In systems/x86_64-linux/x1/default.nix, 'docker' has been added to user.extraGroups. This allows the current user to manage Docker without needing root access.
This commit introduces virtualization configurations for docker and libvirtd in the x86_64-linux system. It also sets the podman.dockerCompat to false to avoid compatibility issues.
This commit updates the hardware configuration for SGX systems. We have configured the available kernel modules list to include TPM-related modules. Also, unnecessary TPM2 security settings have been removed to clean up the configuration file.
The commit turns on the TPM2 security feature and its associated Access Broker and Resource Manager daemon (abrmd) in the hardware configuration for the x86_64-linux SGX system. This action, represented by changing the respective entries from false to true, enhances the security of this system configuration.
Harald Hoyer