wurzel/fruitbasket
9
1
Fork 0
Code Issues 5 Pull requests Packages Projects Releases Wiki Activity

initrd: fix network

Browse source
This commit is contained in:
Rouven Seifert 2024-01-29 16:23:56 +01:00
parent ccd6290fb7
commit b8c31b4e4a
Signed by: rouven.seifert
GPG key ID: B95E8FE6B11C4D09
2 changed files with 18 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
hosts/quitte/network.nix
View file

@ -43,7 +43,7 @@ in
enable = true; enable = true;
# Interfaces on the machine # Interfaces on the machine
networks."10-ether-bond" = { networks."10-wired-default" = {
matchConfig.Name = "ens18"; matchConfig.Name = "ens18";
address = [ "141.30.30.169/25" ]; address = [ "141.30.30.169/25" ];

25
modules/initrd-ssh.nix
View file

@ -3,16 +3,25 @@
# Generate another SSH host key for the machine: # Generate another SSH host key for the machine:
# $ ssh-keygen -t ed25519 -N "" -f /etc/ssh/ssh_host_ed25519_key_initrd -C HOSTNAME-initrd # $ ssh-keygen -t ed25519 -N "" -f /etc/ssh/ssh_host_ed25519_key_initrd -C HOSTNAME-initrd
# Add the public key to your known_hosts and create an ssh config entry. # Add the public key to your known_hosts and create an ssh config entry.
{ ... }: { config, ... }:
{ {
boot.initrd.network = { boot.initrd = {
enable = true; systemd = {
ssh = {
enable = true; enable = true;
port = 222; network = {
shell = "/bin/cryptsetup-askpass"; enable = true;
hostKeys = [ "/etc/ssh/ssh_host_ed25519_key_initrd" ]; networks."10-wired-default" = config.systemd.network.networks."10-wired-default";
# authorizedKeys option inherits root's authorizedKeys.keys, but not keyFiles };
users.root.shell = "/bin/cryptsetup-askpass";
};
network = {
enable = true;
ssh = {
enable = true;
port = 222;
hostKeys = [ "/etc/ssh/ssh_host_ed25519_key_initrd" ];
# authorizedKeys option inherits root's authorizedKeys.keys, but not keyFiles
};
}; };
}; };
} }