Problem booting encrypted /
Posted: 2015/06/07 04:34:55
Please note, this question is NOT about /usr/sbin/init or the /lib/systemd/systemd file... It's about a scripted text file named "init" that's part of initrd
Hello and thanks in advance for any assistance anyone can offer
I'm trying to familiarize myself with various cryptsetup encryption techniques. I've managed to get things to work no problem when I encrypt at install, and I've graduated to encrypting unencrypted file systems manually. I've successfully encrypted /tmp, /swap, /home, and random encrypted file systems. Unfortunately / isn't cooperating. I haven't found an overabundance of documentation on how to manually encrypt / on CentOS 7, so I've attempted to follow the directions in an old post on how to encrypt / on CentOS 5.
viewtopic.php?t=30503
I have created the encrypted / file system, moved the contents between the original and it with dd. I am able to open it with luksOpen, mount the opened luks files system, and view the contents of it. Unfortunately, the instructions after that don't seem to align with CentOS 7. At one point in the posts instructions, it say's to edit the "init script" within the initrd.img file and include the 'cryptsetup lukOpen' command in it for the / file system. Since CentOS 7 seems to use initramfs.img in the gurb2 meny entry, I unpack the initramfs.img file with skipcpio and I don't find this script. I've attempted various google searches and have found many references to this script within initrd (although no references specifically to CentOS 7), but no specifics beyond it's existence.
Is the "init script" within CentOS7 exist? Is there a different method to accomplish this in CentOS 7? Does anyone know of updated instructions for CentOS 7?
Does anyone have any opinion on the directions within the link? Once again, thanks for any help!
Hello and thanks in advance for any assistance anyone can offer
I'm trying to familiarize myself with various cryptsetup encryption techniques. I've managed to get things to work no problem when I encrypt at install, and I've graduated to encrypting unencrypted file systems manually. I've successfully encrypted /tmp, /swap, /home, and random encrypted file systems. Unfortunately / isn't cooperating. I haven't found an overabundance of documentation on how to manually encrypt / on CentOS 7, so I've attempted to follow the directions in an old post on how to encrypt / on CentOS 5.
viewtopic.php?t=30503
I have created the encrypted / file system, moved the contents between the original and it with dd. I am able to open it with luksOpen, mount the opened luks files system, and view the contents of it. Unfortunately, the instructions after that don't seem to align with CentOS 7. At one point in the posts instructions, it say's to edit the "init script" within the initrd.img file and include the 'cryptsetup lukOpen' command in it for the / file system. Since CentOS 7 seems to use initramfs.img in the gurb2 meny entry, I unpack the initramfs.img file with skipcpio and I don't find this script. I've attempted various google searches and have found many references to this script within initrd (although no references specifically to CentOS 7), but no specifics beyond it's existence.
Is the "init script" within CentOS7 exist? Is there a different method to accomplish this in CentOS 7? Does anyone know of updated instructions for CentOS 7?
Does anyone have any opinion on the directions within the link? Once again, thanks for any help!