An obviously talented programmer is no longer working on a free project that very few people can meaningfully contribute to - that is a shame.
I can’t even get myself to learn rust, let alone make a GPU driver while reverse engineering blackbox hardware.
But how to get the OS to recognize it?
My approach for doing this in Gentoo with an encrypted /home is to configure dracut to make a slightly customized initrd.
Thanks to dracut modules, not too much configuration is needed - it prompts on boot for the password to decrypt, and then fstab is just configured to mount the decrypted uuid.
Someone else mentioned using multiple key slots, but I think this is your only real secure option.
Edit: on second thought, you may be able to get this to work in grub simply by adding rd.luks.uuid=xxx as a kernel boot parameter, and then having the decrypted /dev/mapper uuid in fstab for /home
So if you want to use
systemd-bootas the bootloader you have to (apparently) install thesystemd-utilspackage. Or you can just use GRUB / efistub.Edit: looks like groche beat me to it 😁
It’s probably been 4 years since I last had to rebuild my Gentoo, but I would be very surprised if there weren’t good OpenRC instructions. I built mine with systemd and Gentoo handbook instructions always felt like ‘Are you sure you don’t want to use OpenRC? Ok, here are the systemd steps I guess’