On 05/11/2021 15:13, Ulf Volmer wrote:
On 05.11.21 10:57, lejeczek via users wrote:
> I'm trying to tell systemd to unlock at boot root
> partition so I follow general notes/howtos but, after a
> reboot, when I think all is good to luks auto-unlock OS
> hangs at such re/boot.
> I wonder if any of you fellow Fedorians have such
> systemd-root-luks-unlock work? I'm on F35.
From my notes, hope this helps:
systemd-cryptenroll --tpm2-device=auto /dev/$DEVICE
vim /etc/crypttab
luks-$UUID UUID=$UUID - tpm2-device=auto,discard
# bug dracut
# ->
https://bugzilla.redhat.com/show_bug.cgi?id=1976462
cat > /etc/dracut.conf.d/tss2.conf <<EOF
install_optional_items+=" /usr/lib64/libtss2*
/usr/lib64/libfido2.so.* "
EOF
dracut -f
best regards
Ulf
Notes worth a bottle of best Polish wódka, many! thanks.
L