payas/nixos
Archived
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

hermes: Boot with systemd initrd

Browse source 
This was an unfinished attempt at passwordless disk decryption. But for
now, it does not work. I'll need some decryption device/USB stick for
it, which I'm not currently willing to setup.

Anyway, will figure it out later. Got other prioriries now.
This commit is contained in:
Payas Relekar 2023-12-26 19:25:24 +05:30
parent 2207ab80eb
commit 5244ad78d7
2 changed files with 14 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
hosts/hermes/hardware.nix
View file

@ -15,15 +15,20 @@
}; };
supportedFilesystems = [ "ntfs" ]; supportedFilesystems = [ "ntfs" ];
# Setup keyfile initrd = {
initrd.secrets = { systemd = {
"/crypto_keyfile.bin" = null; enable = true;
};
# Setup keyfile
secrets = {
"/crypto_keyfile.bin" = null;
};
# Enable swap on luks
luks.devices."luks-8271922a-e889-4f04-8e87-07f0bcde890d".device = "/dev/disk/by-uuid/8271922a-e889-4f04-8e87-07f0bcde890d";
luks.devices."luks-8271922a-e889-4f04-8e87-07f0bcde890d".keyFile = "/crypto_keyfile.bin";
}; };
# Enable swap on luks
initrd.luks.devices."luks-8271922a-e889-4f04-8e87-07f0bcde890d".device = "/dev/disk/by-uuid/8271922a-e889-4f04-8e87-07f0bcde890d";
initrd.luks.devices."luks-8271922a-e889-4f04-8e87-07f0bcde890d".keyFile = "/crypto_keyfile.bin";
kernelPackages = pkgs.linuxPackages_latest; kernelPackages = pkgs.linuxPackages_latest;
}; };

1
hosts/hermes/home.nix
View file

@ -34,6 +34,7 @@
spectacle spectacle
gwenview gwenview
kate kate
partition-manager
libreoffice # thoroughly average grown up stuff libreoffice # thoroughly average grown up stuff