boot.nix at main · hexmani.ac/nix

hexmani.ac / nix
configs
nix / boot.nix
at main 906 B view raw
 1{ lib, pkgs, ... }:
 2let
 3  sources = import ./lon.nix;
 4  lanzaboote = import sources.lanzaboote {
 5    inherit pkgs;
 6  };
 7in
 8{
 9  imports = [
10    lanzaboote.nixosModules.lanzaboote
11  ];
12
13  boot = {
14    kernel.sysctl."net.ipv4.ip_forward" = 1;
15
16    loader.efi.canTouchEfiVariables = true;
17    loader.systemd-boot.enable = lib.mkForce false;
18    loader.systemd-boot.consoleMode = "auto";
19    loader.systemd-boot.edk2-uefi-shell.enable = true;
20    loader.systemd-boot.configurationLimit = 3;
21
22    lanzaboote = {
23      enable = true;
24      pkiBundle = "/var/lib/sbctl";
25    };
26
27    plymouth = {
28      enable = true;
29      theme = "breeze";
30    };
31
32    consoleLogLevel = 3;
33    initrd.verbose = false;
34    kernelParams = [
35      "quiet"
36      "splash"
37      "boot.shell_on_fail"
38      "udev.log_priority=3"
39      "rd.systemd.show_status=auto"
40    ];
41    loader.timeout = 3;
42  };
43
44  system.nixos.label = "NixOS";
45}