Preseeding with multiple volume groups/independently encrypted groups
Hi,
I'm trying to get a stable preseeding setup to setup my default partitioning
scheme, which is:
1) clear /boot
2) random-key encrypted /tmp
3) random key encrypted swap
4) everything else in a PW encrypted btrfs partition (/)
The preseeding file (where it matter) currently looks as follow, but the
installation complains that their's a valume group that doesn't contain a
physical volume and balks. Is what I want even possible via preseeding?
Thank you for any hints.
Sincerely, Joh
# Custom recipe:
## Set the default file system
d-i partman/default_filesystem string btrfs
## Choose the first SATA block device
d-i partman-auto/disk string /dev/sda
## OK removal of potentially pre-existing lvm setups
d-i partman-lvm/device_remove_lvm boolean true
## OK removal of potentially pre-existing RAID setups
d-i partman-md/device_remove_md boolean true
## OK writing to lvm partitions
d-i partman-lvm/confirm boolean true
d-i partman-lvm/confirm_nooverwrite boolean true
## Choose maximal partition use (?)
d-i partman-auto-lvm/guided_size string max
## Choose the 'crypt' partman method
d-i partman-auto/method string crypto
## Ensure selction of custom recipe
d-i partman-auto/choose_recipe select joh-complex
## Make the lvm volume groups:
d-i partman-auto-lvm/new_vg_name multiselect vg_crypto_swap, \
vg_crypto_tmp, vg_crypto_root
## Define the custom recipe
d-i partman-auto/expert_recipe string \
joh-complex :: \
100 150 200 ext3 \
$primary{ } \
$bootable{ } \
label{ boot_nocrypto } \
method{ format } \
format{ } \
use_filesystem{ } \
filesystem{ ext4 } \
mountpoint{ /boot } \
options/discard{ discard } \
options/relatime{ relatime } \
. \
1000 5000 5000 lvm \
$primary{ } \
$defaultignore{ } \
method{ lvm } \
device{ /dev/sda } \
vg_name{ vg_crypto_tmp } \
. \
1000 5000 5000 ext3 \
$lvmok{ } \
method{ format } \
format{ } \
in_vg{ vg_crypto_tmp } \
lv_name{ tmp_crypto } \
use_filesystem{ } \
filesystem{ ext2 } \
mountpoint{ /tmp } \
options/relatime{ relatime } \
options/noexec{ noexec } \
. \
100% 300% 300% lvm \
$primary{ } \
$defaultignore{ } \
method{ lvm } \
device{ /dev/sda } \
vg_name{ vg_crypto_swap } \
. \
100% 300% 300% linux-swap \
$lvmok{ } \
method{ swap } \
format{ } \
in_vg{ vg_crypto_swap } \
lv_name{ swap_crypto } \
. \
1000 10000 1000000000 lvm \
$primary{ } \
$defaultignore{ } \
method{ lvm } \
device{ /dev/sda } \
vg_name{ vg_crypto_root } \
. \
1000 10000 1000000000 ext3 \
$lvmok{ } \
method{ format } \
format{ } \
in_vg{ vg_crypto_root } \
lv_name{ root_crypto } \
use_filesystem{ } \
filesystem{ btrfs } \
mountpoint{ / } \
options/discard{ discard } \
options/relatime{ relatime } \
options/ssd{ ssd } \
. \
# This makes partman automatically partition without confirmation, provided
# that you told it what to do using one of the methods above.
d-i partman-partitioning/confirm_write_new_label boolean true
d-i partman/choose_partition select finish
d-i partman/confirm boolean true
d-i partman/confirm_nooverwrite boolean true
# This makes partman automatically partition without confirmation.
d-i partman-md/confirm boolean true
## Controlling how partitions are mounted
# The default is to mount by UUID, but you can also choose "traditional" to
# use traditional device names, or "label" to try filesystem labels before
# falling back to UUIDs.
d-i partman/mount_style select uuid
Reply to: