Luís Fonseca luishfonseca

Computer Science and Engineering Student @ IST

45 followers · 36 following

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

luishfonseca / diff.nix

Created July 5, 2023 15:19

dry-activate diff

	system.activationScripts.diff = {
	supportsDryActivation = true;
	text = ''
	${pkgs.nvd}/bin/nvd --nix-bin-dir=${pkgs.nix}/bin diff /run/current-system "$systemConfig"
	'';
	};

luishfonseca / disko.nix

Created April 7, 2024 21:19

Disko

	# nix run --experimental-features "nix-command flakes" github:nix-community/disko -- --mode disko --flake ./nixos#zfs-boot
	# nixos-install --no-root-password --flake ./nixos#zfs-boot
	{...}: {
	disko.devices = {
	disk = {
	system0 = {
	type = "disk";
	device = "/dev/vda";
	content = {
	type = "gpt";

luishfonseca / zfs.nix

Last active June 17, 2024 22:41

	# > sbctl status # should show "Secure Boot: Enabled"
	# > sudo systemd-cryptenroll /dev/zvol/zroot/keyvol --unlock-key-file=/keyvol/sshvol_recovery.key --wipe-slot=tpm2
	# > sudo systemd-cryptenroll /dev/zvol/zroot/keyvol --unlock-key-file=/keyvol/keyvol_recovery.key --tpm2-device=auto --tpm2-with-pin=(yes\|no) --tpm2-pcrs=7
	# if remote unlocking
	# > sudo systemd-cryptenroll /dev/zvol/zroot/sshvol --unlock-key-file=/keyvol/sshvol_recovery.key --wipe-slot=tpm2
	# > sudo systemd-cryptenroll /dev/zvol/zroot/sshvol --unlock-key-file=/keyvol/sshvol_recovery.key --tpm2-device=auto --tpm2-pcrs=7
	{
	inputs,
	config,
	utils,