On 10/28/2016 11:28 AM, Trammell Hudson wrote:
> I'm not sure if this issue affects anyone else, but the /etc/crypttab in
> initramfs does not have entries for extra partitions that were created
> during installation. It only has / and swap.
>
> Since I'm configuring / to be read only, I have a separate /home for
> the modifiable state. The disks are unlocked via a TPM sealed keyfile,
> so the initramfs needs to be modified to add the additional entry for
> the extra partitons.
>
After editing /etc/crypttab you must rebuild the initramfs:
dracut -fv --regenerate-all
HOWEVER, /home does absolutely not need to be present in /etc/crypttab
or in kernel cmdline. It can be unlicked after boot.
I would recommend using a keyfile to prevent having to type the password
for /home.
--
Rudd-O
http://rudd-o.com/
--
You received this message because you are subscribed to the Google Groups
"qubes-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/qubes-devel/144faef2-bb3d-7399-76fa-f585ec8e5a94%40rudd-o.com.
For more options, visit https://groups.google.com/d/optout.
