Attached is an ebuild for the LUKS (Linux Unified Key Setup) variant of cryptsetup, together with patches for the changes needed to make this work. See URL for details. Note that it blocks cryptsetup, since it provides the same command. Reproducible: Always Steps to Reproduce:
Created attachment 48450 [details] The ebuild cryptsetup-luks ebuild, derived from cryptsetup ebuild.
Created attachment 48452 [details, diff] Patch for libgcrypt ebuild For cryptsetup-luks, libgcrypt should be installed in /lib.
Created attachment 48453 [details, diff] Patch for libgpg-error ebuild For cryptsetup-luks, libgpg-error should be installed in /lib.
Created attachment 48454 [details, diff] Patch for /etc/init.d/checkfs Make checkfs aware of an additional type=luks entry in /etc/conf.d/cryptfs.
Created attachment 48455 [details, diff] Patch for /etc/init.d/localmount Make localmount aware of type=luks entry in etc/conf.d/cryptfs.
Created attachment 48456 [details, diff] Patch for /etc/conf.d/cryptfs Add comment about type=luks entry.
Forgot to mention: Since cryptsetup-luks is backwards compatible with cryptsetup, it can be used a replacement. However, even if the LUKS features are not used, the patches for the libgpg-error and libgcrypt ebuilds are needed.
general thoughts are that while it is possible to place libs in /lib for crypto packages bug like #36453 really highlight how bloated the top level directories are in gentoo. Is it possible to static link those packages that require them in a top level directory rather than bloat the top level of everyone.
Meanwhile, there are ebuilds on the LUKS homepage which build both a static and a dynamically linked version. There is also a special version of genkernel so creating LiveCDs with LUKS support should be fairly easy. See http://luks.endorphin.org/gentoo
cryptsetup-luks is in cvs. Check it out and let me know how if there are any problems