Hi I’m working on adding LUKS support to mender-convert (can share wip branch). I have image generated by mkosi with LUKS encryption and then processed by updated mender-convert which create LUKS partitions again. When flashed to intel NUC boot fails because grub cannot load kernel from boot folder as partition is LUKS encrypted. According this: GRUB - ArchWiki grub should support LUKS. IIRC grub used in mender-convert is pre-compiled. Is there some project which is sued for compiling grub so I can extend and test? Ideas? Thanks.
Hey @MarekBelisko, the grub binaries are compiled in this project. Long term, we should probably move to upstream binaries, at least for x86, but there hasn’t been any work on that so far.
Tried yesterday to manually compile 2.06 grub it start but for LUKS partition it complain about unknown filesystem. According: GRUB - ArchWiki grub2 don’t support all luks2 PBKDF so I explicitely make build with: --pbkdf=pbkdf2 but still same. Even format partition as luks1 type which should be supported but still nothing. Funnily cryptomount asked for passphrase and it said invalid (even works same passphrase in linux). Keep posted here about progress.