nixcfg

harald/nixcfg

Fork 0

Commit graph

Author	SHA1	Message	Date
Harald Hoyer	43f72bf1ad	feat(security): disable TPM2 support in nixtee1 - Disabled `security.tpm2.enable` and `security.tpm2.abrmd.enable` options. - Ensures TPM2-related services are not active on the system for this configuration.	2025-11-14 07:44:38 +01:00
Harald Hoyer	babf38d817	chore(nix): switch bootloader to GRUB - Disabled Systemd-boot and enabled GRUB as the bootloader with OS probing. - Configured GRUB to use `/dev/vda` as the target installation device.	2025-11-13 16:16:37 +01:00
Harald Hoyer	811457161a	chore(nix): refactor SGX configuration for nixtee1 - Removed SGX-specific settings including `aesmd_dcap`, `sgx_default_qcnl.conf`, and `security.tpm2` configurations. - Updated `system.stateVersion` and switched kernel modules to `kvm-amd`. - Adjusted disk UUIDs and removed unused `/boot` filesystem definition.	2025-11-13 16:01:58 +01:00

Author

SHA1

Message

Date

Harald Hoyer

43f72bf1ad

feat(security): disable TPM2 support in nixtee1

- Disabled `security.tpm2.enable` and `security.tpm2.abrmd.enable` options.
- Ensures TPM2-related services are not active on the system for this configuration.

2025-11-14 07:44:38 +01:00

Harald Hoyer

babf38d817

chore(nix): switch bootloader to GRUB

- Disabled Systemd-boot and enabled GRUB as the bootloader with OS probing.
- Configured GRUB to use `/dev/vda` as the target installation device.

2025-11-13 16:16:37 +01:00

Harald Hoyer

811457161a

chore(nix): refactor SGX configuration for nixtee1

- Removed SGX-specific settings including `aesmd_dcap`, `sgx_default_qcnl.conf`, and `security.tpm2` configurations.
- Updated `system.stateVersion` and switched kernel modules to `kvm-amd`.
- Adjusted disk UUIDs and removed unused `/boot` filesystem definition.

2025-11-13 16:01:58 +01:00

3 commits