On 2015-01-28 22:15, John Andersen wrote:
On 01/28/2015 12:54 PM, Carlos E. R. wrote:
Well if that wasn't built into the initrd I can't see that working either. Even with /boot on a separate partition, if the system needs / (root partition) for anything, before it has loaded what ever drivers it needs, you will have this problem.
Well, the boot device itself could be it. External boot via USB. Bios can boot from them, so grub can read them, too. Yes, you need support in initrd for the kernel to read from external media. Grub has some support for encryption, but I heard that it doesn't work right on openSUSE.
I seem to remember some discussion months ago where systemd expects to have significant parts of / available at boot time, which could be part of the problem.
Perhaps that's why OS 13.2 doesn't offer to encrypt / (root), too many gotchas.
No, that's a yast bug. Native encription of a btrfs partition was found unreliable and it was disabled, without enabling instead classical devmapper method. If you use an encrypted LVM device you get full encription of root and home, as on previous releases - or so I understand. -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar)