harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
20 commits 2 branches 0 tags 9.2 MiB
Commit graph

20 commits

This branch
This branch
All branches
Author SHA1 Message Date
Harald Hoyer 86e5539c2f feat: Add 'docker' to user.extraGroups 
In systems/x86_64-linux/x1/default.nix, 'docker' has been added to user.extraGroups. This allows the current user to manage Docker without needing root access.
 2024-04-11 10:50:52 +02:00
Harald Hoyer c0991dbdd1 feat: add virtualization config to x86_64-linux system 
This commit introduces virtualization configurations for docker and libvirtd in the x86_64-linux system. It also sets the podman.dockerCompat to false to avoid compatibility issues.
 2024-04-11 10:48:50 +02:00
Harald Hoyer f9d045b883 Update SGX hardware configuration 
This commit updates the hardware configuration for SGX systems. We have configured the available kernel modules list to include TPM-related modules. Also, unnecessary TPM2 security settings have been removed to clean up the configuration file.
 2024-04-10 22:18:56 +02:00
Harald Hoyer e9034a7711 sgx: Disable Docker and enable Podman Docker compatibility 
Docker has been disabled, with the Podman Docker compatibility feature being enabled instead to ensure system virtualization.
 2024-04-10 22:13:19 +02:00
Harald Hoyer d5287f242e Enable TPM2 security in x86_64-linux SGX hardware configuration 
The commit turns on the TPM2 security feature and its associated Access Broker and Resource Manager daemon (abrmd) in the hardware configuration for the x86_64-linux SGX system. This action, represented by changing the respective entries from false to true, enhances the security of this system configuration.
 2024-04-10 22:10:34 +02:00
Harald Hoyer 4066b0cd80 sgx: unsgx and prevent sleep on lid close 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-04-10 21:46:05 +02:00
Harald Hoyer 7d0cf0ac60 sgx: set disks idle 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-04-10 21:45:22 +02:00
Harald Hoyer 969d86d932 flake update 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-04-10 21:45:02 +02:00
Harald Hoyer 30e7082344 sgx 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-04-10 17:43:39 +02:00
Harald Hoyer bcbd179bf2 nix: set TMPDIR to /var/tmp 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-28 10:30:42 +01:00
Harald Hoyer 21e1464534 remove ~/.cargo/bin path 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-26 09:51:09 +01:00
Harald Hoyer 30754f5211 different fish exec workaround 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-25 11:40:05 +01:00
Harald Hoyer d94278f8ac flake update 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-25 11:39:54 +01:00
Harald Hoyer 1ebef44098 nix: turn off relaxed sandbox mode 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-22 22:30:14 +01:00
Harald Hoyer af17fbbfe6 mx: add timer for blog rendering 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-21 23:40:25 +01:00
Harald Hoyer 946f44ee51 sgx: don't use pccs 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-21 21:23:02 +01:00
Harald Hoyer ad2fc117c7 fish: add missing exec 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-21 21:17:20 +01:00
Harald Hoyer bfeb26c5e0 sgx-nixos: add podman 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-21 16:52:35 +01:00
Harald Hoyer f8ebc5d553 gitignore result 
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
 2024-03-21 15:24:51 +01:00
Harald Hoyer f4e2368893 A new start 2024-03-21 15:00:36 +01:00