From 1152e5aefecc5eb638f52725895ff39e996af747 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= <motiejus@jakstys.lt>
Date: Sun, 28 Jul 2024 20:40:53 +0300
Subject: [PATCH] systemd-cryptsetup: skip tpm2-device for now

doesn't seem to work
---
 hosts/fwminex/configuration.nix | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/hosts/fwminex/configuration.nix b/hosts/fwminex/configuration.nix
index cc8da6b..e3b3028 100644
--- a/hosts/fwminex/configuration.nix
+++ b/hosts/fwminex/configuration.nix
@@ -15,17 +15,17 @@ in {
     kernelModules = ["kvm-intel"];
     loader.systemd-boot.enable = true;
     initrd = {
-      kernelModules = ["usb_storage" "tpm_tis"];
-      availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid"];
+      kernelModules = ["usb_storage"];
+      availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid" "tpm_tis"];
       systemd.enableTpm2 = true;
       luks.devices = {
         luksroot = {
           device = "${nvme}-part3";
           allowDiscards = true;
-          crypttabExtraOpts = ["tpm2-device=auto"];
-          #keyFileOffset = 9728;
-          #keyFileSize = 512;
-          #keyFile = "/dev/sda";
+          #crypttabExtraOpts = ["tpm2-device=auto"];
+          keyFileOffset = 9728;
+          keyFileSize = 512;
+          keyFile = "/dev/sda";
         };
       };
     };