Originally posted by Britoid
View Post
Announcement
Collapse
No announcement yet.
Fedora Stakeholders Discuss Possibility Of Using Pre-Built Initramfs Images
Collapse
X
-
Originally posted by lowlands View Post
What is the use case for such a setup? Probably stating the obvious but wouldn't "auto-decrypt" defeat the purpose of an encrypted hard drive? I use dracut-sshd to remotely ssh into a booting server to enter the key.
I'd rather them move the initramfs out of the archive and over to /boot/init or something like that. If it's going to be a prebuilt and known initramfs, like how /sbin used to contain known boot binaries, then take the stuff out of the damn archive so it's easier to work with.
Comment
-
Originally posted by oleid View PostPre-built is fine, as long as you can add additional files
Comment
-
Originally posted by skeevy420 View Post
No, unless you don't know any better so you don't use a LUKS encrypted GRUB that requires a password followed by unlocking everything else VIA key files stored on either /boot/keys or on a USB drive so you can remove it once the keys are used and shit is decrypted.
I'd rather them move the initramfs out of the archive and over to /boot/init or something like that. If it's going to be a prebuilt and known initramfs, like how /sbin used to contain known boot binaries, then take the stuff out of the damn archive so it's easier to work with.
- Likes 2
Comment
-
Originally posted by Britoid View Post
It being in an archive allows it to be easily compressed and signed "as one". It's also easier to do atomic upgrades if you're only moving/renaming two files.
Comment
-
What happened to the idea of removing initramfs entirely with compiled-in storage drivers and keeping kernel boot options in the bootloader? I tried this in Debian for a while and the performance advantage was very noticable from rotating media.
- Likes 2
Comment
-
Originally posted by lowlands View Post
What is the use case for such a setup? Probably stating the obvious but wouldn't "auto-decrypt" defeat the purpose of an encrypted hard drive?
The initramfs, however, doesn't live on an unencrypted partition, but on the first encrypted one. Grub is clever enough to understand luks.
Comment
-
Originally posted by Djhg2000 View PostWhat happened to the idea of removing initramfs entirely with compiled-in storage drivers and keeping kernel boot options in the bootloader? I tried this in Debian for a while and the performance advantage was very noticable from rotating media.
I will absolutely look into making this happen on my computer. :-)
Comment
Comment