[SOLVED]Cryptsetup / veracrypt / keyfile - encrypting the / home folder

[kris777]

So far I have successfully used the encryption of the / home folder with the veracrypt program. (password + keyfile)
I had a veracrypt container on a separate partition mounted at system startup.
I ran the system from the advanced option grub : systemd
However, after upgrading to the new kernel version 4.19.0-6, this configuration does not work :-(
of course this is not a MXlinux system bug, but rather the last Debian kernel .........
Can it be somehow fixed on the current kernel?

my sample configuration:
crypttab

Code: Select all

veracrypt /media/xxx/mx/vc-mx none tcrypt-veracrypt,tcrypt-keyfile=/media/key/keyfile

fstab

Code: Select all

UUID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx    /               ext4    errors=remount-ro 0       1
/dev/disk/by-uuid/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx   /media/xxx/mx auto nosuid,nodev,nofail,x-gvfs-show 0 0
UUID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx  /media/key  ext4  auto,nofail,noatime,users,exec,rw,x-systemd.device-timeout=1 0  0

/dev/mapper/veracrypt /media/xxx/veracrypt auto nosuid,nodev,nofail 0 0

UUID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx  /home auto nofail 0 0

I'm not 100% sure but I don't think the keyfile is being read ....
on kernel 4.9.0-6 the configuration works OK ... also on Linux Mint / kernel 4.15.0-88
more but in Polish http://ubuntu.pl/forum/viewtopic.php?f=146&t=184203

[kris777]

the solution was simple
change in USB mount configuration containing key file

UUID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx /media/key ext4 auto,nofail,noatime,users,exec,rw,x-systemd.device-timeout=1 0 0

on
UUID=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx /media/key auto nofail 0 0

regards!