Hi roble,
roble <ro...@sendhz.com> writes: > Hello! I was curious about why there are 3 password prompts to get to my > desktop environment in Guix System. > > 1. ??? This is password for grub to decrypt LUKS. This is needed for two things: 1. /boot with the grub configuration 2. /gnu/store with the background image, linux kernel and initrd Since only those folders are necessary you can opt into having those folders unencrypted and at that point grub won't need to unlock LUKS. There is not a built in functionality to get rid of the need for getting /gnu/store. What would need to be done is a custom bootloader that would copy the needed files to unencrypted partition. I am using such bootloader. > 2. LUKS decryption This is the same decryption as in the first case, but now for the initrd. Grub has no way of giving initrd information about the decryption keys out of the box. You can set up custom initrdfs with your decryption key, this is documented in the manual. This step can then be skipped as the key is taken out of a file on the encrypted disk. > 3. GDM session Yes, that is normal user login. You can of course set up auto login. > > - What's the 1st password for? The prompt says "Enter passphrase for > hd0,gpt2". > - How do I retry entering my password if I mistype it the first time? It's probably easier to just reboot. But if you really insisted (too lazy to actually try this out), it should be something like 1. cryptomount command to mount the disk, ie. `cryptomount (hd0,gpt2)` 2. set prefix to /boot/grub - assuming you have that on encrypted drive? If not, skip this step, prefix should already be correctly set. Something like `set prefix=(crypto0)/boot/grub` 3. insmod normal 4. normal Another option would be to patch grub with this https://cgit.git.savannah.gnu.org/cgit/grub.git/commit/?id=386b59ddb42fa3f86ddfe557113b25c8fa16f88c, I think it is not yet included in official release. > Currently, I get thrown into a recovery shell and don't know what to do. > - Is there a way to disable this first extra password prompt? Rutherther
