SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 22:11:33 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Reinstall north with luks encryption

Browse source
This commit is contained in:
SebastianStork 2024-08-11 22:53:05 +02:00
parent fa4d802536
commit a84721bcf1
2 changed files with 49 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

61
hosts/north/hardware/disko.nix
View file

@ -1,25 +1,60 @@
{
disko.devices.disk.main = {
device = "/dev/nvme0n1";
type = "disk";
content = {
type = "gpt";
partitions = {
ESP = {
type = "EF00";
size = "500M";
disko.devices = {
disk.main = {
type = "disk";
device = "/dev/nvme0n1";
content = {
type = "gpt";
partitions = {
ESP = {
type = "EF00";
size = "512M";
content = {
type = "filesystem";
format = "vfat";
mountpoint = "/boot";
mountOptions = [ "defaults" ];
};
};
luks = {
size = "100%";
content = {
name = "cryptroot";
type = "luks";
settings = {
allowDiscards = true;
bypassWorkqueues = true;
keyFile = "/dev/disk/by-id/usb-SCSI_DISK-0:0";
keyFileSize = 512;
keyFileTimeout = 5;
};
additionalKeyFiles = [ "/tmp/secret.key" ];
content = {
type = "lvm_pv";
vg = "pool";
};
};
};
};
};
};
lvm_vg.pool = {
type = "lvm_vg";
lvs = {
swap = {
size = "20G";
content = {
type = "filesystem";
format = "vfat";
mountpoint = "/boot";
type = "swap";
resumeDevice = true;
};
};
root = {
size = "100%";
size = "100%FREE";
content = {
type = "filesystem";
format = "ext4";
mountpoint = "/";
mountOptions = [ "defaults" ];
};
};
};

2
modules/system/syncthing.nix
View file

@ -15,7 +15,7 @@
settings = {
devices = {
north.id = "ROS2S76-ULQWVFC-7KNQQ6Q-MNIWNKT-2QOPPHY-FFQZNVM-GUJRTHE-NZBM3QY";
north.id = "FAJS5WM-UAWGW2U-FXCGPSP-VAUOTGM-XUKSEES-D66PMCJ-WBODJLV-XTNCRA7";
inspiron.id = "DLFGFCF-MTYXA23-F235RKL-QFZ4GB6-BUHTYMX-DJCTFRA-NVMAE5Y-R63NMQY";
};