numbus/numbus-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Removed pcr check for testing purposes

Browse Source
This commit is contained in:
Raphael Numbus
2025-12-07 10:52:39 +01:00
parent f496bf032f
commit 476523cc2f
3 changed files with 5 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
deploy.sh
+2
View File
@@ -568,6 +568,8 @@ EOF
postrun_action() { postrun_action() {
echo "" echo ""
# Add TPM2 boot disk decryption
# Add pcr-check.nix
} }
nixos_update() { nixos_update() {
nix-config/configuration.nix
+3 -6
View File
@@ -7,8 +7,7 @@
inputs.sops-nix.nixosModules.sops inputs.sops-nix.nixosModules.sops
./disks/disko.nix ./disks/disko.nix
./disks/snapraid.nix ./disks/snapraid.nix
./disks/pcr-check.nix # ./disks/pcr-check.nix
./hardware-configuration.nix
]; ];
# Hardware settings # Hardware settings
@@ -37,10 +36,8 @@
boot.loader.efi.canTouchEfiVariables = true; boot.loader.efi.canTouchEfiVariables = true;
# TPM2 PCR check # TPM2 PCR check
systemIdentity.enable = true; # systemIdentity.enable = true;
# On first boot, get the value with: systemd-analyze pcrs 15 --json=short | jq -r ".[0].sha256" # systemIdentity.pcr15 = null;
# and place it here.
systemIdentity.pcr15 = null; # "6214de8c3d861c4b451acc8c4e24294c95d55bcec516bbf15c077ca3bffb6547";
# Timezone # Timezone
time.timeZone = "Europe/Paris"; time.timeZone = "Europe/Paris";
nix-config/disks/pcr-check.nix → nix-config/disks/pcr-check.original
View File