This guide will set up an Arch Linux system with a partition containing logical volumes for swap, root, and home using LVM. Which are then ecrypted using LUKS.
This is a basic guide for myself to reference. For a more in-depth guide go to the Luks on LVM section in the arch wiki encrytion guide.
Below is an example of the disk layout:
1
2
3
4
5
6
7
8
9
10
11
12
13
| +----------------+-------------------------------------------------------------------------------------------------+
| Boot partition | dm-crypt plain encrypted volume | LUKS encrypted volume | LUKS encrypted volume |
| | | | |
| /boot | [SWAP] | / | /home |
| | | | |
| | /dev/mapper/swap | /dev/mapper/root | /dev/mapper/home |
| |_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|
| | Logical volume 1 | Logical volume 2 | Logical volume 3 |
| | /dev/MyVolGroup/cryptswap | /dev/MyVolGroup/cryptroot | /dev/MyVolGroup/crypthome |
| |_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _|
| | |
| /dev/sda1 | /dev/sda2 |
+----------------+-------------------------------------------------------------------------------------------------+
|
| Mount Point | Partition | Logical Volume | Type | File System | Size |
|---|
| /mnt/boot | /dev/partition1 | none(not encrypted) | EFI system partition | fat32 | 1G |
| [swap] | /dev/partition2 | /dev/MyVolGroup/cryptswap | Linux swap | swap | 16G |
| /mnt | /dev/partition2 | /dev/MyVolGroup/cryptroot | Linux root | btrfs | 200G |
| /mnt/home | /dev/partition2 | /dev/MyVolGroup/crypthome | Linux home | btrfs | Remainder |
…To Be Continued