From mboxrd@z Thu Jan 1 00:00:00 1970 From: Leo Famulari Subject: Re: GuixSD encrypted root? Date: Sun, 24 Apr 2016 14:51:34 -0400 Message-ID: <20160424185134.GB7737@jasmine> References: <20160418230558.11a1c86f@scratchpost.org> <8760v7gk87.fsf@gnu.org> <20160424180425.69bbe050@scratchpost.org> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:54024) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1auP87-0007XY-MJ for guix-devel@gnu.org; Sun, 24 Apr 2016 14:51:40 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1auP82-0007ED-MF for guix-devel@gnu.org; Sun, 24 Apr 2016 14:51:39 -0400 Received: from out2-smtp.messagingengine.com ([66.111.4.26]:35264) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1auP82-0007E4-J7 for guix-devel@gnu.org; Sun, 24 Apr 2016 14:51:34 -0400 Content-Disposition: inline In-Reply-To: <20160424180425.69bbe050@scratchpost.org> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: "Guix-devel" To: Danny Milosavljevic Cc: guix-devel@gnu.org On Sun, Apr 24, 2016 at 06:04:25PM +0200, Danny Milosavljevic wrote: > On Sun, 24 Apr 2016 16:22:16 +0200 > ludo@gnu.org (Ludovic Courtès) wrote: > > > Encrypted root file systems are not supported yet (some people managed > > to work around the lack of support, but that’s somewhat fragile.) > > > > Good news is we’re getting there! You can track progress at > > . > > Thanks! > > Yeah, but even using a non-required-for-boot encrypted filesystem (i.e. not an encrypted root, just encrypted home) doesn't work. As soon as I add "mount? #t" it hangs. > > I'm now using a workaround where it's specified using "mount? #f" and I mount it using a autorun script in my homedir (using "mount /x"). That works fine. > > You're using an encrypted home, right? Does it work for you? This works for me, with an encrypted /home on ext4. The boot process stops and waits for me to decrypt /home, but otherwise there are no complications. > > It's always very broken when I try - both guix reconfigure and sometimes the next boot process (!) hang. >