On 05/11/2021 15:13, Ulf Volmer wrote:
On 05.11.21 10:57, lejeczek via users wrote:
I'm trying to tell systemd to unlock at boot root partition so I follow general notes/howtos but, after a reboot, when I think all is good to luks auto-unlock OS hangs at such re/boot. I wonder if any of you fellow Fedorians have such systemd-root-luks-unlock work? I'm on F35.
From my notes, hope this helps:
systemd-cryptenroll --tpm2-device=auto /dev/$DEVICE
vim /etc/crypttab luks-$UUID UUID=$UUID - tpm2-device=auto,discard
# bug dracut # -> https://bugzilla.redhat.com/show_bug.cgi?id=1976462
cat > /etc/dracut.conf.d/tss2.conf <<EOF
install_optional_items+=" /usr/lib64/libtss2* /usr/lib64/libfido2.so.* "
EOF
dracut -f
best regards Ulf
Notes worth a bottle of best Polish wódka, many! thanks. L