Skip to content

Commit

Permalink
I am NOT! A MORON!
Browse files Browse the repository at this point in the history 
YES YOU ARE! YOU ARE A MORON THEY BUILT TO MAKE ME AN IDIOT!
  • Loading branch information
@oomfiee
oomfiee committed Nov 12, 2024
1 parent f403304 commit 4723b80
Show file tree
Hide file tree
Showing 9 changed files with 234 additions and 77 deletions.
2 changes: 1 addition & 1 deletion Modules/Home/Users/oomfie/users.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
isNormalUser = true;
initialPassword = "nixos";
description = userSettings.username;
extraGroups = [ "networkmanager" "wheel" "tss" "scanner" "lp" "audio" "docker" ];
extraGroups = [ "networkmanager" "wheel" "scanner" "lp" "audio" "docker" ];
shell = pkgs.${userSettings.sh};
};
}
2 changes: 1 addition & 1 deletion Modules/NixOS/Core/Bootloader/default.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,6 @@
{

imports = [
#( ./. +("/"+bootloader)+".nix")
( ./. +("/"+bootloader)+".nix")
];
}
20 changes: 10 additions & 10 deletions Modules/NixOS/Core/Bootloader/systemd-boot.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,18 +3,18 @@

boot = {
loader = {
systemd-boot.enable = true;
systemd-boot.enable = lib.mkForce false;
efi.canTouchEfiVariables = true;
systemd-boot.configurationLimit = 10;
};
# lanzaboote = {
# enable = true;
# pkiBundle = "/etc/secureboot";
# };
# bootspec.enable = true;
# initrd.systemd = {
# enable = true;
# enableTpm2 = true;
# };
lanzaboote = {
enable = true;
pkiBundle = "/etc/secureboot";
};
bootspec.enable = true;
initrd.systemd = {
enable = true;
tpm2.enable = true;
};
};
}
2 changes: 1 addition & 1 deletion Modules/NixOS/Hardware/default.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,9 +3,9 @@
imports = [
./keyboard.nix # Keyboard layouts
./printing.nix # Print drivers
#./drive.nix # HDD & SDD drives
./firmware.nix # Firmware support
#./rtw-drivers.nix
./tpm.nix
( ./. +("/"+systemSettings.swap)+".nix")
];
}
19 changes: 0 additions & 19 deletions Modules/NixOS/Hardware/drive.nix
View file

This file was deleted.

9 changes: 9 additions & 0 deletions Modules/NixOS/Hardware/tpm.nix
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
{ config, pkgs, userSettings,... }:
{

# enable TPM
security.tpm2.enable = true;
security.tpm2.pkcs11.enable = true; # expose /run/current-system/sw/lib/libtpm2_pkcs11.so
security.tpm2.tctiEnvironment.enable = true; # TPM2TOOLS_TCTI and TPM2_PKCS11_TCTI env variables
users.users.${userSettings.username}.extraGroups = [ "tss" ]; # tss group has access to TPM devices
}
Loading

0 comments on commit 4723b80

Please sign in to comment.