about summary refs log tree commit diff
path: root/nixos/modules/services/security/aesmd.nix
diff options
context:
space:
mode:
Diffstat (limited to 'nixos/modules/services/security/aesmd.nix')
-rw-r--r--nixos/modules/services/security/aesmd.nix5
1 files changed, 5 insertions, 0 deletions
diff --git a/nixos/modules/services/security/aesmd.nix b/nixos/modules/services/security/aesmd.nix
index 924d614e4717f..8268b034a15ea 100644
--- a/nixos/modules/services/security/aesmd.nix
+++ b/nixos/modules/services/security/aesmd.nix
@@ -73,6 +73,11 @@ in
 
     hardware.cpu.intel.sgx.provision.enable = true;
 
+    # Make sure the AESM service can find the SGX devices until
+    # https://github.com/intel/linux-sgx/issues/772 is resolved
+    # and updated in nixpkgs.
+    hardware.cpu.intel.sgx.enableDcapCompat = mkForce true;
+
     systemd.services.aesmd =
       let
         storeAesmFolder = "${sgx-psw}/aesm";
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-10-10 16:38:39 +0000