* Initramfs dropbear remote crypt unlock
@ 2022-09-13 7:54 Nick
2022-09-26 8:44 ` Ludovic Courtès
0 siblings, 1 reply; 2+ messages in thread
From: Nick @ 2022-09-13 7:54 UTC (permalink / raw)
To: help-guix
Is it possible in Guix to activate dropbear in initramfs to remotely unlock
fully encrypted disk (root) setup? (Like it done in Debian
dropbear-initramfs package with cryptroot-unlock command)
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Initramfs dropbear remote crypt unlock
2022-09-13 7:54 Initramfs dropbear remote crypt unlock Nick
@ 2022-09-26 8:44 ` Ludovic Courtès
0 siblings, 0 replies; 2+ messages in thread
From: Ludovic Courtès @ 2022-09-26 8:44 UTC (permalink / raw)
To: Nick; +Cc: help-guix
Hi,
Nick <kolobok38@gmail.com> skribis:
> Is it possible in Guix to activate dropbear in initramfs to remotely unlock
> fully encrypted disk (root) setup? (Like it done in Debian
> dropbear-initramfs package with cryptroot-unlock command)
There’s nothing to do that out of the box, but starting Dropbear from
the initrd is feasible. In a nutshell, you could take a look at
‘raw-initrd’ in (gnu system linux-initrd) and insert a snippet that
spawns Dropbear there. Or maybe ‘luks-device-mapping’ could have an
option for remote unlocking over SSH.
HTH,
Ludo’.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2022-09-26 8:44 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-09-13 7:54 Initramfs dropbear remote crypt unlock Nick
2022-09-26 8:44 ` Ludovic Courtès
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).