nixos-mods/hwCommon: add common bootloader setup

1 year ago · bcb774b84a
parent a7adf14d6f
commit bcb774b84a
1 changed files with 15 additions and 0 deletions
--- a/nix/nixos-modules/hwCommon.nix
+++ b/nix/nixos-modules/hwCommon.nix
@ -56,6 +56,21 @@ in
  config = lib.mkIf cfg.enable {


+    boot = {
+
+      # TODO adapt better
+      loader = {
+        efi.canTouchEfiVariables = lib.mkDefault true;
+        systemd-boot = {
+          enable = true;
+          editor = lib.mkDefault true; # TODO lockdown (disable this OR enable TPM PCR checks)
+          memtest86.enable = lib.mkDefault true;
+        };
+      };
+
+    };
+
+
    hardware = {

      cpu = lib.mkMerge [