I am trying to install Grub on a UEFI system. I have /boot encrypted with Luks, / encrypted with Luks2, and /boot/efi is not encrypted.
When Architect goes to install Grub on /boot/efi, it asks for the encryption password to create a keyfile. I enter the password. Then I see a cryptsetup process using 100% of the CPU, but it does nothing. It will use 100% CPU for hours but never finish.
What is going on here and how do I make grub finish installing?
I have actually come to the conclusion that what I’m trying to do is pointless. There’s nothing to gain from using Luks2 (argon2 specifically) if the key is stored on the weaker Luks1 container.