Skip to content
/ stage1-tpm-tailscale Public

Demo of using systemd stage 1 to unlock drives with a TPM and Tailscale

49 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ElvishJerricco/stage1-tpm-tailscale

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
boot.nix
boot.nix
 
 
filesystems.nix
filesystems.nix
 
 
initrd-tailscale.nix
initrd-tailscale.nix
 
 

Repository files navigation

This code is not exactly good. It's a bit of a mess that's thrown together to make this work. It could be very much improved.

block-beta
  columns 5
  block:pool:5
    columns 3
    space:1
    t(["ZFS pool"])
    space:1
    r["Root Dataset"]
    rvol["Root Key"]
    svol["SSH / Tailscale Keys"]
  end
  space:5
  rkey["Decrypted Root Key"]
  space
  TPM
  space
  skey["Decrypted SSH / TS"]
  rvol --> rkey
  rkey --"Unlocks"--> r
  svol --> skey
  TPM --> skey
  TPM --> rkey
  space:5
  Passphrase
  space
  sshd
  Passphrase --> rkey
  sshd --"User enters"--> Passphrase
  skey --> sshd
Loading

About

Demo of using systemd stage 1 to unlock drives with a TPM and Tailscale

Resources

Readme
Activity

Stars

49 stars

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages