Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FDE guide: Use UUID instead of /dev/sda* in crypttab #662

Open
camoz opened this issue Mar 3, 2022 · 0 comments
Open

FDE guide: Use UUID instead of /dev/sda* in crypttab #662

camoz opened this issue Mar 3, 2022 · 0 comments

Comments

@camoz
Copy link
Contributor

camoz commented Mar 3, 2022

The FDE guide here currently shows the following example /etc/crypttab:

voidvm   /dev/sda1   /boot/volume.key   luks

This should be changed to using the UUID of the encrypted device/partition, as the device file names dev/sdx are not deterministic.

Some user on #voidlinux just had an issue where the key file in the initramfs would sometimes not be picked up, and they were asked to enter a passphrase instead. I think this might be because they had /dev/sda1 in their /etc/crypttab like the guide suggests. They reported that using /dev/disk/by-uuid/* worked.

I think dracut also understands some other syntax like UUID=... and even luks-..., but I'm not sure which one is best/correct here. I think the relevant dracut module is /usr/lib/dracut/modules.d/90crypt.
@ghost ghost mentioned this issue Oct 8, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@camoz