[systemd-devel] Systemd user service needs to wait for encrypted $HOME to be decrypted

John da_audiophile at yahoo.com
Sun Sep 13 02:01:13 PDT 2015


>>  Assuming a user has an encrypted $HOME, I need a user service that will:

>> 
>> 
>>  1) Wait for the $HOME to be decrypted, then run ExecStart, and
>>  2) Run ExecStop before the user closes the encryption again.
>>  3) Totally ignore the encryption requirement if the user has no
>>  encryption setup, ie just run normally.
> 
> But you want to do all this from the system instance of systemd?
> 
> How do you encrypt your $HOME? With LUKS? How is that set up? Only
> /home or actually /home/$USER?
> 

Yes, using LUKS. I have it setup for /home currently, but would this work if each user had his own /home/$USER that was encrypted?

>>  RequiresMountsFor=/home/
> 
> This line should actually be all you need to make this work, as long
> as /home is on LUKS.


More information about the systemd-devel mailing list