!coeAONBrWyDJnYMbMi:nixos.org

NixOS System Operations

611 Members
About system administration for running NixOS systems in production. Declaratively manage your operations. | Room recommendations: #networking:nixos.org166 Servers

Load older messages


SenderMessageTime
18 Apr 2026
@sss:matrix.dark-alexandr.netsss* and it is complicated yes, but due to a long history of data storage01:31:42
@elvishjerricco:matrix.orgElvishJerricco Then yea, just specifying the three boot.initrd.luks.devices.{a,b,c} with keyFile = "/key-file:${otherDrive}"; should work, where otherDrive is anything you'd use as a device like UUID=asdf or /dev/mapper/blah 01:31:59
@sss:matrix.dark-alexandr.netsssprobably i will recreate it in a simple way, someday, maybe....01:32:08
@sss:matrix.dark-alexandr.netsssis here a way to wait for device to appear ?01:32:56
@elvishjerricco:matrix.orgElvishJerriccoIt will do that automatically01:33:10
@sss:matrix.dark-alexandr.netsssnice, thx for info01:33:23
@elvishjerricco:matrix.orgElvishJerriccohappy to help :)01:33:29
@sss:matrix.dark-alexandr.netsssis it possible to pass mount options for fs containing decryption key ?01:40:03
@sss:matrix.dark-alexandr.netsssi have keys on jfs wich is not mounting with defaults for some long time forgotten reason01:40:35
@elvishjerricco:matrix.orgElvishJerriccooh hm, maybe not01:41:03
@elvishjerricco:matrix.orgElvishJerriccouhhh01:41:13
@sss:matrix.dark-alexandr.netssswhich fs today is most apropriate to handle keys on small device (few mb) ?01:41:51
@elvishjerricco:matrix.orgElvishJerricco honestly when the FS is just for storing one key, I question if it should even be an FS; you could just use the partition itself as the key "file" 01:44:12
@sss:matrix.dark-alexandr.netsss* which fs today is most appropriate to handle keys on small device (few mb) ?01:42:56
@sss:matrix.dark-alexandr.netsss probably, but will keyFile understand it without custom script ? 01:46:31
@elvishjerricco:matrix.orgElvishJerriccoyes, at least with systemd initrd I know it will01:46:49
@sss:matrix.dark-alexandr.netssssounds interesting, where can i read about syntax ?01:47:47
@elvishjerricco:matrix.orgElvishJerricco well, basically the whole boot.initrd.luks.devices.<name> thing in NixOS is a frontend for /etc/crypttab, which has a man page 01:48:32
@elvishjerricco:matrix.orgElvishJerriccoer, in systemd initrd01:48:40
@elvishjerricco:matrix.orgElvishJerricco (in scripted initrd boot.initrd.luks.devices.<name> is a frontend for a bunch of scripting) 01:49:02
@sss:matrix.dark-alexandr.netsss so keyFile parameter is key-file from crypttab in case of systemd setup ? 01:52:54
@elvishjerricco:matrix.orgElvishJerriccoyep01:53:10
@sss:matrix.dark-alexandr.netsssunderstood, thx01:53:16
@phobosx:matrix.orgphobos joined the room.06:20:04
@nulani:acra.chatNulani t'Acraya joined the room.09:21:36
@qweru:matrix.orgqweru joined the room.20:15:24
20 Apr 2026
@bivsk:matrix.orgFour changed their display name from bivsk to Four.14:16:37
21 Apr 2026
@sss:matrix.dark-alexandr.netsss ElvishJerricco it seems systemd is able to guess correct mount options for my jfs partitions with a keys (or maybe problem resolved in kernel fs implementation) so now i have working simplified config 11:26:19
@elvishjerricco:matrix.orgElvishJerricco sss: oh, neat. I'm guessing it's util-linux's mount that's doing any magic mount options then, but who knows 14:09:29
22 Apr 2026
@silverhadch07:matrix.orgHadi 🤒 changed their display name from Hadi to Hadi 🤒.18:11:37

There are no newer messages yet.


Back to Room ListRoom Version: 10