1. you have a fully encrypted root fs, with /var/ being placed on the root fs too
2. you have an immutable root fs, but /var/ is mounted writable.
In both these cases using /var/ as the path to search the backing block device for will work, while using / instead would not work for the 2nd case.
Also note, that this mechanism is automatically disabled when a destructive operation is used (i.e. an existing key slot shall be wiped), for robustness reasons.
Lennart Poettering /
npub1rk…qzenj
2024-05-13 13:52:37
in reply to nevent1q…h9xg
Author Public Key
npub1rk2uxtv6nk262nucavh259t085a8rhzfaj3vjc9jhzvkyav0rnqqxqzenjPublished at
2024-05-13 13:52:37Event JSON
{
"id": "cbda2e13ec3e0810140f5aa9c8f4d6b44451ad08dc750a4e8f63dce31adc5db9",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1715608357,
"kind": 1,
"tags": [
[
"e",
"70241a6c0a5fd95cd58d824754cba764a0fd011fd4b4fb57c231cfca20ae9e05",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/112434109334168642",
"activitypub"
]
],
"content": "1. you have a fully encrypted root fs, with /var/ being placed on the root fs too\n2. you have an immutable root fs, but /var/ is mounted writable.\n\nIn both these cases using /var/ as the path to search the backing block device for will work, while using / instead would not work for the 2nd case.\n\nAlso note, that this mechanism is automatically disabled when a destructive operation is used (i.e. an existing key slot shall be wiped), for robustness reasons.",
"sig": "0d02032b0c333e80f923b32e77a76677409f44cecf8aaa9af4c44551acb561c253d78bc60031c3fb9bff4002260d39b4e2819aec554166cb0b65b10752b4d9f8"
}