1 |
On Wed, May 07, 2014 at 12:50:53AM +0300, Alon Bar-Lev wrote |
2 |
> Checkout[1] |
3 |
> |
4 |
> [1] |
5 |
> http://alonbl.shoutwiki.com/wiki/Gentoo/Linux_Disk_Encryption_Using_LoopAES_And_SmartCards |
6 |
|
7 |
Unfortunately, 90% of the wiki entry is irrelavant to my situation. |
8 |
It's aimed at encrypting the entire machine, and making it bootable with |
9 |
initramfs. I just need to encrypt a USB key. |
10 |
|
11 |
I see that it also says to build various stuff with the "static" USE |
12 |
flag. I assume this is for an initramfs boot. Looking at the ebuild, I |
13 |
see that it strongly suggests static-libs builds for a whole bunch of |
14 |
stuff. I don't know if this is required in all cases, or simply for |
15 |
booting from an encrypted disk... |
16 |
|
17 |
LIB_DEPEND="dev-libs/libgpg-error[static-libs(+)] |
18 |
dev-libs/popt[static-libs(+)] |
19 |
sys-apps/util-linux[static-libs(+)] |
20 |
gcrypt? ( dev-libs/libgcrypt:0[static-libs(+)] ) |
21 |
nettle? ( >=dev-libs/nettle-2.4[static-libs(+)] ) |
22 |
openssl? ( dev-libs/openssl[static-libs(+)] ) |
23 |
sys-fs/lvm2[static-libs(+)] |
24 |
sys-libs/e2fsprogs-libs[static-libs(+)] |
25 |
udev? ( virtual/udev[static-libs(+)] )" |
26 |
|
27 |
Also interesting is that this webpage recommends *NO* loop support in |
28 |
the kernel. This may be important, i.e. loop-aes may provide the |
29 |
support, and clash with the kernel code. Time to head off to bed |
30 |
tonight. I'll try again in the morning. |
31 |
|
32 |
-- |
33 |
Walter Dnes <waltdnes@××××××××.org> |
34 |
I don't run "desktop environments"; I run useful applications |