systemd-cryptsetup: skip tpm2-device for now

doesn't seem to work
This commit is contained in:
Motiejus Jakštys 2024-07-28 20:40:53 +03:00
parent 601cabebf2
commit 1152e5aefe

View File

@ -15,17 +15,17 @@ in {
kernelModules = ["kvm-intel"];
loader.systemd-boot.enable = true;
initrd = {
kernelModules = ["usb_storage" "tpm_tis"];
availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid"];
kernelModules = ["usb_storage"];
availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid" "tpm_tis"];
systemd.enableTpm2 = true;
luks.devices = {
luksroot = {
device = "${nvme}-part3";
allowDiscards = true;
crypttabExtraOpts = ["tpm2-device=auto"];
#keyFileOffset = 9728;
#keyFileSize = 512;
#keyFile = "/dev/sda";
#crypttabExtraOpts = ["tpm2-device=auto"];
keyFileOffset = 9728;
keyFileSize = 512;
keyFile = "/dev/sda";
};
};
};