced-e620b9d2-73cc-4b5a-b746-c8793dca81df' {
		load_video
		set gfxpayload=keep
		insmod gzio
		insmod part_msdos 
		insmod ext2
		set root='hd0,msdos1'
		if [ x$feature_platform_search_hint = xy ]; then
		  search --no-floppy --fs-uuid --set=root --hint-bios=hd0,msdos1 --hint-efi=hd0,msdos1 --hint-baremetal=ahci0,msdos1  5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
		else
		  search --no-floppy --fs-uuid --set=root 5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
		fi
		echo	'Loading Linux linux ...'
		linux	/vmlinuz-linux root=UUID=e620b9d2-73cc-4b5a-b746-c8793dca81df rw cryptdevice=/dev/sda2:main root=/dev/mapper/main-root resume=/dev/mapper/main-swap lang=de quiet
		echo	'Loading initial ramdisk ...'
		initrd	 /initramfs-linux.img
	}
	menuentry 'Arch Linux, with Linux linux (fallback initramfs)' --class arch --class gnu-linux --class gnu --class os $menuentry_id_option 'gnulinux-linux-fallback-e620b9d2-73cc-4b5a-b746-c8793dca81df' {
		load_video
		set gfxpayload=keep
		insmod gzio
		insmod part_msdos 
		insmod ext2
		set root='hd0,msdos1'
		if [ x$feature_platform_search_hint = xy ]; then
		  search --no-floppy --fs-uuid --set=root --hint-bios=hd0,msdos1 --hint-efi=hd0,msdos1 --hint-baremetal=ahci0,msdos1  5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
		else
		  search --no-floppy --fs-uuid --set=root 5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd
		fi
		echo	'Loading Linux linux ...'
		linux	/vmlinuz-linux root=UUID=e620b9d2-73cc-4b5a-b746-c8793dca81df rw cryptdevice=/dev/sda2:main root=/dev/mapper/main-root resume=/dev/mapper/main-swap lang=de quiet
		echo	'Loading initial ramdisk ...'
		initrd	 /initramfs-linux-fallback.img
	}
}

### END /etc/grub.d/10_linux ###

### BEGIN /etc/grub.d/20_linux_xen ###
### END /etc/grub.d/20_linux_xen ###

### BEGIN /etc/grub.d/30_os-prober ###
### END /etc/grub.d/30_os-prober ###

### BEGIN /etc/grub.d/40_custom ###
# This file provides an easy way to add custom menu entries.  Simply type the
# menu entries you want to add after this comment.  Be careful not to change
# the 'exec tail' line above.
### END /etc/grub.d/40_custom ###

### BEGIN /etc/grub.d/41_custom ###
if [ -f  ${config_directory}/custom.cfg ]; then
  source ${config_directory}/custom.cfg
elif [ -z "${config_directory}" -a -f  $prefix/custom.cfg ]; then
  source $prefix/custom.cfg;
fi
### END /etc/grub.d/41_custom ###

### BEGIN /etc/grub.d/60_memtest86+ ###
### END /etc/grub.d/60_memtest86+ ###

blkid:

