Re: Encrypting swap

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

On 05/03/2012 12:52 PM, Konstantin Svist wrote:
On 05/03/2012 12:04 PM, Heinz Diehl wrote:
On 03.05.2012, Konstantin Svist wrote:

Problem is, I can't seem to find a way to encrypt the swap so that it would
be usable for hibernation.
Have you looked at "luksSuspend" and "luksResume"?

I've only seen them as crytsetup options.. I'll google for those..


I'm not sure if the "same key" problem exists in Fedora 16, I've tried
setting it up this way and I'm able to boot but not resume.
Simply, you can't suspend the device which contains the cryptsetup
binary.

That's silly. Grub loads initramfs from an unencrypted /boot partition; initramfs knows about encryption and is able to mount root after I enter my key. There should be no technical reason why it can't mount the swap with the same key immediately after and tell kernel to resume from the now-available swap.


I see now - what you said applies to luksSuspend/luksResume. I'm guessing it should probably reside on /boot or inside initramfs for that reason... From what I can tell, these commands work for an encrypted separate partition, e.g. /home, probably not so much for the whole disk. And/or they should generally be called by other tools, abstracted from the user.


--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org



Photo 4 Less

[Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [SSH]     [Find Someone Special]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Libvirt Users]     [Fedora ARM]

Add to Google Powered by Linux