christoph/flake-nixinator
1
Fork 0
Code Activity

Moduls/Bootloader: Add lanzaboote option

Browse Source
This commit is contained in:
Christoph Urlacher
2025-08-16 11:50:16 +02:00
parent 815387a87e
commit 69a685774d
2 changed files with 17 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
system/modules/bootloader/default.nix
View File

@ -1,4 +1,5 @@
{ {
pkgs,
config, config,
lib, lib,
mylib, mylib,
@ -31,5 +32,20 @@ in {
device = bootloader.grub.bootDevice; device = bootloader.grub.bootDevice;
}; };
}) })
(lib.mkIf (bootloader.loader == "lanzaboote") {
environment.systemPackages = with pkgs; [
sbctl
];
# Lanzaboote replaces systemd-boot
boot.loader.systemd-boot.enable = lib.mkForce false;
boot.lanzaboote = {
enable = true;
# WARN: Make sure to persist this if using impermanence!
pkiBundle = "/var/lib/sbctl";
};
})
]); ]);
} }

1
system/modules/bootloader/options.nix
View File

@ -9,6 +9,7 @@
type = lib.types.enum [ type = lib.types.enum [
"grub" "grub"
"systemd-boot" "systemd-boot"
"lanzaboote"
]; ];
description = "What boot loader to use"; description = "What boot loader to use";
example = "systemd-boot"; example = "systemd-boot";