swarsel/.dotfiles
1
0
Fork 0
mirror of https://github.com/Swarsel/.dotfiles.git synced 2025-12-06 09:07:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add secure boot to nbl

Browse source
This commit is contained in:
Swarsel 2024-08-05 01:48:13 +02:00
parent 39ee11a4db
commit 0427336b8e
Signed by: swarsel
GPG key ID: 26A54C31F2A4FD84
3 changed files with 228 additions and 94 deletions
Download patch file Download diff file Expand all files Collapse all files

8
profiles/nbl-imba-2/default.nix
View file

@ -1,4 +1,4 @@
{ inputs, outputs, config, pkgs, ... }:
{ inputs, outputs, config, pkgs, lib, ... }:
{
imports = [
@ -33,8 +33,12 @@
networking.networkmanager.wifi.scanRandMacAddress = false;
boot = {
loader.systemd-boot.enable = true;
loader.systemd-boot.enable = lib.mkForce false;
loader.efi.canTouchEfiVariables = true;
lanzaboote = {
enable = true;
pkiBundle = "/etc/secureboot";
};
supportedFilesystems = [ "btrfs" ];
kernelPackages = pkgs.linuxPackages_latest;
kernelParams = [