alex/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

secure boot

Browse Source
This commit is contained in:
Alex Mickelson
2025-09-20 17:16:00 -06:00
parent 1119d12600
commit 134cd2bd17
1 changed files with 5 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
nix/home-server.nix
View File

@@ -149,10 +149,9 @@
swtpm.enable = true;
ovmf = {
enable = true;
# packages = [(pkgs.OVMF.override {
# secureBoot = true;
# tpmSupport = true;
# }).fd];
packages = [
(pkgs.OVMF.override { secureBoot = true; tpmSupport = true; }).fd
];
};
};
};
@@ -164,18 +163,8 @@
};
};
# not working yet, in theory simplifies xml for vm
# environment.etc = {
# "ovmf/edk2-x86_64-secure-code.fd" = {
# source = config.virtualisation.libvirtd.qemu.package + "/share/qemu/edk2-x86_64-secure-code.fd";
# };
# "ovmf/edk2-i386-vars.fd" = {
# source = config.virtualisation.libvirtd.qemu.package + "/share/qemu/edk2-i386-vars.fd";
# };
# };
environment.etc."qemu/edk2-x86_64-secure-code.fd".source = "${pkgs.OVMF.fd}/FV/OVMF_CODE.secboot.fd";
environment.etc."qemu/edk2-i386-vars.fd".source = "${pkgs.OVMF.fd}/FV/OVMF_VARS.fd";
# environment.etc."qemu/edk2-x86_64-secure-code.fd".source = "${pkgs.OVMF.fd}/FV/OVMF_CODE.secboot.fd";
# environment.etc."qemu/edk2-i386-vars.fd".source = "${pkgs.OVMF.fd}/FV/OVMF_VARS.fd";
powerManagement.powertop.enable = true;
powerManagement.enable = true;