Extend full disk encryption to another partition

Questions about SolydX and SolydK installation.
User avatar
ilu
Posts: 2600
Joined: 09 Oct 2013 12:45

Extend full disk encryption to another partition

Postby ilu » 10 Oct 2017 23:53

How would I best go about encrypting another partition with the same key the system partition is using without reinstalling? I used the installer to encrypt root but forgot about the data partition :oops:

User avatar
Arjen Balfoort
Site Admin
Posts: 9375
Joined: 26 Jan 2013 19:36
Location: Netherlands
Contact:

Re: Extend full disk encryption to another partition

Postby Arjen Balfoort » 11 Oct 2017 06:23

Try "SolydXK System Settings" (solydxk-system GUI). It will only list partitions that can be encrypted, excluding boot, root and fstab mounted partitions. If you want to include those you need to boot a live session and run SolydXK System Settings there (still excluding boot partition /boot).

These files are changed:
/etc/fstab
/etc/crypttab

and if / is encrypted (as is in your case):
/.lukskey
This key file can also be placed in the next encrypted partition if / is not encrypted, provided it is listed in fstab.

Caution: SolydXK System Settings is still in beta. There was nobody but me who has tested it. Perhaps it's better to simulate the situation first in a VM before you continue on metal.


SolydXK needs you!
Development | Testing | Translations

User avatar
ilu
Posts: 2600
Joined: 09 Oct 2013 12:45

Re: Extend full disk encryption to another partition

Postby ilu » 19 Mar 2018 17:38

schoelje, I'm not really sure how to proceed. Of course the data partition is mounted via fstab. So the partition doesn't show up in SSS. Running a live session no partition at all showed up for encryption. Doing anything there seemed risky anyway because it could have touched my root partition. So I uncommented the partition in fstab and rebooted into normal system, used SSS and encrypted the (empty, so no risk) data partition there. That worked. Now: how can I recreate the fstab entry? And how can I ensure that both partitions (root and data) are decrypted in one go without entering the password twice?

Bug report: I noticed that SSS starts up with an orange splash screen which unfortunately doesn't go away, so I had to manually move all windows from under it.

User avatar
Arjen Balfoort
Site Admin
Posts: 9375
Joined: 26 Jan 2013 19:36
Location: Netherlands
Contact:

Re: Extend full disk encryption to another partition

Postby Arjen Balfoort » 19 Mar 2018 17:49

Please, run solydxk-system from terminal and post back the output until it hangs.
Open another terminal and sudo killall python3 to remove the hanging splash.
After that you can try to run solydxk-system with the -n parameter to skip the splash screen.

Code: Select all

solydxk-system -n
I'm down with the flue (again). So, I'm not sure when I'm back to help you.

P.S.: don't forget to check "Enable encryption" to show encryptable partitions.


