alyraffauf/nixcfg
1
0
Fork 0
mirror of https://github.com/alyraffauf/nixcfg.git synced 2024-11-25 10:11:54 -05:00
Code Issues Actions 7 Packages Projects Releases Wiki Activity

petalburg: enable lanzaboote

Browse source
This commit is contained in:
Aly Raffauf 2024-08-24 12:27:47 -04:00
parent f8c4a4e207
commit 85969849ea
1 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
hosts/petalburg/default.nix
View file

@ -1,6 +1,7 @@
# Lenovo Yoga 9i Convertible with Intel Core i7-1360P, 16GB RAM, 512GB SSD. # Lenovo Yoga 9i Convertible with Intel Core i7-1360P, 16GB RAM, 512GB SSD.
{ {
config, config,
lib,
self, self,
... ...
}: { }: {
@ -9,6 +10,7 @@
./home.nix ./home.nix
./secrets.nix ./secrets.nix
./stylix.nix ./stylix.nix
self.inputs.lanzaboote.nixosModules.lanzaboote
self.inputs.nixhw.nixosModules.lenovo-yoga-9i-intel-13th self.inputs.nixhw.nixosModules.lenovo-yoga-9i-intel-13th
self.nixosModules.common-auto-upgrade self.nixosModules.common-auto-upgrade
self.nixosModules.common-base self.nixosModules.common-base
@ -22,11 +24,17 @@
]; ];
boot = { boot = {
initrd.systemd.enable = true;
extraModulePackages = with config.boot.kernelPackages; [acpi_call]; extraModulePackages = with config.boot.kernelPackages; [acpi_call];
lanzaboote = {
enable = true;
pkiBundle = "/etc/secureboot";
};
loader = { loader = {
efi.canTouchEfiVariables = true; efi.canTouchEfiVariables = true;
systemd-boot.enable = true; systemd-boot.enable = lib.mkForce false;
}; };
}; };