Unable to install a fully encrypted system with Raid (1)
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| debian-installer (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
For business reasons I need to (a) encrypt a full install and (b) setup raid 1 so that in case one harddrive fails it can be replaced without (much) downtime.
Before I attempt this on a real server I tested this with vmware workstation 6.5 in Kubuntu 8.10.
My strategy was to
- install a 8.10 server edition (because of the samba package version)
- manually partition the drives (in the vm both are 5 GB)
- use 200 mb in sda for the /boot partition
- use the rest on sda and the full sdb drive for a / partition which will be on raid 1
- then encrypt that raid 1
On this image you can see, that I selected sda2 and sdb1 partition to be a raid device: http://
Here you can see the whole partition layout (incl. the encrypted raid 1): http://
After having been told that I use a weak password (for the test setup I just used "test") and for not having swap (I also tried with swap and with encrypted swap and also with a raided /boot and raided encrypted swap) the rest of the system installed fine.
After reboot I get dropped into busybox: http://
After advice from jdong I tried to manually mount the encrypted partition to access the initramfs-tool scripts. So I went to /dev, issued ls to see if the raid device (md0) is there. So I then tried to mount that one, however the password is not accepted: http://
I have no further idea of how to continue and get an encrypted raid1 setup working. Preferrably it would be to add one more level of comlexity: encrypted raid1 lvm setup.
I hope this can be fixed.
hyper_ch
| hyper_ch (bugs-launchpad-net-roleplayer) wrote | #1 |
| Changed in debian-installer: | |
| status: | New → Confirmed |
| wuddiwupp (stefan-wuttke) wrote | #2 |
I tested the same thing on Debian Etch. In there it didn't work either.
Then I tried Debian Lenny and on that the raid1 + encryption works fine.