add boot settings for lanzaboote

2024-10-18 04:14:08 +02:00 · 2024-08-28 15:57:30 +02:00 · 2024-08-28 15:57:30 +02:00 · 87524503d8
commit 87524503d8
parent 1b5d614a72
1 changed files with 8 additions and 5 deletions
--- a/modules/system/boot/default.nix
+++ b/modules/system/boot/default.nix
@ -1,4 +1,4 @@
-{ ... }:
+{ pkgs, ... }:
 {
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
@ -7,8 +7,11 @@
  boot.consoleLogLevel = 0;
  boot.kernelParams = [ "quiet" "udev.log_level=0" ];
  boot.initrd.verbose = false;
-  boot.lanzaboote = {
-    enable = true;
-    pkiBundle = "/etc/secureboot";
-  };
+ # boot.lanzaboote = {
+ #   enable = true;
+ #   pkiBundle = "/etc/secureboot";
+ # };
+  environment.systemPackages = [
+    pkgs.sbctl
+  ];
 }