| 1 Jun 2023 |
 @elvishjerricco:matrix.org | Lily Foster: What creates /dev/nixos/root? | 00:00:25 |
| @elvishjerricco:matrix.org | That's not a normal path for a LUKS device | 00:00:30 |
| @elvishjerricco:matrix.org | Charles ⚡️: that's... interesting. I have no idea what that means | 00:01:23 |
 Charles ⚡️ | cool lol | 00:01:35 |
| Charles ⚡️ | i'm running a few-days-old nixpkgs so i'll try updating and see if it goes away | 00:01:48 |
| Charles ⚡️ | but this wasn't happening in association with another upgrade or bios change or anything | 00:02:07 |
| Charles ⚡️ | it just kinda started happening | 00:02:10 |
| Charles ⚡️ | same behavior after updating | 00:11:54 |
 @lily:lily.flowers | In reply to @elvishjerricco:matrix.org
That's not a normal path for a LUKS device It's an LVM inside LUKS. Which was maybe not my best idea and I now realize is probably related to why I'm encountering timeouts | 00:23:42 |
| @elvishjerricco:matrix.org | Lily Foster: Oh, no that seems entirely reasonable. I still don't understand why that would lead to timeouts though... | 00:24:38 |
| @lily:lily.flowers | See disko here: https://github.com/lilyinstarlight/foosteros/blob/ab117ba2dd69d77fffc6384c1ace1f3227221490/hosts/bina/disks.nix | 00:24:53 |
| @lily:lily.flowers | For disk layout | 00:24:57 |
| @elvishjerricco:matrix.org | so as for the ISO stuff I wanted to look into this week, turns out we do something really kinda weird? | 02:35:08 |
| @elvishjerricco:matrix.org | We use root= on the cmdline for... /iso, not / | 02:36:23 |
| @elvishjerricco:matrix.org | is that normal for live cd images? | 02:36:37 |
| @elvishjerricco:matrix.org | because I hate it | 02:36:40 |
 @janne.hess:helsinki-systems.de | Since it's likely that somebody has already tried: Does anyone know if there's a systemd-cryptenroll way to use fido2+password? In a way where I need both to unlock? | 09:56:49 |
| @janne.hess:helsinki-systems.de | ah looks like it's not possible: https://github.com/systemd/systemd/issues/21088 | 10:29:02 |
| @lily:lily.flowers | In reply to @elvishjerricco:matrix.org
is that normal for live cd images? That specifically I don't think is normal. We are a tad special there. But doing special things for ISO images is (unfortunately) normal | 10:35:53 |
 Arian | we missed announcing systemd-initrd in the NixOS 23.05 release notes! | 11:55:00 |
| Arian | do we still want to add it? | 11:55:04 |
 @hexa:lossy.network | wow, yeah! | 11:56:08 |
| @elvishjerricco:matrix.org | Arian: my intention is that systemd initrd is still considered experimental in 23.05, and that it will (hopefully) reach stability for 23.11, with a slight possibility of becoming default in 24.05 | 11:57:37 |
| Arian | We could announce it as experimental? :D | 11:57:56 |
| @elvishjerricco:matrix.org | If that warrants an announcement in 23.05, then cool :P | 11:57:57 |
| Arian | I think so | 11:58:02 |
| @elvishjerricco:matrix.org | In reply to @janne.hess:helsinki-systems.de
Since it's likely that somebody has already tried: Does anyone know if there's a systemd-cryptenroll way to use fido2+password? In a way where I need both to unlock? So the only reason it supports a passphrase for the tpm is because it can literally pass the passphrase to the tpm and let it control the security | 12:07:52 |
|  @raphi:tapesoftware.net changed their display name from raphi to raphi (element unread channel fix when). | 13:03:16 |
 lukegb (he/him) | Can you set a PIN on a FIDO2 key you use for systemd-cryptenroll or does it not support that | 14:27:54 |
| lukegb (he/him) | Admittedly that's *for the entire authenticator* and not just that credential but still | 14:29:16 |
