chvp/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

nixos: get rid of lanzaboote
Some checks failed
Cachix / build (elendel) (push) Successful in 1m21s
Details
Cachix / build (kholinar) (push) Failing after 30s
Details
Cachix / build (lasting-integrity) (push) Successful in 1m10s
Details
Cachix / build (marabethia) (push) Successful in 1m26s
Details
Cachix / build (urithiru) (push) Successful in 1m20s
Details

Browse source
This commit is contained in:
Charlotte Van Petegem 2024-12-02 20:51:21 +01:00
parent 14764f5a8d
commit 37e4be016c
4 changed files with 4 additions and 307 deletions
Download patch file Download diff file Expand all files Collapse all files

9
machines/kholinar/hardware.nix
View file

@ -4,10 +4,6 @@
imports = [ (modulesPath + "/installer/scan/not-detected.nix") ];
boot = {
lanzaboote = {
enable = true;
pkiBundle = "/etc/secureboot";
};
loader.efi.canTouchEfiVariables = true;
initrd = {
availableKernelModules = [ "xhci_pci" "nvme" "usbhid" "usb_storage" "sd_mod" "sdhci_pci" ];
@ -21,10 +17,7 @@
};
chvp.base = {
nix.unfreePackages = [ "displaylink" ];
zfs.systemLinks = [{ path = "/etc/secureboot"; type = "cache"; }];
};
chvp.base.nix.unfreePackages = [ "displaylink" ];
# For Secure Boot management
environment.systemPackages = [ pkgs.sbctl ];