search

nix-community / lanzaboote

Secure Boot for NixOS [maintainers=@blitz @raitobezarius @nikstur]
GNU General Public License v3.0
899 stars 45 forks source link

Extending bootloader installation #375

Open rafaelsgirao opened 3 months ago

rafaelsgirao commented 3 months ago

It would be great if there was a way of directly extending the bootloader installation process.

In nixpkgs, this is possible by setting the boot.loader.systemd-boot.extraInstallCommands option, but lanzaboote does not make use of it.

I don't think there's any clean way to do this right now, since lanzaboote uses boot.loader.external for itself.

Would it make sense for lanzaboote to make use of this option, adding its contents to the end of the install hook; or perhaps creating a new one for itself, while still using the nixpkgs option for its default value?

kuflierl commented 3 months ago

I would also be chuffed if there were a pre-install hook in addition to the post install hook