multiple encrypted device unlocking on boot issue

[redragon68]

On multiple encrypte devices clevis doesn't properly unlock the partitions

I moved to attempting the solution of adding luks,_netdev to the /etc/crypttab file, rebuilding the initrd, enabling clevis-luks-askpass.path but on reboot I get stuck at:

A start job is running for dev-mapper-luks...

If I go into rescue mode, remove the luks,_netdev from /etc/crypttab, rebuild the initrd, and disable clevis-luks-askpass.path then the system will boot up properly upon entering the encryption passphrase without any issues or hanging.

I am unable to get the system to boot properly with multiple encrypted devices.

System Information:

CentOS 7.6 kernel-3.10.0-957.5.1.el7.x86_64 clevis-7-8.el7.x86_64

If I take the 2nd device out (first device is /) the system will boot without issue.

[redragon68]

Any input on this issue?

[ballestr]

@redragon68 You need to add option nofail both in /etc/crypttab for the non-boot device(s) and in /etc/fstab for each filesystem mounted from them.