motiejus/config
1
Fork 0
Code Packages Releases Activity

adding recovery key

Browse Source
This commit is contained in:
Motiejus Jakštys 2024-07-23 22:15:02 +03:00
parent 2b18b37145
commit b4eee91f31
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
hosts/fwminex/configuration.nix
View File

@ -15,16 +15,17 @@ in {
kernelModules = ["kvm-intel"];
loader.systemd-boot.enable = true;
initrd = {
kernelModules = ["usb_storage"];
availableKernelModules = ["xhci_pci" "thunderbolt" "nvme" "usbhid" "tpm_tis"];
systemd = {
enableTpm2 = true;
emergencyAccess = true;
};
systemd.enableTpm2 = true;
luks.devices = {
luksroot = {
device = "${nvme}-part3";
allowDiscards = true;
crypttabExtraOpts = ["tpm2-device=auto"];
#crypttabExtraOpts = ["tpm2-device=auto"]; # WIP
keyFileOffset = 9728;
keyFileSize = 512;
keyFile = "/dev/sda";
};
};
};