1397053 – RFE: Make /boot able to reside on encrypted LVM volumes

Bug 1397053 - RFE: Make /boot able to reside on encrypted LVM volumes

Summary: RFE: Make /boot able to reside on encrypted LVM volumes

Keywords:
Status:	NEW
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	anaconda
Sub Component:
Version:	rawhide
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Anaconda Maintenance Team
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2016-11-21 13:58 UTC by Tim Landscheidt
Modified:	2021-09-20 12:55 UTC (History)
CC List:	12 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Type:	Bug
Dependent Products:

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Tim Landscheidt 2016-11-21 13:58:07 UTC

At least with Fedora 23, /boot must be (on) an unencrypted partition.  For systems where all other filesystems sit on top of an encrypted LVM, this means resizing, etc. /boot is a major operation.

Apparently newer versions of grub allow to boot from encrypted LVM volumes.  http://dustymabe.com/2015/07/06/encrypting-more-boot-joins-the-party/ contains a description of how to move /boot to the root LVM volume on a Fedora 22 system after installation.

It would be nice if the Fedora installer allowed this to work out of the box, i. e. set up a system where /boot is (part of) an encrypted LVM volume.

Note You need to log in before you can comment on or make changes to this bug.