From ee0b5f7edfe9fba65f9749f65377c4f519c7fc0a Mon Sep 17 00:00:00 2001 From: Alejandro Soto Date: Thu, 2 Apr 2026 23:32:28 -0600 Subject: sys: prepare impermanence declarations in advance of [lustrated]'s transition --- sys/boot/stack/luks-ext4-fscrypt-impermanence.nix | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) (limited to 'sys/boot/stack') diff --git a/sys/boot/stack/luks-ext4-fscrypt-impermanence.nix b/sys/boot/stack/luks-ext4-fscrypt-impermanence.nix index 7905da3..4a3e51e 100644 --- a/sys/boot/stack/luks-ext4-fscrypt-impermanence.nix +++ b/sys/boot/stack/luks-ext4-fscrypt-impermanence.nix @@ -26,11 +26,11 @@ in { # - /toplevel/persist # - /toplevel/boot-archive.pub # - /toplevel/boot-keys - # - /toplevel/boot-keys/2000-01-01T00:00:00-06:00.key.crypt (encrypted for /toplevel/boot-archive.pub) + # - /toplevel/boot-keys/2000-01-01T00:00:00-06:00.key.age (encrypted for /toplevel/boot-archive.pub) # - /toplevel/boot-keys/... - # - /toplevel/boot-keys/last.key.crypt -> 2000-01-01T00:00:00-06:00.key.crypt + # - /toplevel/boot-keys/last.key.age -> 2000-01-01T00:00:00-06:00.key.age # - /toplevel/boots - # - /toplevel/boots/2000-01-01T00:00:00-06:00 (raw protector in last.key.crypt) + # - /toplevel/boots/2000-01-01T00:00:00-06:00 (raw protector in last.key.age) # - /toplevel/boots/... # - /toplevel/boots/last -> 2000-01-01T00:00:00-06:00 (mounted as /) config = mkIf cfg.enable { @@ -59,7 +59,7 @@ in { rm -f /boot-key ln -Tsf "$boot_stamp" /mnt-toplevel/boots/last - ln -Tsf "$boot_stamp.key.crypt" /mnt-toplevel/boot-keys/last.key.crypt + ln -Tsf "$boot_stamp.key.age" /mnt-toplevel/boot-keys/last.key.age mount --bind "$root_from_toplevel" /mnt-root mount --make-shared /mnt-root -- cgit v1.2.3