systemd-cryptsetup: skip tpm2-device for now

doesn't seem to work
This commit is contained in:
Motiejus Jakštys 2024-07-28 20:40:53 +03:00
parent 601cabebf2
commit 1152e5aefe

View File

@ -15,17 +15,17 @@ in {
kernelModules = ["kvm-intel"]; kernelModules = ["kvm-intel"];
loader.systemd-boot.enable = true; loader.systemd-boot.enable = true;
initrd = { initrd = {
kernelModules = ["usb_storage" "tpm_tis"]; kernelModules = ["usb_storage"];
availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid"]; availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid" "tpm_tis"];
systemd.enableTpm2 = true; systemd.enableTpm2 = true;
luks.devices = { luks.devices = {
luksroot = { luksroot = {
device = "${nvme}-part3"; device = "${nvme}-part3";
allowDiscards = true; allowDiscards = true;
crypttabExtraOpts = ["tpm2-device=auto"]; #crypttabExtraOpts = ["tpm2-device=auto"];
#keyFileOffset = 9728; keyFileOffset = 9728;
#keyFileSize = 512; keyFileSize = 512;
#keyFile = "/dev/sda"; keyFile = "/dev/sda";
}; };
}; };
}; };