mtworx: trying tpm2

This commit is contained in:
Motiejus Jakštys 2024-07-16 05:25:09 +03:00
parent ca6713dd10
commit 3ace354089

View File

@ -17,12 +17,16 @@ in {
kernelModules = ["kvm-intel"]; kernelModules = ["kvm-intel"];
loader.systemd-boot.enable = true; loader.systemd-boot.enable = true;
initrd = { initrd = {
availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid"]; availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid" "tpm_tis"];
systemd.enableTpm2 = true; systemd = {
enableTpm2 = true;
emergencyAccess = true;
};
luks.devices = { luks.devices = {
luksroot = { luksroot = {
device = "${nvme}-part3"; device = "${nvme}-part3";
allowDiscards = true; allowDiscards = true;
crypttabExtraOpts = ["tpm2-device=auto"];
}; };
}; };
}; };