nix-config/hosts/toaster/secure-boot.nix

{ pkgs, lib, ... }: {
  boot = {
    bootspec.enable = true;
    loader.systemd-boot.enable = lib.mkForce false;
    lanzaboote = {
      enable = true;
      pkiBundle = "/var/lib/sbctl";
    };
  };

  environment.systemPackages = [ pkgs.sbctl ];
}
revert toaster 2024-12-31 13:52:57 +00:00			`{ pkgs, lib, ... }: {`
			`boot = {`
			`bootspec.enable = true;`
			`loader.systemd-boot.enable = lib.mkForce false;`
			`lanzaboote = {`
			`enable = true;`
toaster works 2025-01-02 16:29:05 +01:00			`pkiBundle = "/var/lib/sbctl";`
revert toaster 2024-12-31 13:52:57 +00:00			`};`
			`};`

			`environment.systemPackages = [ pkgs.sbctl ];`
			`}`