| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
| |
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
| |
$CRYPT_{ROOT,SWAP}_KEYFILE
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Prompt for key when key is unavailable, not when key is available.
- Check ZFS' keystatus property instead of return value to allow
remote unlock.
- Add unlock-zfs command to remote rescue shell.
Closes: https://bugs.gentoo.org/705032
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
By default, any {bad,good,warn}_msg output and external command calls
will now be logged to /tmp/init.log in initramfs. This can be turned
off via gk.log.disabled={1,yes} kernel command-line argument.
This is especially helpful when working with remote servers when you
can access initramfs system through SSH.
In addition, initramfs' log file can be preserved, i.e. copied to
real system just before switch_root call. This can be controlled
via gk.log.keep kernel command-line argument: When just enabled,
initramfs will copy log to $NEWROOT/genkernel-boot.log. Keep in my
that the file path must be accessible for initramfs and by default,
initramfs will only mount / as $NEWROOT and no additional mountpoints.
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
| |
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
| |
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Hide busybox version
- Show genkernel version
- Show running kernel version
- Use emphasis (bold format) in text
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- To enable sshd in initramfs user MUST now set "dosshd" kernel
command-line parameter.
- "gk.sshd.wait" kernel command-line parameter was added to interrupt
boot process for X seconds to allow for remote login (can be used like
an remote rescue shell).
- For remote unlock of LUKS-encrypted root or swap device, user can still
send unencrypted keyfile via SSH like
$ cat ~/root.unencrypted.key | ssh root@<remote-host> -C post root
or user can now just SSH into the remote host and call "unlock-luks"
like
remote rescueshell ~ # unlock-luks root
to get a cryptsetup prompt.
NOTE: When manually unlocking the encrypted LUKS device, user must call
"resume-boot" afterwards to resume booting.
- "--ssh-authorized-keys-file" parameter added which can be used to
specify a different file than default "/etc/dropbear/authorized_keys"
file.
- "--ssh-host-keys" parameter added to control if in initramfs embedded
sshd should create its own pair of hosts keys (which will be stored in
"/etc/dropbear for re-use, default), use host keys from host system or
should generate host keys at runtime on each boot.
- "ip" kernel command-line parameter will now default to DHCP usage but
does also support addr/CIDR notation to specify a static address.
- "gk.net.iface" kernel command-line parameter was added to use a
different interface than "eth0". You can either use an interface name
or use a MAC address.
- "gk.net.gw" kernel command-line parameter was added which will allow
user to set specific gateway when DHCP isn't used.
- "gk.net.routes" kernel command-line parameter was added which will allow
user to set additional routes when DHCP isn't used.
Please read manpage for additional parameters and more details.
Signed-off-by: Thomas Deutschmann <whissi@gentoo.org>
|
|
|
|
|
|
|
|
|
| |
* Kill the cryptsetup process started by init, otherwise it will hang
forever.
* Make init check for an already-opened device before prompting the
user, otherwise we have to wait for the prompt_user calls to time out.
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
|
|
| |
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
|
|
| |
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
|
|
| |
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
|
|
| |
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
|
|
| |
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|
|
(cherry picked from commit 1886bbafecca1c225646e8d297bbb522caedfd9b)
Closes: https://bugs.gentoo.org/show_bug.cgi?id=440126
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
|