This commit removes a predefined TCP port (8080) from the allowed list in the networking firewall. This choice will increase the security features by avoiding any unnecessary open ports in the firewall configuration.
The import statement for the atticd.nix file has been commented out in the default.nix file under the sgx-nixos system. This reflects changes in dependencies or system configurations.
This commit allows TCP traffic on port 8080 and permits ICMP echo requests for ping command in SGX-NixOS. Moreover, the necessary code adjustments have been made in the default.nix file.
This commit includes the atticd service to the sgx-nixos system. The `atticd.nix` file has been added with default configuration and the attic service has been included in imports in `default.nix`. Modifications were made in `flake.nix` and `flake.lock` to integrate attic dependencies.
This commit moves the kernel package version override from the base nixos service to specific system configurations. Now, the latest linux packages will be used only in the system configurations where the override has been explicitly added. This approach gives us more flexibility to handle different kernel package versions for different systems.
An extra comma is added to the pccs_url in the sgx_default_qcnl.conf file to correct a possible syntax error. This fix ensures the correct parsing of the JSON object.
Harald Hoyer