harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

feat(security): disable TPM2 support in nixtee1

Browse source 
- Disabled `security.tpm2.enable` and `security.tpm2.abrmd.enable` options.
- Ensures TPM2-related services are not active on the system for this configuration.
This commit is contained in:
Harald Hoyer 2025-11-14 07:44:38 +01:00
parent 5b0cab98d5
commit 43f72bf1ad
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
systems/x86_64-linux/nixtee1/default.nix
View file

@ -13,6 +13,9 @@
boot.loader.grub.device = "/dev/vda"; boot.loader.grub.device = "/dev/vda";
boot.loader.grub.useOSProber = true; boot.loader.grub.useOSProber = true;
security.tpm2.enable = false;
security.tpm2.abrmd.enable = false;
metacfg = { metacfg = {
base.enable = true; base.enable = true;
nix-ld.enable = true; nix-ld.enable = true;