dachxy/nix-conf
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: secure boot

Browse source
This commit is contained in:
DACHXY 2025-02-18 14:19:29 +08:00
parent 0d86e300e5
commit 6e86a1eb28
5 changed files with 196 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

12
system/modules/secure-boot.nix Normal file
View file

@ -0,0 +1,12 @@
{ pkgs, lib, ... }:
{
environment.systemPackages = with pkgs; [
sbctl
];
boot.loader.systemd-boot.enable = lib.mkForce false;
boot.lanzaboote = {
enable = true;
pkiBundle = "/var/lib/sbctl/";
};
}