kylekrein/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

final luks fix

Browse source
This commit is contained in:
Aleksandr Lebedev 2025-09-26 21:19:19 +02:00
parent cbf40cf1b3
commit 6e84bda08f
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
modules/nixos/presets/disko/impermanenceBtrfsLuks/default.nix
View file

@ -62,12 +62,13 @@ in {
]; ];
# https://0pointer.net/blog/unlocking-luks2-volumes-with-tpm2-fido2-pkcs11-security-hardware-on-systemd-248.html # https://0pointer.net/blog/unlocking-luks2-volumes-with-tpm2-fido2-pkcs11-security-hardware-on-systemd-248.html
settings = { settings = {
keyFile = "/tmp/secret.key"; allowDiscards = true;
crypttabExtraOpts = [ crypttabExtraOpts = [
"fido2-device=auto" "fido2-device=auto"
"token-timeout=10" "token-timeout=10"
]; ];
}; };
passwordFile = "/tmp/secret.key";
content = { content = {
type = "btrfs"; type = "btrfs";
extraArgs = ["-L" "nixos" "-f"]; extraArgs = ["-L" "nixos" "-f"];