bug#69319: Unbootable, unfixable system

all messages for Guix-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed

From: Nathan Dehnel <ncdehnel@gmail.com>
To: Hilton Chain <hako@ultrarare.space>
Cc: Josselin Poiret <dev@jpoiret.xyz>, 69319@debbugs.gnu.org
Subject: bug#69319: Unbootable, unfixable system
Date: Sat, 24 Feb 2024 23:20:06 -0600	[thread overview]
Message-ID: <CAEEhgEte5waie5OO1LRosoY-pGjmFC2yUF+a-k8EpyNsJur6Qg@mail.gmail.com> (raw)
In-Reply-To: <87edd15jw7.wl-hako@ultrarare.space>

I tried that and it didn't work, I had to use --type=luks1

On Sat, Feb 24, 2024 at 8:59 PM Hilton Chain <hako@ultrarare.space> wrote:
>
> Hi Nathan,
>
> On Sun, 25 Feb 2024 08:48:35 +0800,
> Nathan Dehnel wrote:
> >
> > On Fri, Feb 23, 2024 at 11:17 AM Nathan Dehnel <ncdehnel@gmail.com> wrote:
> > >
> > > On Fri, Feb 23, 2024 at 1:15 AM Nathan Dehnel <ncdehnel@gmail.com> wrote:
> > > >
> > > > This config results in grub rescue "unknown filesystem <uuid of my
> > > > btrfs rootfs>" when I try to boot it. I have verified that all the
> > > > device uuids are correct, and the bootloader, mapped-devices, and
> > > > file-systems sections are identical in form to my other system which
> > > > boots fine. i can mount the boot partition and unlock and mount the
> > > > root partition manually, so they're not broken. I have no idea why
> > > > it's not working. My guess is that reconfigure is broken inside a
> > > > chroot somehow.
> > > >
> > > > (use-modules (gnu))
> > > > (use-service-modules networking ssh sysctl shepherd base)
> > > > (use-package-modules vpn linux)
> > > > (use-modules (nongnu packages linux)
> > > >             (nongnu system linux-initrd)
> > > >             (gnu services)
> > > >             (guix packages)
> > > >             (gooby-channel packages baksnapper))
> > > > (define bashrc
> > > >    (local-file "../bashrc"))
> > > > (define nanorc
> > > >    (local-file "../nano/nanorc"))
> > > > (operating-system
> > > > (kernel linux)
> > > >  (initrd microcode-initrd)
> > > >  (firmware (list linux-firmware))
> > > >  (locale "en_US.utf8")
> > > >  (timezone "America/Chicago")
> > > >  (keyboard-layout (keyboard-layout "us"))
> > > >  (host-name "guixoffline")
> > > >  (bootloader
> > > >    (bootloader-configuration
> > > >      (bootloader grub-efi-bootloader)
> > > >        (targets '("/boot/efi1"))
> > > >      (keyboard-layout keyboard-layout)))
> > > >  (mapped-devices
> > > >    (list (mapped-device
> > > >            (source
> > > >              (uuid "14930dad-016d-4b59-b7d8-d5af2c33f4b0"))
> > > >            (target "offline1")
> > > >            (type luks-device-mapping))
> > > > ))
> > > >  (file-systems
> > > >    (cons* (file-system
> > > >             (mount-point "/boot/efi1")
> > > >             (device (uuid "3339-DAE2" 'fat32))
> > > >             (type "vfat"))
> > > >           (file-system
> > > >             (mount-point "/")
> > > >             (device "/dev/mapper/offline1")
> > > >             (type "btrfs")
> > > >             (options "compress=zlib:9")
> > > >             (dependencies mapped-devices))
> > > >           %base-file-systems))
> > > >  (users (cons* (user-account
> > > >                  (name "nathan")
> > > >                  (comment "Nathan Dehnel")
> > > >                  (group "users")
> > > >                  (home-directory "/home/nathan")
> > > >                  (supplementary-groups '("wheel" "netdev" "audio" "video")))
> > > >                %base-user-accounts))
> > > >  (packages
> > > >    (append
> > > >            (specification->package "btrfs-progs")
> > > >            (specification->package "parted")
> > > >            (specification->package "mdadm")
> > > >            (specification->package "git")
> > > >            (specification->package "nss-certs")
> > > >            (specification->package "nix")
> > > >            (specification->package "efibootmgr")
> > > >            (specification->package "smartmontools")
> > > >            (specification->package "iotop")
> > > >            (specification->package "bcache-tools")
> > > >            (specification->package "lsof")
> > > >            (specification->package "wireguard-tools")
> > > >            (specification->package "baksnapper")
> > > >            (specification->package "file")
> > > >            (specification->package "rsync"))
> > > >      %base-packages))
> > > >  (services
> > > >    (append
> > > >      (list
> > > >           (service openssh-service-type
> > > >             (openssh-configuration
> > > >              (permit-root-login #t)
> > > >              (password-authentication? #t)
> > > >              (authorized-keys
> > > >               `(("root" ,(local-file "ssh/root-gentoodesktop.pub"))
> > > >                 ("root" ,(local-file "ssh/baksnapper-gentoodesktop.pub"))
> > > >                 ("root" ,(local-file "ssh/baksnapper-gentooserver.pub"))
> > > >                 ("root" ,(local-file "ssh/nathan-guixlaptop.pub"))
> > > > ))))
> > > >            (service connman-service-type)
> > > >            (service ntp-service-type)
> > > >            (service gpm-service-type)
> > > >            (simple-service 'nanorc etc-service-type
> > > >                        (list `("nanorc", nanorc)))
> > > > )
> > > >        %base-services)))
> > >
> > > It seems I may have fallen for the grub luks2 compatibility issue,
> > > which I didn't know about. I will investigate later.
> > >
> > Yeah, that was the problem.
>
> GRUB currently doesn't support Argon2 PBKDFs, if you are going to use LUKS2, you
> have to specify pbkdf2:
> --8<---------------cut here---------------start------------->8---
> cryptsetup --type=luks2 --pbkdf=pbkdf2
> --8<---------------cut here---------------end--------------->8---
>
> In case it's needed, I packaged a GRUB variant with Argon2 support and its
> bootloader definition in my channel:
> https://github.com/rakino/Rosenthal/blob/trunk/rosenthal/packages/bootloaders.scm
> https://github.com/rakino/Rosenthal/blob/trunk/rosenthal/bootloader/grub.scm
>
> I re-installed my system with this GRUB variant (also intended to test it)
> recently, and it works just fine.
>
> I think this bug can be closed now?

next prev parent reply	other threads:[~2024-02-25  5:22 UTC|newest]

Thread overview: 7+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2024-02-23  7:15 bug#69319: Unbootable, unfixable system Nathan Dehnel
2024-02-23 10:33 ` Josselin Poiret via Bug reports for GNU Guix
2024-02-23 17:17 ` Nathan Dehnel
2024-02-25  0:48   ` Nathan Dehnel
2024-02-25  2:59     ` Hilton Chain via Bug reports for GNU Guix
2024-02-25  5:20       ` Nathan Dehnel [this message]
2024-02-25  9:47         ` Hilton Chain via Bug reports for GNU Guix

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=CAEEhgEte5waie5OO1LRosoY-pGjmFC2yUF+a-k8EpyNsJur6Qg@mail.gmail.com \
    --to=ncdehnel@gmail.com \
    --cc=69319@debbugs.gnu.org \
    --cc=dev@jpoiret.xyz \
    --cc=hako@ultrarare.space \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/guix.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.