From 87524503d89b34bda8fa8b0c1f9009678fc7e540 Mon Sep 17 00:00:00 2001
From: "Mohamed C." <mohamed@chrayed.de>
Date: Wed, 28 Aug 2024 15:57:30 +0200
Subject: [PATCH] add boot settings for lanzaboote

---
 modules/system/boot/default.nix | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/modules/system/boot/default.nix b/modules/system/boot/default.nix
index 0a601e8..5bb16bc 100644
--- a/modules/system/boot/default.nix
+++ b/modules/system/boot/default.nix
@@ -1,4 +1,4 @@
-{ ... }:
+{ pkgs, ... }:
 {
   boot.loader.systemd-boot.enable = true;
   boot.loader.efi.canTouchEfiVariables = true;
@@ -7,8 +7,11 @@
   boot.consoleLogLevel = 0;
   boot.kernelParams = [ "quiet" "udev.log_level=0" ];
   boot.initrd.verbose = false;
-  boot.lanzaboote = {
-    enable = true;
-    pkiBundle = "/etc/secureboot";
-  };
+ # boot.lanzaboote = {
+ #   enable = true;
+ #   pkiBundle = "/etc/secureboot";
+ # };
+  environment.systemPackages = [
+    pkgs.sbctl
+  ];
 }