configuration.nix/hosts/skipper/boot/default.nix

{ lib, pkgs, ... }: {
  imports = [ ./plymouth.nix ];
  environment = {
    etc."secureboot" = {
      mode = "symlink";
      source = "/persist/secrets/secureboot";
    };
    systemPackages = with pkgs; [
      sbctl
    ];
  };
  boot = {
    bootspec.enable = true;
    loader = {
      efi.canTouchEfiVariables = true;
      systemd-boot.enable = lib.mkForce false;
    };
    lanzaboote = {
      enable = true;
      pkiBundle = "/persist/secrets/secureboot";
    };
  };
}
skipper: move boot related config 2024-07-01 00:01:41 +05:30			`{ lib, pkgs, ... }: {`
			`imports = [ ./plymouth.nix ];`
			`environment = {`
			`etc."secureboot" = {`
			`mode = "symlink";`
			`source = "/persist/secrets/secureboot";`
			`};`
			`systemPackages = with pkgs; [`
			`sbctl`
			`];`
mission cleanup secrets 2024-06-20 19:41:06 +05:30			`};`
refactor 2023-10-02 17:23:23 +05:30			`boot = {`
			`bootspec.enable = true;`
skipper: refactor hardware module 2024-06-30 23:54:47 +05:30			`loader = {`
			`efi.canTouchEfiVariables = true;`
			`systemd-boot.enable = lib.mkForce false;`
			`};`
refactor 2023-10-02 17:23:23 +05:30			`lanzaboote = {`
			`enable = true;`
mission cleanup secrets 2024-06-20 19:41:06 +05:30			`pkiBundle = "/persist/secrets/secureboot";`
refactor 2023-10-02 17:23:23 +05:30			`};`
add current system config 2023-03-15 22:11:59 +05:30			`};`
			`}`