Somehow, setting the acpi kernel command-line parameter to acpi=off stops mender-luks-password-agent from working.
This is my implementation of a systemd password agent. This is needed for unattended decryption/booting (e.g. w/ a TPM module).
When acpi=off, the boot prompt doesn't pause... it immediately fails.
One wrinkle when I discovered this is I was messing around w/ stuff that would have locked the TPM during boot. So I wouldn't expect it to decrypt automatically. There should be a fallback where the system pauses for me type the password... but that doesn't happen. mender-luks-password-agent may be returning an empty string or something? It's not giving me time.
If the TPM was still good, maybe this would continue to work.... but there would be no fail-safe.
Somehow, setting the
acpikernel command-line parameter toacpi=offstops mender-luks-password-agent from working.This is my implementation of a systemd password agent. This is needed for unattended decryption/booting (e.g. w/ a TPM module).
When
acpi=off, the boot prompt doesn't pause... it immediately fails.One wrinkle when I discovered this is I was messing around w/ stuff that would have locked the TPM during boot. So I wouldn't expect it to decrypt automatically. There should be a fallback where the system pauses for me type the password... but that doesn't happen.
mender-luks-password-agentmay be returning an empty string or something? It's not giving me time.If the TPM was still good, maybe this would continue to work.... but there would be no fail-safe.
I'm not sure how/why these are related?