nix
/
System
2
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: Initial attempt at tpm setup

This commit is contained in:
nathan mccarty 2022-07-24 13:52:34 -04:00
parent 186146ba99
commit eb12fb0024
Signed by: thatonelutenist
GPG Key ID: D70DA3DD4D1E9F96
2 changed files with 18 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
machines/levitation/configuration.nix
View File

@ -63,4 +63,20 @@
# Setup home manager # Setup home manager
home-manager.users.nathan = import ./home.nix; home-manager.users.nathan = import ./home.nix;
# TPM setup
security = {
tpm2 = {
enable = true;
};
};
boot = {
initrd = {
kernelModules = [ "tpm_crb" ];
systemd = {
enable = true;
};
};
kernelParams = [ "crypt-pv.luks.options=tpm2-device=auto" ];
};
} }

4
modules/desktop.nix
View File

@ -15,7 +15,7 @@ with lib; {
# Configure grub if configured # Configure grub if configured
}) })
(mkIf nc.setupGrub { (mkIf nc.setupGrub {
## Boot, drivers, and host name # Boot, drivers, and host name
# Use grub # Use grub
boot.loader = { boot.loader = {
grub = { grub = {
@ -32,8 +32,8 @@ with lib; {
canTouchEfiVariables = false; canTouchEfiVariables = false;
}; };
}; };
# Configure audio
}) })
# Configure audio
(mkIf nc.audio { (mkIf nc.audio {
# Disable normal audio subsystem explicitly # Disable normal audio subsystem explicitly
sound.enable = false; sound.enable = false;