85 lines
3.0 KiB
Plaintext
85 lines
3.0 KiB
Plaintext
|
|
= Booting Citadel
|
|
[topic]
|
|
@link[guide >index#internals]
|
|
|
|
== Disk Layout
|
|
|
|
When Citadel is installed two disk partitions are created on the target disk.
|
|
|
|
[screen]
|
|
sda 8:0 0 477G 0 disk
|
|
├─sda1 8:1 0 511M 0 part
|
|
└─sda2 8:2 0 476.5G 0 part
|
|
|
|
The first partition is an EFI boot partition and the second partition is LUKS encrypted
|
|
and contains multiple LVM volumes when decrypted.
|
|
|
|
[screen]
|
|
[[[
|
|
|
|
/dev/sda1 /dev/sda2
|
|
|
|
[EFI ESP Boot partition] [ LUKS encrypted partition filling remainder of disk ]
|
|
. .
|
|
. .
|
|
. | .
|
|
. | .
|
|
. V .
|
|
. .
|
|
[ rootfsA ] [ rootfsB ] [ citadel-storage ]
|
|
]]]
|
|
|
|
|
|
There are three logical volumes. Two root filesystem partitions so that one partition
|
|
can be updated while the other one is in use, and the remaining space is contained
|
|
in a volume called 'storage'.
|
|
|
|
[screen sh]
|
|
# lvs
|
|
LV VG Attr LSize
|
|
rootfsA citadel -wi-a----- 2.00g
|
|
rootfsB citadel -wi-ao---- 2.00g
|
|
storage citadel -wi-ao---- 472.43g
|
|
|
|
=== Bootloader
|
|
|
|
==== LUKS
|
|
|
|
The kernel initramfs has an /etc/crypttab file which guides the discovery of the LUKS partition.
|
|
The UUID of the LUKS partition is hardcoded to the value listed below. If citadel is installed
|
|
on more than one device on the system, the intended LUKS partition may not be chosen correctly.
|
|
This problem can be addressed by changing the UUID of other citadel LUKS partitions and passing
|
|
the UUID on kernel commandline to override /etc/crypttab. See systemd-cryptsetup-generator(8).
|
|
|
|
[screen sh]
|
|
# cat /etc/crypttab
|
|
luks UUID=683a17fc-4457-42cc-a946-cde67195a101 - discard
|
|
|
|
==== Mounting rootfs
|
|
|
|
The initramfs boot stage is orchestrated by various systemd unit files which can be found
|
|
in the citadel source tree at:
|
|
|
|
[screen]
|
|
citadel/meta-citadel/recipes-initrd/citadel-initramfs
|
|
|
|
The same kernel and initramfs is used for the installer image. One task of these unit files
|
|
is to set up a live mode boot when a certain kernel command line option is set. For a regular
|
|
boot, a pair of unit files will attempt to mount the root filesystem partition when it becomes
|
|
available:
|
|
|
|
[screen]
|
|
citadel-rootfs-mount.path
|
|
citadel-rootfs-mount.service
|
|
|
|
The .path unit triggers every time /dev/mapper changes and the corresponding .service unit is
|
|
activated only when all of the LVM volumes inside
|
|
|
|
[screen]
|
|
ConditionPathExists=/dev/mapper/citadel-rootfsA
|
|
ConditionPathExists=/dev/mapper/citadel-rootfsB
|
|
ConditionPathExists=/dev/mapper/citadel-storage
|
|
|
|
|