Use actual encryption passwords

2023-12-09 00:09:36 +01:00 · 2023-12-09 00:09:36 +01:00 · f20678d134
commit f20678d134
parent 54ec1fc9ba
4 changed files with 15 additions and 5 deletions
--- a/dk/single_uefi_btrfs.nix
+++ b/dk/single_uefi_btrfs.nix
@ -1,4 +1,4 @@
-{ id, name, ... }:
+{ id, name, passwordFile ? "/should_not_be_needed_in_this_context", ... }:
 {
  disko.devices = {
    disk = {
@ -26,7 +26,7 @@
              content = {
                type = "luks";
                name = "${name}";
-                passwordFile = "/tmp/secret.key"; # FIXME Generate this somehow
+                passwordFile = passwordFile;
                settings = {
                  # Not having SSDs die fast is more important than crypto
                  # nerds that could potentially discover which filesystem I