[Pkg-cryptsetup-devel] LVM on encrypted device?
Hadmut Danisch
hadmut at danisch.de
Wed Feb 1 18:55:16 UTC 2006
Hi,
just a question about the debian's cryptsetup package:
Do you have any experience with putting LVM or RAID into an encrypted
device?
/etc/rcS.d/S28cryptdisks runs after /etc/rcS.d/S26lvm , which is
necessary for having encrypted logical volumes, but that way you can't
have lvm in an encrypted device (without further steps).
Maybe the /etc/init.d/cryptdisks script should be called twice, once
as S24 and once again as S28. Or it should support an option in
/etc/crypttab to run things like pvscan or mdadm --assemble.
This still might cause trouble if S25mdadm-raid and S26lvm expect
devices which are not yet there. Therefore the better way might be to
run cryptdisks twice (or even three times), once for physical devices,
once for devices generated by RAID (if the RAID is encrypted itself,
but this is not really necessary, if only the contents of RAID are
encrypted, the kernel should assemble them itself), and then for
virtual LVM devices.
regards
Hadmut
More information about the Pkg-cryptsetup-devel
mailing list