kylekrein/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

final luks fix

Browse source
This commit is contained in:
Aleksandr Lebedev 2025-09-26 21:19:19 +02:00
parent cbf40cf1b3
commit 6e84bda08f
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
modules/nixos/presets/disko/impermanenceBtrfsLuks/default.nix
View file

@ -62,12 +62,13 @@ in {
];
# https://0pointer.net/blog/unlocking-luks2-volumes-with-tpm2-fido2-pkcs11-security-hardware-on-systemd-248.html
settings = {
keyFile = "/tmp/secret.key";
allowDiscards = true;
crypttabExtraOpts = [
"fido2-device=auto"
"token-timeout=10"
];
};
passwordFile = "/tmp/secret.key";
content = {
type = "btrfs";
extraArgs = ["-L" "nixos" "-f"];