initrd-tinysshd: what installs authorized_keys?

[lachesis]

I am trying to get remote-unlocking working with my encrypted root. I ran the commands given in the README Example section (except the debugging tools one, as I don't have mc installed).

When I inspect the generated initramfs, my authorized_keys file is nowhere to be found. When I try to log in to the tinyssh server, I get an error because my key is not authorized. I cannot find any references to copying the authorized_keys file anywhere in this repo.

[Andrei-Pozolotin]

try https://github.com/random-archer/mkinitcpio-systemd-tool/blob/master/README.md

which ssh user keys are used by initramfs sshd server(s)?

they come from host /root/.ssh/authorized_keys

[lachesis]

Interesting, that did not seem to be true on my system. That file exists but a 0-byte file was written to the initramfs.

[Andrei-Pozolotin]

try to confirm if this works https://github.com/random-archer/mkinitcpio-systemd-tool/blob/master/src/initrd-shell.service

# include ssh credentials
InitrdPath=/root/.ssh/authorized_keys source=/root/.ssh/authorized_keys mode=600

[lachesis]

Oho I didn't see that unit at all. That explains where it's being done. That wasn't included in my system for some reason. I just got everything working so I'm a bit hesitant to dig into it right now. I will troubleshoot further this week and get back to you. Thanks!

[Andrei-Pozolotin]

ok, cool :-)