From c55ce46084635c188abb4516ba6ee6eee38dd11d Mon Sep 17 00:00:00 2001 From: Craig Jennings Date: Sat, 24 Jan 2026 05:33:13 -0600 Subject: Phase 2.8: Add LUKS encryption for btrfs - Add LUKS functions to btrfs.sh (create/open/close container) - Add crypttab configuration for boot - Add encrypt hook to mkinitcpio HOOKS - Add cryptdevice parameter to GRUB cmdline - Add get_btrfs_encryption_choice and get_luks_passphrase prompts - Add LUKS_PASSPHRASE to config variables - Update show_summary and print_btrfs_summary for encryption status - Add btrfs-luks.conf test config VM test pending. --- docs/session-context.org | 19 ++++++++++++------- 1 file changed, 12 insertions(+), 7 deletions(-) (limited to 'docs/session-context.org') diff --git a/docs/session-context.org b/docs/session-context.org index e5aea93..b193721 100644 --- a/docs/session-context.org +++ b/docs/session-context.org @@ -38,20 +38,25 @@ - [X] Genesis snapshot can be created - [X] grub-btrfs detects snapshots -**** Issues Fixed During Testing -1. GRUB couldn't find normal.mod - added proper boot-directory config -2. GRUB_BTRFS_GRUB_DIRNAME was wrong - removed, use default -3. HEREDOC not working in remote execution - switched to echo -4. Snapper needs D-Bus - firstboot service approach -5. rootflags=subvol=@ was duplicated - grub-mkconfig adds it +*** Phase 2.8: LUKS Encryption (IMPLEMENTED @ 05:36 CST) +- [X] LUKS functions in btrfs.sh (create, open, close containers) +- [X] crypttab configuration +- [X] encrypt hook for mkinitcpio +- [X] GRUB cryptdevice parameter +- [X] Encryption prompts in archangel +- [X] LUKS_PASSPHRASE config variable +- [X] btrfs-luks.conf test config +- [ ] VM test pending ** Commits This Session - a49f4b1: Phase 2.1: Implement btrfs support - 35a661c: Fix btrfs bugs from VM testing - bd0616c: Fix btrfs GRUB boot and snapper firstboot +- 4a7b6c3: Update session context: Phase 2.7 complete +- (pending): Phase 2.8: Add LUKS encryption for btrfs ** Next Steps -1. Phase 2.8: LUKS encryption for btrfs +1. VM test LUKS btrfs installation 2. Rebuild ISO with all fixes 3. Full end-to-end automated test 4. Phase 3: Multi-disk support -- cgit v1.2.3