GNU bug report logs - #56669
enhancement: Link guix system and guix home

Previous Next

Package: guix;

Reported by: guix-bug-va9nk6 <at> rdmp.org

Date: Wed, 20 Jul 2022 15:37:02 UTC

Severity: normal

Full log

View this message in rfc822 format

From: Andrew Tropin <andrew <at> trop.in>
To: guix-bug-va9nk6 <at> rdmp.org, 56669 <at> debbugs.gnu.org
Cc: Tissevert <tissevert+guix <at> marvid.fr>
Subject: bug#56669: enhancement: Link guix system and guix home
Date: Thu, 21 Jul 2022 20:13:04 +0300

[Message part 1 (text/plain, inline)]
On 2022-07-20 20:57, Andrew Tropin wrote:

> On 2022-07-20 11:47, Dale Mellor wrote:
>
>> I would like to be able to create a rescue disk for my system in which
>> the admin user's home directory contains a copy of an encrypted key,
>> for manually unlocking encrypted disk drives.
>>
>> Following a short discussion in IRC, it appears the best route to
>> achieve this would be to link *guix system* and *guix home* together,
>> so that the system configuration file can specify
>>
>> (user-account
>>    ...
>>    (configuration (local-file "my-home-config.scm")))
>>
>> for example (it should be possible to use either (home-configuration)
>> or a file-like object here).
>>
>> Hopefully this is an easy thing to accomplish, but I don't know...
>>
>
> Hi Dale,
>
> it's not easy, but doable.
>
> This topic popups from time to time, but this feature is not implemented
> yet.
>
> https://yhetil.org/guix-devel/20220706112011.77c71a94 <at> marvid.fr/
>
> I have spare time tomorrow and can try to implement it, however Idk how
> much time will it take and if I don't finish tomorrow, there is no
> guarantee that I'll finish it anytime soon.

I built home environment baked in operating system and sucessfully
deployed it with guix deploy.  I face some issues with the similiar
setup on livecd, but I think I will figure out it soon and will publish
results in a few days.

The source code is here:
https://git.sr.ht/~abcdw/rde/commit/c5b4097ab99309ace23e40d957e9fa1f938f97e9

It's drafty and will be rewritten, also there are a few local commits
that I haven't sent to guix yet, but it should work without them if
elogind is enabled.

The usage example:

[config.scm (application/octet-stream, inline)]
[Message part 3 (text/plain, inline)]
-- 
Best regards,
Andrew Tropin

[signature.asc (application/pgp-signature, inline)]
This bug report was last modified 2 years and 131 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.