[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: LVM2 logical volumes on Loop-AES

To: Jari Ruusu <jariruusu@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: LVM2 logical volumes on Loop-AES
From: Ian <db5@xxxxxxxxxxxxxx>
Date: Fri, 17 Aug 2007 12:36:21 +1000
Cc: linux-crypto@xxxxxxxxxxxx
In-reply-to: <46C47CE3.F4E38FE3@users.sourceforge.net>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
References: <20070718213638.4b4dc402@ns.fogwatch.com.au> <20070815142534.25eebfa1@ns.fogwatch.com.au> <46C33298.5C554D3B@users.sourceforge.net> <20070816164806.62640b15@ns.fogwatch.com.au> <46C47CE3.F4E38FE3@users.sourceforge.net>
Sender: linux-crypto-bounce@xxxxxxxxxxxx

On Thu, 16 Aug 2007 19:35:47 +0300
Jari Ruusu <jariruusu@xxxxxxxxxxxxxxxxxxxxx> wrote:

> exists". My fault, sorry. But I did say that it was completely
> untested.
I am putting my hand up to be the guinea pig to do the "testing".
> 
> #!/lib/sh
> if [ "x$1" != "x-d" ] ; then
>     /lib/losetup -e AES128 -K /lib/rootkey.gpg
> -G /lib /dev/loop5 /dev/hda6 if [ $? = 0 ] ; then
>         /lib/lvm vgscan --mknodes
>         # initrd will attempt to mount /dev/loop5, so create fake
> entry here /lib/rm /dev/loop5
returns error "/lib/rm: cannot remove '/dev/loop5': Read-only file
system".  So, initrd is mounted ro, and should be rw?  Sorry,
suggestion?
>         /lib/mknod -m 600 /dev/loop5 b ????? ?????
Same.  Returns error, "/lib/mknod: '/dev/loop5': File exists".
>     fi
> else
>     # losetup needs loop5 as real loop device node, so create the old
> one again /lib/rm /dev/loop5
>     /lib/mknod -m 600 /dev/loop5 b 7 5
>     /lib/losetup -d /dev/loop5
> fi
> 
> After successfull setup, initrd code will attempt to mount a device
> called /dev/loop5 so above script uses /lib/rm to remove /dev/loop5
> device node and then creates new node using same /dev/loop5 name, but
> different major+minor. Replace those ????? in above script with
> major+minor of the device you want to be mounted as root. If the
I would like root to, in turn, be mounted on /dev/loop5.  What, I
1	setup /dev/loop5 on the /dev/loop5 that is already in
initrd (major=7 and minor=5).
2	rm /dev/loop5
3	mknod /dev/loop5 with fake major and minor, like 4 and 4
respectively?
Don't understand this bit.  Sorry, you've lost me.
> "detach loop" branch of the script is called, it will have to create
> the original device /dev/loop5 again, using major=7 minor=5.
> 
> I'm not sure if that --mknodes option for lvm vgscan is needed at
> all. You can also try without it. The problem is that if it creates
> many device nodes, the tiny initrd may run out of space.
I'm not sure either.  On one test, with lvm uncommented, the script
returned an ugly "Set environment variable LVM_SYSTEM_DIR to
alternative location or empty string".  I'll get to this later.
> 
> 

I have ROOTTYPE=ext3 in my build-initrd.sh config.  I presume this is
ignored because I am using rootsetup?

Jari, thank you for your perseverance. 

Regards

Fog_Watch.
-- 
Lose wait.  Get Gentoo.

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- Re: LVM2 logical volumes on Loop-AES
  - From: Jari Ruusu

References:
- Re: LVM2 logical volumes on Loop-AES
  - From: Fog_Watch
- Re: LVM2 logical volumes on Loop-AES
  - From: Jari Ruusu
- Re: LVM2 logical volumes on Loop-AES
  - From: Fog_Watch
- Re: LVM2 logical volumes on Loop-AES
  - From: Jari Ruusu

Prev by Date: Re: LVM2 logical volumes on Loop-AES
Next by Date: Re: LVM2 logical volumes on Loop-AES
Previous by thread: Re: LVM2 logical volumes on Loop-AES
Next by thread: Re: LVM2 logical volumes on Loop-AES
Index(es):
- Date
- Thread