Alexandre_1a/NixOSDots
1
0
Fork 0
mirror of https://github.com/Alexandre1a/NixOSDots.git synced 2026-03-10 00:09:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added secure boot

Browse Source
This commit is contained in:
Alexandre 2026-03-01 12:08:27 +01:00
parent a278c49f32
commit 445856d98a
5 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
flake.nix
View File

@ -6,6 +6,11 @@
nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
nixos-hardware.url = "github:NixOS/nixos-hardware/master";
lanzaboote = {
url = "github:nix-community/lanzaboote/master";
inputs.nixpkgs.follows = "nixpkgs";
};
# Hyprland
hyprland = {

1
hosts/framework/modules.nix
View File

@ -6,6 +6,7 @@ in
imports = [
./hardware-configuration.nix
inputs.sops-nix.nixosModules.sops
modules.nixos.secureboot
modules.common.module
modules.nixos.secrets
modules.nixos.gaming.amd

1
modules/common/environment.nix
View File

@ -21,6 +21,7 @@
gnupg
cmatrix
gh
sbctl
# Browser
inputs.zen-browser.packages.${pkgs.stdenv.hostPlatform.system}.default
];

1
modules/default.nix
View File

@ -37,6 +37,7 @@
};
bootloader = ./nixos/bootloader.nix;
secureboot = ./nixos/secureboot.nix;
locale = ./nixos/locale.nix;
secrets = ./nixos/secrets.nix;
swap = ./nixos/swap.nix;

11
modules/nixos/secureboot.nix Normal file
View File

@ -0,0 +1,11 @@
{ pkgs, lib, ...}:
{
boot.loader.systemd-boot.enable = lib.mkForce false;
boot.lanzaboote = {
enable = true;
pkiBundle = "/var/lib/sbctl";
};
}