On Mi, 25.09.24 20:55, Andrei Borzenkov (arvidjaar@xxxxxxxxx) wrote: > > An user have /home in a different encrypted partition via pcrlock. After > > the initrd, during the normal boot process, the systemd-cryptsetup > > generator is reading this file to open the devices in /dev/mapper/$name. > > But this is happening before /var gets mounted, and this contains the > > pcrlock.json file requires to unlock the home device. > > > > Is there a way to indicate this dependency for the generator, as a > > "RequiresMountsFor=" for .mount services or x-systemd.requires= in > > fstab? > > This dependency only exists for pcrlock and only if there are reasons to > have pcrlock.json in /var and not in /etc by default. It's not a configuration file, it doesn't belong in /etc/. And that wouldn't help you if you want encrypted configuration (i.e. an encrypted root) which I am pretty sure is quite desirable, because that means a copy of the pcrlock data must be propagated into the initrd, if pcrlock on rootfs is desired. Lennart -- Lennart Poettering, Berlin
Re: How to express that a device listed in /etc/crypttab depends on a mount point
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: How to express that a device listed in /etc/crypttab depends on a mount point
- From: Lennart Poettering <lennart@xxxxxxxxxxxxxx>
- Date: Fri, 27 Sep 2024 13:49:11 +0200
- Cc: systemd-devel@xxxxxxxxxxxxxxxxxxxxx
- In-reply-to: <723ae996-3f97-4393-8f31-0f04d151f96b@gmail.com>
- References: <1be2f0a5282804c48fe6b4d9a9b660fe@suse.de> <723ae996-3f97-4393-8f31-0f04d151f96b@gmail.com>
- References:
- Prev by Date: Re: How to express that a device listed in /etc/crypttab depends on a mount point
- Next by Date: Re: Making /run respect Container Memory Limits
- Previous by thread: Re: How to express that a device listed in /etc/crypttab depends on a mount point
- Next by thread: Re: How to express that a device listed in /etc/crypttab depends on a mount point
- Index(es):
 |