<CharlieBrown>rekado: paroneayea: I'm confused about full-disk encryption. Does it use my already-made encrypted volume, and ask for my password during install? How does the luksUUID not change? I might not even have a second partition when I go to install. http://sprunge.us/fgXC
<paroneayea>CharlieBrown: I'm not sure if we have luks encryption support
<snape>so chromium would be more free than firefox?..
<CcxWrk>What options are there for customizing installed packages? (configure options, CFLAGS, alternative backends, etc.) I've seen package-input-rewriting mentioned, but that surely doesn't cover all the cases.
<Petter>rekado: "dm-crypt.ko" is enabled by default yes? At least I don't specify it anymore; I'd expect you can remove it from your config as well.
<thomasd>wingo: something about the chromium web store which can't be removed or so.
<thomasd>snape CharlieBrown : I use luks encryption for my /home only, without libreboot. That works fine. It should be possible to encrytp / as well, as long as /boot is not encrypted (haven't tried though)?
<snape>yes, it's definitly possible (I've tried it). But FDE = full disk encryption, it includes /boot
<snape>and the question is: does GuixSD support FDE without libreboot?
<thomasd>I have the impression that package management with Guix uses more cpu-time and/or bandwidth than classic package managers, because updated dependencies always trigger updates of their dependents as well (each time I upgrade, it feels like almost every package in my profile gets upgraded). Does anyone have a clear view on this?
<efraim>I'll see about pulling it on my aarch64 board to see how it builds
<amz3>ACTION try to build a disk image for lxc using 'guix system disk-image custom-install.scm'