fix(home-server): get clevis finally working with systemd initrd

2025-05-20 22:37:53 +02:00 · 2025-05-20 22:37:53 +02:00 · bd3550ef0e
commit bd3550ef0e
parent f0c6687e4c
1 changed files with 2 additions and 1 deletions
--- a/hosts/home-server/default.nix
+++ b/hosts/home-server/default.nix
@ -145,7 +145,8 @@ in
      authorizedKeys = config.users.users.felschr.openssh.authorizedKeys.keys;
    };
  };
-  boot.initrd.systemd.network.wait-online.anyInterface = true;
+  boot.initrd.systemd.network.networks."10-lan" = config.systemd.network.networks."10-lan";
+  boot.initrd.systemd.users.root.shell = "/bin/systemd-tty-ask-password-agent";
  # allow automated decryption
  # `echo -n '<LUKS passphrase here>' | clevis encrypt tang '{"url": "http://doctr.local:9090"}' > home-server-enc.jwe`
  boot.initrd.clevis.enable = true;