NixOS-Config/modules/system/devices/boot/lanzaboote/default.nix

{ lanzaboote, lib, config, pkgs, ... }:
{
  imports = [ lanzaboote.nixosModules.lanzaboote ];

  options.system.lanzaboote = {
    enable = lib.mkOption {
      type = lib.types.bool;
      default = false;
      description = "Enable Lanzaboote and force disable Systemd-boot";
    };
  };

  config = lib.mkIf config.system.lanzaboote.enable {
    boot = {
      loader.systemd-boot.enable = lib.mkForce false;

      lanzaboote = {
        enable = true;
        pkiBundle = "/etc/secureboot";
      };
    };

    environment.systemPackages = with pkgs; [ sbctl ];
  };
}
Begin the move to the import all, activate by config model 2024-11-04 22:41:38 -05:00			`{ lanzaboote, lib, config, pkgs, ... }:`
What a clusterfuck 2024-10-09 03:36:08 -04:00			`{`
Begin the move to the import all, activate by config model 2024-11-04 22:41:38 -05:00			`imports = [ lanzaboote.nixosModules.lanzaboote ];`
Add Chromebook to the roster 2024-10-18 15:32:32 -04:00
Begin the move to the import all, activate by config model 2024-11-04 22:41:38 -05:00			`options.system.lanzaboote = {`
			`enable = lib.mkOption {`
			`type = lib.types.bool;`
			`default = false;`
			`description = "Enable Lanzaboote and force disable Systemd-boot";`
			`};`
What a clusterfuck 2024-10-09 03:36:08 -04:00			`};`
Add a new theme and tamper with some files 2024-10-18 16:26:44 -04:00
Begin the move to the import all, activate by config model 2024-11-04 22:41:38 -05:00			`config = lib.mkIf config.system.lanzaboote.enable {`
			`boot = {`
			`loader.systemd-boot.enable = lib.mkForce false;`

			`lanzaboote = {`
			`enable = true;`
			`pkiBundle = "/etc/secureboot";`
			`};`
			`};`

			`environment.systemPackages = with pkgs; [ sbctl ];`
			`};`
What a clusterfuck 2024-10-09 03:36:08 -04:00			`}`