You are not logged in.

Pages: 1

#1 2023-08-12 14:01:11

ernetas
Member
Registered: 2011-03-13
Posts: 79

Decrypting LUKS volume over SSH

Hello,

I'm trying to follow (https://wiki.archlinux.org/title/Dm-cry … mkinitcpio) article to unlock encrypted root volume over SSH using tinyssh.

What I have right now:
- The machine asks for a password on the boot screen.
- I can SSH into the machine
- I can run /lib/systemd/system-cryptattach root /dev/mapper/hydrogen-root and successfully decrypt the root volume.
- But sd-encrypt hook is still running and waiting for password on the boot screen.

What am I missing?

My /etc/mkinitcpio.conf:

MODULES=()
BINARIES=()
FILES=()
HOOKS=(base systemd keyboard autodetect modconf sd-vconsole block lvm2 sd-network sd-tinyssh sd-encrypt filesystems fsck)
COMPRESSION="zstd"

I'm trying to use mkinitcpio-systemd-extras, but I also gave mkinitcpio-systemd-tool a shot too and still got the same results.

Hire me!

Offline

#2 2023-08-12 14:12:24

ernetas
Member
Registered: 2011-03-13
Posts: 79

Re: Decrypting LUKS volume over SSH

Ah, looks like I was missing SD_TINYSSH_COMMAND="systemd-tty-ask-password-agent --query --watch" in mkinitcpio.conf

Hire me!

Offline

Pages: 1

Board footer

Powered by FluxBB