| View previous topic :: View next topic |
| Author |
Message |
wneeb
n00b
Joined: 15 Sep 2024
Posts: 2
|
 Posted: Sun Sep 15, 2024 6:38 pm Post subject: fresh install with root encryption: boot stuck on dracut |
 |
|
Hi everyone, I was trying to make a gentoo fresh install on my laptop with an nvme drive and no dual boot OS with root encryption. I installed gentoo from opensuse that is installed on an usb drive. I followed the rootfs encryption wiki:
https://wiki.gentoo.org/wiki/Rootfs_encryption
before installing following the amd64 handbook
I'm using openrc and distribution kernel (compiled, not binary) as well as dracut as initramfs and grub as the boot loader and followed the procedure of enable secureboot
(which means that I might also installed: sys-boot/shim sys-boot/mokutil sys-boot/efibootmgr )
When I finished the installation and reboot, the grub menu showed up and after choosing the gentoo option I can see dracut preparing all kinds of hardware devices, however after waiting for a long time I still dont see anything that makes me to unlock the root partition in any ways and so the linux kernel is not loaded
However when i hit enter after that it pops out something which i can enter command with dracut:~>
I hit tab to list command that can be executed but there is no command that's related to unlocking encrypted disk and I have no idea what to do.
[/code]
Here's my lsblk:
sda 8:0 1 116.5G 0 disk
├─sda1 8:1 1 512M 0 part
└─sda2 8:2 1 116G 0 part
sdb 8:16 1 29.4G 0 disk
├─sdb1 8:17 1 512M 0 part /boot/efi
├─sdb2 8:18 1 26.9G 0 part /
└─sdb3 8:19 1 2G 0 part [SWAP]
nvme0n1 259:0 0 953.9G 0 disk
├─nvme0n1p1 259:1 0 1G 0 part /mnt/gentoo/efi
├─nvme0n1p2 259:2 0 1G 0 part /mnt/gentoo/boot
├─nvme0n1p3 259:3 0 927.9G 0 part
│ └─root 254:0 0 927.9G 0 crypt /mnt/gentoo
└─nvme0n1p4 259:4 0 24G 0 part
and grub config file:
GRUB_DISTRIBUTOR="Gentoo"
# Default menu entry
#GRUB_DEFAULT=0
# Boot the default entry this many seconds after the menu is displayed
GRUB_TIMEOUT=5
GRUB_TIMEOUT_STYLE=menu
# Append parameters to the linux kernel command line
#GRUB_CMDLINE_LINUX=""
#
# Examples:
#
# Boot with network interface renaming disabled
# GRUB_CMDLINE_LINUX="net.ifnames=0"
#
# Boot with systemd instead of sysvinit (openrc)
# GRUB_CMDLINE_LINUX="init=/usr/lib/systemd/systemd"
# Append parameters to the linux kernel command line for non-recovery entries
GRUB_CMDLINE_LINUX_DEFAULT="root=458b6be2-3d91-4fb2-bc8e-9c22bf3d59fd rd.luks.uuid=cc4122fe-846e-4068-95be-194730eeab0a rootfstype=ext4"
# Uncomment to disable graphical terminal (grub-pc only)
#GRUB_TERMINAL=console
# Resolution used on graphical terminal.
# The list of valid modes may be obtained using the 'vbeinfo' (PC BIOS) or
# 'videoinfo' (EFI) command from a GRUB boot prompt.
GRUB_GFXMODE=1920x1200
# Set to 'text' to force the Linux kernel to boot in normal text
# mode, 'keep' to preserve the graphics mode set using
# 'GRUB_GFXMODE', 'WIDTHxHEIGHT'['xDEPTH'] to set a particular
# graphics mode, or a sequence of these separated by commas or
# semicolons to try several modes in sequence.
#GRUB_GFXPAYLOAD_LINUX=
# Path to theme spec txt file.
# The starfield is by default provided with use truetype.
# NOTE: when enabling custom theme, ensure you have required font/etc.
#GRUB_THEME="/boot/grub/themes/starfield/theme.txt"
# Background image used on graphical terminal.
# Can be in various bitmap formats.
#GRUB_BACKGROUND="/boot/grub/mybackground.png"
# Uncomment if you don't want GRUB to pass "root=UUID=xxx" parameter to kernel
#GRUB_DISABLE_LINUX_UUID=true
# Comment if you don't want GRUB to pass "root=PARTUUID=xxx" parameter to kernel
GRUB_DISABLE_LINUX_PARTUUID=false
# Uncomment to disable generation of recovery mode menu entries
#GRUB_DISABLE_RECOVERY=true
# Uncomment to disable generation of the submenu and put all choices on
# the top-level menu.
# Besides the visual affect of no sub menu, this makes navigation of the
# menu easier for a user who can't see the screen.
#GRUB_DISABLE_SUBMENU=y
# Uncomment to play a tone when the main menu is displayed.
# This is useful, for example, to allow users who can't see the screen
# to know when they can make a choice on the menu.
#GRUB_INIT_TUNE="60 800 1"
GRUB_ENABLE_CRYPTODISK=y
GRUB_PRELOAD_MODULES="part_gpt luks" |
|
| Back to top |
|
 |
bent
Tux's lil' helper
Joined: 26 Mar 2003
Posts: 82
Location: New Zealand
|
| Posted: Mon Sep 16, 2024 1:37 am Post subject: |
|
|
did you remember to create an /etc/dracut.conf.d/crypt file, adding the "crypt" module?
_________________
Back on the G after 15 years on the Cupertino Kool-aid |
|
| Back to top |
|
|
wneeb
n00b
Joined: 15 Sep 2024
Posts: 2
|
| Posted: Tue Sep 17, 2024 12:31 am Post subject: |
|
|
| bent wrote: | | did you remember to create an /etc/dracut.conf.d/crypt file, adding the "crypt" module? |
I've already included the module in /etc/dracut.conf.d/luks.conf , I've just tried to add in /etc/dracut.conf.d/crypt and /etc/dracut.conf as well and force regenerate kernel image, still getting the same symptom as mentioned above.
/etc/dracut.conf.d/luks.conf
| Code: | add_dracutmodules+=" crypt "
kernel_cmdline+=" root=UUID=458b6be2-3d91-4fb2-bc8e-9c22bf3d59fd rd.luks.uuid=cc4122fe-846e-4068-95be-194730eeab0a " |
|
|
| Back to top |
|
|
ggggg
n00b
Joined: 07 Sep 2024
Posts: 2
|
| Posted: Thu Sep 19, 2024 1:15 pm Post subject: |
|
|
Perhaps try the following instead
| Code: | | add_dracutmodules+=" systemd_cryptsetup " |
|
|
| Back to top |
|
|
|
Installing Gentoo
