From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <help-guix-bounces+larch=yhetil.org@gnu.org>
Received: from mp10.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms9.migadu.com with LMTPS
	id MMPsFRVpQWSraAAASxT56A
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Thu, 20 Apr 2023 18:32:21 +0200
Received: from aspmx1.migadu.com ([2001:41d0:2:bcc0::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp10.migadu.com with LMTPS
	id QDf7FBVpQWSDcwAAG6o9tA
	(envelope-from <help-guix-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Thu, 20 Apr 2023 18:32:21 +0200
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id 27A7992F2
	for <larch@yhetil.org>; Thu, 20 Apr 2023 18:32:21 +0200 (CEST)
Received: from localhost ([::1] helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <help-guix-bounces@gnu.org>)
	id 1ppXCG-0004hR-7x; Thu, 20 Apr 2023 12:31:48 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <dev@jpoiret.xyz>)
 id 1ppXCE-0004gu-8V; Thu, 20 Apr 2023 12:31:46 -0400
Received: from jpoiret.xyz ([206.189.101.64])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <dev@jpoiret.xyz>)
 id 1ppXC0-0004qy-GJ; Thu, 20 Apr 2023 12:31:45 -0400
Received: from authenticated-user (jpoiret.xyz [206.189.101.64])
 by jpoiret.xyz (Postfix) with ESMTPA id D2FA3184F2A;
 Thu, 20 Apr 2023 16:31:25 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jpoiret.xyz; s=dkim;
 t=1682008287;
 h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
 in-reply-to:in-reply-to:references:references;
 bh=wKXubt2dW25zbfCsyBMGrC0Pu85uBcHW9H2DX3e+taU=;
 b=VoZEVWIx/yixQCsPBe94cmtUCKH0ULtUCb9WpVyh/Nrf9goStxygxozF/N9wElJAECPSEJ
 WfV7Ppzr+uUJmFKbHuOgF3aDUXj46q2++e3xVCvDkSFr2dtZzUAyciV/Q10Km/CKyO14t1
 0snyGTxSdWW4bxAz6HXQCcMPH7t6++6iqbmiMpUOE0qtY3EctVve9U1zNC6yH+KVhItY5Y
 +H1P+Qe2I0ipyURxNMJiT4P2ZBVANLGZuh7EQCth6UQcm0XTbiQtLldFnKyhFahnP7FsvD
 89lqfiXYRXuVJ8d2YrGL3cC3BoHC/MBU3BSKaz3ocT+O9Nn/YV+A+ZCrPaiBAg==
From: Josselin Poiret <dev@jpoiret.xyz>
To: kiasoc5 <kiasoc5@disroot.org>, Attila Lendvai <attila@lendvai.name>,
 Vagrant Cascadian <vagrant@debian.org>
Cc: Felix Lechner <felix.lechner@lease-up.com>, Guix Devel
 <guix-devel@gnu.org>, help-guix <help-guix@gnu.org>
Subject: Re: PSA for LUKS users
In-Reply-To: <dff806bc-db0e-afbd-23d5-82ef5e3060e1@disroot.org>
References: <CAFHYt54-TU8_tG+RYBuJZtPk46oywzvcvDoU-Xy4riQ_rMiBeQ@mail.gmail.com>
 <87edoftd1x.fsf@wireframe>
 <8Z58Uzi580jS79bwOT89HTjLT2z5IWEdtG1XfM_LkrFCkHgaivLtTswSn3mqxe4VBXiK6u0QIbM_TuE3-eKuv9S4-Yv3O-XA-loO3sY0Dzc=@lendvai.name>
 <dff806bc-db0e-afbd-23d5-82ef5e3060e1@disroot.org>
Date: Thu, 20 Apr 2023 18:31:16 +0200
Message-ID: <878remzfaj.fsf@jpoiret.xyz>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha256; protocol="application/pgp-signature"
X-Spamd-Bar: /
Received-SPF: pass client-ip=206.189.101.64; envelope-from=dev@jpoiret.xyz;
 helo=jpoiret.xyz
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_PASS=-0.001,
 SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: help-guix@gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <help-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/help-guix>
List-Post: <mailto:help-guix@gnu.org>
List-Help: <mailto:help-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/help-guix>,
 <mailto:help-guix-request@gnu.org?subject=subscribe>
Errors-To: help-guix-bounces+larch=yhetil.org@gnu.org
Sender: help-guix-bounces+larch=yhetil.org@gnu.org
X-Migadu-Flow: FLOW_IN
X-Migadu-Country: US
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1682008341; a=rsa-sha256; cv=none;
	b=pCv7GrFSWCQlayXx3yAndqAkCyZBcD/hTDXDRA+kMsmHcA/Zfu4WFmGNddG+GhazY/wwif
	1DF7zu4QXSkh9U5EPSBVbjZAzfkyz/G9QMqRsXrkJX5rNM3XVQHTyXpWQDALF92Q9v1X6f
	DHunidSme6wCdAUY1+e+dAmbo/vtx5GVdKancCzyPtsbto466otvnKxwFMC0PpmsuXsZ2L
	KUuxAAUi0NqOQCpbjpi0ov+Qsw9rluDK/Sa4Z0zMkIVB2V028+IeI5GKtjIgIUqRAhtK7v
	GmWZUuBmTHokvJIlcsCCe5Ubu0NQ697bbgBqx1Suk4A+5yV3brdc37gTA4I/+w==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=pass header.d=jpoiret.xyz header.s=dkim header.b=VoZEVWIx;
	dmarc=pass (policy=reject) header.from=jpoiret.xyz;
	spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org"
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1682008341;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=wKXubt2dW25zbfCsyBMGrC0Pu85uBcHW9H2DX3e+taU=;
	b=ACHqy4g2oBotdiWQvQXpMlhZY5UlssUAp6PnL0VsXSOmdoQOsy1X7QNt4u+P/AYpnRg/UY
	FzOKHVz42vGZtm6VgImc3XLuMR/LTHUzZLJAaCtSGXtqoB+Lg9ZnBni08snMN3bqfqGVho
	6Zb/XKJ2m7sgcOI8vpyjTf27+NK88/dNX/p6edFelVVh7iGpOZuO5QDuOOC2S7CiGy6ILr
	0pJ96RmZjGGGvaiYDUF+9Lc2/by7FKymGZkY4xxtX3rlJE5/nzX6kpqYmg+dH3cxzkV0BC
	UnJlF5otjCiW5Mx5iSd0hFtrTo2aY9rzvBbusbM1x+41jDvojQ4xVIj1n/pd6A==
X-Migadu-Scanner: scn1.migadu.com
Authentication-Results: aspmx1.migadu.com;
	dkim=pass header.d=jpoiret.xyz header.s=dkim header.b=VoZEVWIx;
	dmarc=pass (policy=reject) header.from=jpoiret.xyz;
	spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Spam-Score: -7.83
X-Spam-Score: -7.83
X-Migadu-Queue-Id: 27A7992F2
X-TUID: v+xJ0je9A/xH

--=-=-=
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

It would probably be doable to run a very small Linux EFI stub as a
bootloader on x86, that way you can side-step the lacking grub support.
Integrating it with Guix would surely be a bit harder though.

kiasoc5 <kiasoc5@disroot.org> writes:

> Argon2 support was slated to be in the next release of Grub (2.12) but=20
> apparently this is not realistic:

As for LUKS2 support in Grub, as long as you use PBKDF2 it should now be
supported by HEAD.

Best,
=2D-=20
Josselin Poiret

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=+AXQ
-----END PGP SIGNATURE-----
--=-=-=--