23 lines
361 B
Nix
23 lines
361 B
Nix
{
|
|
inputs,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}:
|
|
{
|
|
imports = [ inputs.lanzaboote.nixosModules.lanzaboote ];
|
|
|
|
environment = {
|
|
persistence."/persist/state"."/var/lib/sbctl" = { };
|
|
|
|
systemPackages = with pkgs; [ sbctl ];
|
|
};
|
|
|
|
boot.loader.systemd-boot.enable = lib.mkForce false;
|
|
|
|
boot.lanzaboote = {
|
|
enable = true;
|
|
pkiBundle = "/var/lib/sbctl";
|
|
};
|
|
}
|