gnupg smartcard on boot for LUKS on sid debian howto ?

tux.tsndcb at free.fr tux.tsndcb at free.fr
Sun May 18 14:56:12 CEST 2014


Hi Peter,

----- Mail original -----
De: "Peter Lebbing" <peter at digitalbrains.com>
À: "tux tsndcb" <tux.tsndcb at free.fr>, gnupg-users at gnupg.org
Envoyé: Dimanche 18 Mai 2014 12:52:52
Objet: Re: gnupg smartcard on boot for LUKS on sid debian howto ?

On 16/05/14 16:06, tux.tsndcb at free.fr wrote:
> I answer my self, after, many many tests done, in fact it isn't
> actually possible to do it under sid debian => root cause bug on
> systemd :

That's a pity it doesn't work on sid. I've been meaning to look into
this since you brought it up, and I finally made some time to do it.
Since I think Sid is a nasty kid who plays much too roughly with my
toys, I used Jessie, and it does work there. Looking at the Debian bug,
I think they'll fix it.

Many thanks for your return. This Week-end I've done new tests, and the tempory solution than I've applied is to install sysvinit-core that remove systemd-sysv and now under sid debian, keyfile is ok on boot to decrypt LUKS FS, but I haven't already test it with smartcard (just with encrypt keyfile with gpg).

Yes this will be probably fix, because it should be on the standard stable Jessie install

What I would really like, by the way, is if you clicked an unopened
encrypted volume in your file manager, and it would prompt for your PIN
through pinentry. But that doesn't work yet. Unlocking the root
filesystem and other filesystems that are unlocked on boot does work.

Actually the problem for me is on boot.

You can check out what I did on
<http://digitalbrains.com/2014/gpgcryptroot>.

I haven't tried it on Wheezy yet (I will), but I think it will work
there as well.

I will test this on Jessie and sid (now it's same than Jessie with sysvinit-core).

I give you my return ASAP about it.

Best Regards



More information about the Gnupg-users mailing list