artemist/nixos-config
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

FDE on Mistmane

Browse source
This commit is contained in:
Artemis Tosini 2021-10-12 20:48:36 +00:00
parent e5b80278c0
commit 0f1ea25d57
Signed by: artemist
GPG key ID: ADFFE553DCBB831E
3 changed files with 16 additions and 20 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
system/mistmane/boot-config.nix
View file

@ -4,9 +4,16 @@
boot = { boot = {
kernel.sysctl."vm.swappiness" = 5; kernel.sysctl."vm.swappiness" = 5;
kernelPackages = pkgs.linuxPackages_pinebookpro_lts; kernelPackages = pkgs.linuxPackages_pinebookpro_lts;
kernelParams = [ "console=tty1" ];
cleanTmpDir = true; cleanTmpDir = true;
loader.grub.enable = false; loader.grub.enable = false;
loader.generic-extlinux-compatible.enable = true; loader.generic-extlinux-compatible.enable = true;
initrd.luks.devices."${config.networking.hostName}" = {
name = config.networking.hostName;
device = "/dev/disk/by-uuid/74b7cded-e9f8-432f-b694-5bea09635168";
preLVM = true;
allowDiscards = true;
};
}; };
fileSystems = { fileSystems = {

11
system/mistmane/default.nix
View file

@ -11,12 +11,6 @@
networking.hostName = "mistmane"; networking.hostName = "mistmane";
security.pam.enableEcryptfs = true;
environment.systemPackages = with pkgs; [
ecryptfs
ecryptfs-helper
];
home-manager.users.artemis = { home-manager.users.artemis = {
programs.foot = { programs.foot = {
enable = true; enable = true;
@ -55,11 +49,6 @@
extraConfig = lib.mkForce "HandlePowerKey=lock"; extraConfig = lib.mkForce "HandlePowerKey=lock";
}; };
swapDevices = [{
device = "/dev/disk/by-partuuid/3f4fb4d3-1e13-f64a-a435-8f866833c2b1";
randomEncryption = true;
}];
# rockchip/dptx.bin isn't in the initrd. Instead of fix nixpkgs let's do something incredibly cursed # rockchip/dptx.bin isn't in the initrd. Instead of fix nixpkgs let's do something incredibly cursed
boot.extraModulePackages = [ (pkgs.callPackage ../../externals/packages/dptx-dummy { kernel = config.boot.kernelPackages.kernel; }) ]; boot.extraModulePackages = [ (pkgs.callPackage ../../externals/packages/dptx-dummy { kernel = config.boot.kernelPackages.kernel; }) ];
boot.initrd.availableKernelModules = [ "dptx-dummy" ]; boot.initrd.availableKernelModules = [ "dptx-dummy" ];

18
system/mistmane/hardware-configuration.nix
View file

@ -5,28 +5,28 @@
{ {
imports = imports =
[ [ (modulesPath + "/installer/scan/not-detected.nix")
(modulesPath + "/installer/scan/not-detected.nix")
]; ];
boot.initrd.availableKernelModules = [ "nvme" "usbhid" "usb_storage" ]; boot.initrd.availableKernelModules = [ "usbhid" ];
boot.initrd.kernelModules = [ ]; boot.initrd.kernelModules = [ "dm-snapshot" ];
boot.kernelModules = [ ]; boot.kernelModules = [ ];
boot.extraModulePackages = [ ]; boot.extraModulePackages = [ ];
fileSystems."/" = fileSystems."/" =
{ { device = "/dev/disk/by-uuid/8b204d52-62c1-48e9-b487-e7138f49903a";
device = "/dev/disk/by-uuid/ee6d20e7-03ec-462b-a28a-3e970acc5f0a";
fsType = "ext4"; fsType = "ext4";
}; };
fileSystems."/boot" = fileSystems."/boot" =
{ { device = "/dev/disk/by-uuid/375e4660-be08-40ba-8961-0a9cc3a96187";
device = "/dev/disk/by-uuid/ef0ee32a-8ee0-4c4a-af21-d033ac2bb774";
fsType = "ext4"; fsType = "ext4";
}; };
swapDevices = [ ]; swapDevices =
[
{ device = "/dev/disk/by-uuid/1114039c-3329-4551-a56d-fccde77a31a7"; }
];
powerManagement.cpuFreqGovernor = lib.mkDefault "ondemand"; powerManagement.cpuFreqGovernor = lib.mkDefault "ondemand";
} }