Re: Initramfs dropbear remote crypt unlock

help-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Initramfs dropbear remote crypt unlock

From:	Ludovic Courtès
Subject:	Re: Initramfs dropbear remote crypt unlock
Date:	Mon, 26 Sep 2022 10:44:01 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/28.1 (gnu/linux)

Hi,

Nick <kolobok38@gmail.com> skribis:

> Is it possible in Guix to activate dropbear in initramfs to remotely unlock
> fully encrypted disk (root) setup? (Like it done in Debian
> dropbear-initramfs package with cryptroot-unlock command)

There’s nothing to do that out of the box, but starting Dropbear from
the initrd is feasible.  In a nutshell, you could take a look at
‘raw-initrd’ in (gnu system linux-initrd) and insert a snippet that
spawns Dropbear there.  Or maybe ‘luks-device-mapping’ could have an
option for remote unlocking over SSH.

HTH,
Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

Initramfs dropbear remote crypt unlock, Nick, 2022/09/15
- Re: Initramfs dropbear remote crypt unlock, Ludovic Courtès <=

Prev by Date: Re: Virtualisation: Network problems
Next by Date: Re: How does a gexp relate to a derivation?
Previous by thread: Initramfs dropbear remote crypt unlock
Next by thread: Understanding the Guix approach when language package managers are around
Index(es):
- Date
- Thread