/dev/sda1: LABEL="boot" UUID="5d47ed89-6f4c-4c7f-8771-2e9e9af67fcd" TYPE="ext2" PARTUUID="463c1e9b-01"
/dev/sda2: UUID="044f07de-5186-4cc8-b57f-acd24d9eef40" TYPE="crypto_LUKS" PARTUUID="463c1e9b-02"
/dev/sr0: UUID="2015-05-01-05-29-36-00" LABEL="ARCH_201505" TYPE="iso9660" PTUUID="769fce30" PTTYPE="dos"
/dev/loop0: TYPE="squashfs"
/dev/loop1: UUID="e6cd4ac1-141d-4f81-9c4e-b9b0396eb006" TYPE="ext4"
/dev/loop2: UUID="e6cd4ac1-141d-4f81-9c4e-b9b0396eb006" TYPE="ext4"
/dev/mapper/arch_airootfs: UUID="e6cd4ac1-141d-4f81-9c4e-b9b0396eb006" TYPE="ext4"
/dev/mapper/main: UUID="64TCV7-TPlw-5TGp-nKiL-uG5V-0G70-p3M57s" TYPE="LVM2_member"
/dev/mapper/main-root: LABEL="root" UUID="e620b9d2-73cc-4b5a-b746-c8793dca81df" TYPE="ext4"
/dev/mapper/main-swap: LABEL="swap" UUID="a596d072-3601-41ac-b7ac-4c6aa11a5465" TYPE="swap"
/dev/mapper/main-home: LABEL="arch" UUID="693af488-0b0b-4daa-b08f-d248872e6e2b" TYPE="ext4"

Last edited by moebic (2015-06-28 17:58:50)

Head_on_a_Stick

Member

From: London

Registered: 2014-02-20

Posts: 7,732

Website

Re: Fresh install with encrypted partition won't boot

Sorry, here it is:

No. it isn't...

cat /boot/grub/grub.cfg
blkid

---

Are you infected with Wetiko?

moebic

Member

Registered: 2015-06-23

Posts: 3

Re: Fresh install with encrypted partition won't boot

cat /boot/grub/grub.cfg
blkid

Edited my last post.

clfarron4

Member

From: London, UK

Registered: 2013-06-28

Posts: 2,163

Website

Re: Fresh install with encrypted partition won't boot

I think this might be the issue:

linux	/vmlinuz-linux root=UUID=e620b9d2-73cc-4b5a-b746-c8793dca81df rw cryptdevice=/dev/sda2:main root=/dev/mapper/main-root resume=/dev/mapper/main-swap lang=de quiet

You should only have one root entry per line (catches me out every time I do this with the auto-generation tool). Or at least that's how it is in my LVM setup. To compare, here's my lsblk with the linux-lqx entry:

NAME                 MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINT
sda                    8:0    0 931.5G  0 disk  
├─sda1                 8:1    0   500M  0 part  /boot
├─sda2                 8:2    0 682.9G  0 part  
│ └─Storage          254:0    0 682.9G  0 crypt 
│   ├─Storage-root   254:1    0    30G  0 lvm   /
│   ├─Storage-builds 254:2    0    20G  0 lvm   /builds
│   ├─Storage-var    254:3    0    10G  0 lvm   /var
│   ├─Storage-home   254:4    0   200G  0 lvm   /home
│   └─Storage-steam  254:5    0   100G  0 lvm   /home/steam

menuentry 'Arch Linux, with Linux linux-lqx' --class arch --class gnu-linux --class gnu --class os $menuentry_id_option 'gnulinux-linux-lqx-advanced-4dcb48bf-127b-4c6d-aae2-e7404e21bd73' {
	load_video
	set gfxpayload=keep
	insmod gzio
	insmod part_msdos 
	insmod ext2
	set root='hd0,msdos1'
	if [ x$feature_platform_search_hint = xy ]; then
	  search --no-floppy --fs-uuid --set=root --hint-bios=hd0,msdos1 --hint-efi=hd0,msdos1 --hint-baremetal=ahci0,msdos1  f971ca4e-2d4a-4c2a-b1f3-d2e11b9032f6
	else
	  search --no-floppy --fs-uuid --set=root f971ca4e-2d4a-4c2a-b1f3-d2e11b9032f6
	fi
	echo	'Loading Linux linux-lqx ...'
	linux	/vmlinuz-linux-lqx rw cryptdevice=/dev/sda2:Storage root=/dev/mapper/Storage-root quiet
	echo	'Loading initial ramdisk ...'
	initrd	 /initramfs-linux-lqx.img
}

---

Claire is fine.
Problems? I have dysgraphia, so clear and concise please.
My public GPG key for package signing
My x86_64 package repository