desultory / ugrd Goto Github PK
View Code? Open in Web Editor NEWpython framework for generating initramfs's from TOML definitions
License: GNU General Public License v2.0
python framework for generating initramfs's from TOML definitions
License: GNU General Public License v2.0
Because of an issue with scdaemon
, YubiKeys only work on every second reset.
I have a device that was encrypted directly (no partition information) with the detached headers option:
#cryptsetup luksFormat --header luks_header.img /dev/sda
Doing this means that the device /dev/sda has no UUID or no PARTUUID and looking at the code, ugrd doesn't support this use case.
ugrd can be successfully used on this partition in the case where the header is in place because it then has a UUID and everything else works (password, keyfile, gpg+keyfile, etc).
It looks like default options from the command line overwrite config options:
kmod_autodetect_lspci = true
kmod_autodetect_lsmod = true
When we call:
$ ugrd
...
Importing argument 'kmod_autodetect_lspci' with value: False
Importing argument 'kmod_autodetect_lsmod' with value: False
...
If root_subvol
is used, there is no guarantee a valid one will be selected.
https://github.com/desultory/ugrd/blob/main/src/ugrd/initramfs_dict.py#L197 https://github.com/desultory/ugrd/blob/main/src/ugrd/initramfs_dict.py#L127-L137
I've done basic testing on the module sideloading, have not documented it and I'm not sure how it should behave.
When asked for the password to decrypt the luks partition I have to use the US layout (in my case with an italian keyboard).
Is it possible to use a different layout?
Is this ugrd related, or I need to configure the layout somewhere else?
I added basic keymap loading, it should properly extract/import keymap files from the host system.
It's not documented and I'm considering adding a selector script.
Good afternoon.
I installed gentoo with FDE using Yubikey GPG, and generated the initramfs without problems, but at system startup time, it gives me a message that says:
gpg: error running /usr/libexec/keyboxd: probably not installed
Also when inspecting the generated initramfs I realized that the cryp_key.gpg file has not been added even though I have added it as a dependency in the config.toml.
key_file = "/boot/crypt_key.luks.gpg"
Well in the end I was able to correct it by manually adding the keyboxd in usr/libexec/ and the
crypt_key.luks.gpg in boot/
Would there be a way for these files to be added when generating the initramfs?
Let's suppose there is a fully encrypted drive without partitions. I can only find uuid and partuuid options for cryptsetup. However, there is no uuid of /dev/sda, for example. Is it possible to specify it somehow?
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.