mirror of
https://github.com/alyraffauf/nixcfg.git
synced 2024-11-25 21:31:54 -05:00
rustboro: add luks encryption
This commit is contained in:
parent
f526e4cb46
commit
c27678802a
|
@ -8,44 +8,44 @@
|
||||||
type = "gpt";
|
type = "gpt";
|
||||||
partitions = {
|
partitions = {
|
||||||
ESP = {
|
ESP = {
|
||||||
priority = 1;
|
size = "1024M";
|
||||||
name = "ESP";
|
|
||||||
start = "1M";
|
|
||||||
end = "1024M";
|
|
||||||
type = "EF00";
|
type = "EF00";
|
||||||
content = {
|
content = {
|
||||||
type = "filesystem";
|
type = "filesystem";
|
||||||
format = "vfat";
|
format = "vfat";
|
||||||
mountpoint = "/boot";
|
mountpoint = "/boot";
|
||||||
|
mountOptions = [
|
||||||
|
"defaults"
|
||||||
|
];
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
root = {
|
luks = {
|
||||||
size = "100%";
|
size = "100%";
|
||||||
|
content = {
|
||||||
|
type = "luks";
|
||||||
|
name = "crypted";
|
||||||
content = {
|
content = {
|
||||||
type = "btrfs";
|
type = "btrfs";
|
||||||
extraArgs = ["-f"]; # Override existing partition
|
extraArgs = ["-f"];
|
||||||
# Subvolumes must set a mountpoint in order to be mounted,
|
|
||||||
# unless their parent is mounted
|
|
||||||
subvolumes = {
|
subvolumes = {
|
||||||
# Subvolume name is different from mountpoint
|
"/root" = {
|
||||||
"rootfs" = {mountpoint = "/";};
|
mountpoint = "/";
|
||||||
# For use with future impermanence setups
|
mountOptions = ["compress=zstd" "noatime"];
|
||||||
|
};
|
||||||
"persist" = {
|
"persist" = {
|
||||||
mountpoint = "/persist";
|
mountpoint = "/persist";
|
||||||
mountOptions = ["compress=zstd" "noatime"];
|
mountOptions = ["compress=zstd" "noatime"];
|
||||||
};
|
};
|
||||||
# Subvolume name is the same as the mountpoint
|
"/home" = {
|
||||||
"home" = {
|
|
||||||
mountOptions = ["compress=zstd"];
|
|
||||||
mountpoint = "/home";
|
mountpoint = "/home";
|
||||||
};
|
|
||||||
# Parent is not mounted so the mountpoint must be set
|
|
||||||
"nix" = {
|
|
||||||
mountOptions = ["compress=zstd" "noatime"];
|
mountOptions = ["compress=zstd" "noatime"];
|
||||||
|
};
|
||||||
|
"/nix" = {
|
||||||
mountpoint = "/nix";
|
mountpoint = "/nix";
|
||||||
|
mountOptions = ["compress=zstd" "noatime"];
|
||||||
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
mountpoint = "/partition-root";
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
Loading…
Reference in a new issue