for some reason, i didn’t see the mention of my username until now, sorry.
I just updated to the latest pureboot, and did not have any issues booting.
1 Like
He has left Purism
1 Like
Will this be address?
1 Like
Hi all, I’ll check this out. I’m not aware of any fixes made to root hashing for Qubes OS, so the status is probably the same, but I’ll take a look and see what is needed to get this working. Thanks for bringing it to my attention.
1 Like
I looked into this - it’s still not working currently with Qubes’ default partitioning (as expected).
The default partition layout puts root on an LVM2 thin-provisioned volume, the LVM2 container is in turn LUKS-encrypted. We need a few things:
- kernel support for LVM2 thin provisioned volumes (trivial)
- LVM2 tooling wants a ‘thin_check’ tool before activating a thin volume, either need to build this and include it or disable the check
- We need scripting to find the correct root volume, probably an initial version could just look for the default name used by Qubes
It’s solvable. I’ll need to look into ‘thin_check’ more, see if any other dependencies are needed, what we lose if we disable it, how big it is, etc.
1 Like
Got this working for the default Qubes partitioning layout, should work for any combination of LVM/LUKS using the ‘root’ LVM logical volume.
It’s also in the purism_next branch of PureBoot for the upcoming Release 29.
If you’re comfortable building PureBoot/Heads, you can build from source now to give it a try. (As always, please be aware that the full release tests haven’t been run yet, and have a hardware recovery method if you are building your own firmware.)
I’ll start building release candidates for the next firmware releases next week. Once I’ve done basic testing, I can post them for anyone interested to try.
2 Likes
The first PureBoot 29 release candidate is up including this improvement, details here: PureBoot 29 Release Candidate
1 Like