SolydXK needs you!
Development | Testing | Translations

User avatar
ilu
Posts: 2600
Joined: 09 Oct 2013 12:45

Re: Extend full disk encryption to another partition

Postby ilu » 20 Mar 2018 17:21

Code: Select all

~$ solydxk-system
http://repository.solydxk.com/umfiles/mirrors.list
http://repository.solydxk.com/umfiles/mirrors.list
Create list store eval string: Gtk.ListStore(bool, str, str, str, str, int, int)
First item is column name (multi-column list): Aktuell
First item is column name (multi-column list): Land
First item is column name (multi-column list): Paketquelle
First item is column name (multi-column list): URL
First item is column name (multi-column list): Geschwindigkeit
Create column names: ['Aktuell', 'Land', 'Paketquelle', 'URL', 'Geschwindigkeit']
First item is column name: skip first item
Create column: Gtk.TreeViewColumn("Aktuell", Gtk.CellRendererToggle(), active=0)
Column added: Aktuell
Create column: Gtk.TreeViewColumn("Land", Gtk.CellRendererText(), text=1, weight=5, size=6)
Column added: Land
Create column: Gtk.TreeViewColumn("Paketquelle", Gtk.CellRendererText(), text=2, weight=5, size=6)
Column added: Paketquelle
Create column: Gtk.TreeViewColumn("URL", Gtk.CellRendererText(), text=3, weight=5, size=6)
Column added: URL
Create column: Gtk.TreeViewColumn("Geschwindigkeit", Gtk.CellRendererText(), text=4, weight=5, size=6)
Column added: Geschwindigkeit
grep: /etc/apt/sources.list.d/*.list: Datei oder Verzeichnis nicht gefunden
Create list store eval string: Gtk.ListStore(bool, str, int, int)
Create column names: ['Column 0', 'Column 1']
Create column: Gtk.TreeViewColumn("Column 0", Gtk.CellRendererToggle(), active=0)
Column added: Column 0
Create column: Gtk.TreeViewColumn("Column 1", Gtk.CellRendererText(), text=1, weight=2, size=3)
Column added: Column 1
[['Installieren', '', 'Gerät', 'driver', 'manid', 'deviceid']]
Create list store eval string: Gtk.ListStore(bool, GdkPixbuf.Pixbuf, str, int, int)
First item is column name (multi-column list): Installieren
First item is column name (multi-column list): 
First item is column name (multi-column list): Gerät
Create column names: ['Installieren', '', 'Gerät']
First item is column name: skip first item
Create column: Gtk.TreeViewColumn("Installieren", Gtk.CellRendererToggle(), active=0)
Column added: Installieren
Create column: Gtk.TreeViewColumn("", Gtk.CellRendererPixbuf(), pixbuf=1)
Column added: 
Create column: Gtk.TreeViewColumn("Gerät", Gtk.CellRendererText(), text=2, weight=3, size=4)
Column added: Gerät
Create list store eval string: Gtk.ListStore(bool, str, int, int)
Create column names: ['Column 0', 'Column 1']
Create column: Gtk.TreeViewColumn("Column 0", Gtk.CellRendererToggle(), active=0)
Column added: Column 0
Create column: Gtk.TreeViewColumn("Column 1", Gtk.CellRendererText(), text=1, weight=2, size=3)
Column added: Column 1
Create list store eval string: Gtk.ListStore(bool, str, int, int)
Create column names: ['Column 0', 'Column 1']
Create column: Gtk.TreeViewColumn("Column 0", Gtk.CellRendererToggle(), active=0)
Column added: Column 0
Create column: Gtk.TreeViewColumn("Column 1", Gtk.CellRendererText(), text=1, weight=2, size=3)
Column added: Column 1
Create list store eval string: Gtk.ListStore(bool, str, str, bool, int, int)
First item is column name (multi-column list): Installiert
First item is column name (multi-column list): Sprachumgebung
First item is column name (multi-column list): Sprache
First item is column name (multi-column list): Standard
Create column names: ['Installiert', 'Sprachumgebung', 'Sprache', 'Standard']
First item is column name: skip first item
Create column: Gtk.TreeViewColumn("Installiert", Gtk.CellRendererToggle(), active=0)
Column added: Installiert
Create column: Gtk.TreeViewColumn("Sprachumgebung", Gtk.CellRendererText(), text=1, weight=4, size=5)
Column added: Sprachumgebung
Create column: Gtk.TreeViewColumn("Sprache", Gtk.CellRendererText(), text=2, weight=4, size=5)
Column added: Sprache
Create column: Gtk.TreeViewColumn("Standard", Gtk.CellRendererToggle(), active=3)
Column added: Standard
Create list store eval string: Gtk.ListStore(bool, str, int, int)
Create column names: ['Column 0', 'Column 1']
Create column: Gtk.TreeViewColumn("Column 0", Gtk.CellRendererToggle(), active=0)
Column added: Column 0
Create column: Gtk.TreeViewColumn("Column 1", Gtk.CellRendererText(), text=1, weight=2, size=3)
Column added: Column 1
========== Device Info of: /dev/sda3 ==========
UUID: 
FS Type: ntfs
Mount point: 
Label: 
Total size: 49238012.0
Free size: 9429548.0
Used size: 39808464.0
ConnectionBus: 
Removable: False
Has Grub: False
===============================================
========== Device Info of: /dev/sda7 ==========
UUID: 
FS Type: ext4
Mount point: /boot
Label: 
Total size: 499656.0
Free size: 269472.0
Used size: 193488.0
ConnectionBus: 
Removable: False
Has Grub: False
===============================================
========== Device Info of: /dev/sda6 ==========
UUID: 
FS Type: ntfs
Mount point: 
Label: 
Total size: 62914556.0
Free size: 62846652.0
Used size: 67904.0
ConnectionBus: 
Removable: False
Has Grub: False
===============================================
========== Device Info of: /dev/sda5 ==========
UUID: 
FS Type: crypto_LUKS
Mount point: 
Label: 
Total size: 31457280.0
Free size: 0
Used size: 0
ConnectionBus: 
Removable: False
Has Grub: False
===============================================
========== Device Info of: /dev/mapper/sda4 ==========
UUID: 
FS Type: ext4
Mount point: /
Label: SolydX9
Total size: 30830500.0
Free size: 4485180.0
Used size: 24756176.0
ConnectionBus: 
Removable: False
Has Grub: False
======================================================
========== Device Info of: /dev/sda1 ==========
UUID: 
FS Type: vfat
Mount point: /boot/efi
Label: EFI
Total size: 98304.0
Free size: 79949.0
Used size: 18355.0
ConnectionBus: 
Removable: False
Has Grub: False
===============================================

User avatar
ilu
Posts: 2600
Joined: 09 Oct 2013 12:45

Re: Extend full disk encryption to another partition

Postby ilu » 28 Mar 2018 21:55

I followed this guide https://blog.tinned-software.net/automo ... tem-start/ (except for the keyfile because I don't want that) but it did not work. The partition gets decrypted but I have to enter the password twice. And automount does not work. If I mount via Thunar or desktop the partition gets mounted under /media/|<user> but with root permissions.


Return to “Installation”

Who is online

Users browsing this forum: No registered users and 2 guests