[Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id
procmem
procmem at riseup.net
Thu Sep 13 02:47:00 CEST 2018
Guilhem Moulin:
> Hi,
>
> On Wed, 12 Sep 2018 at 15:21:00 +0000, procmem wrote:
>> cryptsetup convert /dev/vda5 --type luks2 --debug
>> […]
>> Cannot convert device /dev/vda5 which is still in use.
>> […]
>> Command failed with code -5 (device already exists or device is busy).
>
> As the error message indicates, you need to remove (ie, close) the
> mapped device first. If that device is required for your system to run
> (for instance if it's holding the root file system) you won't be able to
> run `cryptsetup luksClose $name` from the main system; however you
> should be able to perform `cryptsetup convert` from a live CD, or from
> the initramfs image.
>
initramfs sounds like the most versatile option. Any pointers on how to
to this? Searching SE turns up irrelevant results.
> Also, if as you hinted at you're using a detached header, you'll need to
> pass --header=/path/to/header to `cryptsetup convert`.
>
> Cheers,
>
More information about the Whonix-devel
mailing list