nichts/modules/system/boot/module.nix

{
  config,
  lib,
  pkgs,
  ...
}: let
  inherit (lib.modules) mkForce mkDefault;
  inherit (lib.options) mkOption mkEnableOption;
  inherit (lib.types) int;

  cfg = config.modules.system.boot;
in {
  options.modules.system.boot = {
    grub.enable = mkEnableOption "Grub, a bloated boot loader";
    systemd-boot.enable = mkEnableOption "Poetteringboot";
    timeout = mkOption {
      description = ''
        Set the boot loader's timeout. This is 0 by default, but preferably longer on remote servers to make switching to previous generations easier.
      '';
      type = int;
      # I love spamming space
      default = 0;
    };
  };
  config = {
    assertions = [
      {
        assertion = cfg.systemd-boot.enable || cfg.grub.enable;
        message = "No bootloader is enabled.";
      }
      {
        assertion = cfg.systemd-boot.enable -> !cfg.grub.enable && cfg.grub.enable -> !cfg.systemd-boot.enable;
        message = "Please enable only ONE of systemd-boot or grub.";
      }
    ];
    boot = {
      tmp.useTmpfs = true;
      consoleLogLevel = 0;

      kernelParams = [
        "quiet"
        "splash"
        "rd.systemd.show_status=false"
        "rd.udev.log_level=3"
        "udev.log_priority=3"
        "boot.shell_on_fail"
      ];

      initrd = {
        verbose = false;
        systemd.enable = true;
      };
      loader = {
        efi.canTouchEfiVariables = true;
        timeout = mkDefault cfg.timeout;
        systemd-boot = {
          enable = cfg.systemd-boot.enable;
          # INFO: Leaving this enabled is a security vulneratibility,
          # since we can just start /bin/sh from there and get root access.
          # Since I have FDE, this isn't _as_ critical, but it would still be
          # a bad idea to leave it enabled
          editor = mkForce false;
          consoleMode = "auto";
          configurationLimit = 5;
        };
        grub = {
          enable = cfg.grub.enable;
          efiSupport = true;
          device = "nodev";
          configurationLimit = 5;
        };
      };
      plymouth = {
        enable = true;
        themePackages = [
          (pkgs.adi1090x-plymouth-themes.override
            {
              selected_themes = [
                "hud_3"
              ];
            })
        ];
        theme = "hud_3";
      };
    };
    powerManagement = {
      powerDownCommands = ''
        ${pkgs.plymouth} --show-splash
      '';
      resumeCommands = ''
        ${pkgs.plymouth} --quit
      '';
    };
  };
}
boot/module.nix: change plymouth theme 2025-04-06 21:43:36 +02:00			`{`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`config,`
boot/module.nix: change plymouth theme 2025-04-06 21:43:36 +02:00			`lib,`
			`pkgs,`
			`...`
			`}: let`
world: init 2025-05-15 11:22:57 +02:00			`inherit (lib.modules) mkForce mkDefault;`
boot/module.nix: add timeout option On desktop systems, it is convenient to have the timeout at zero, and just spam space when trying to start a previous generation. On servers however, it is preferable to have some time to choose the generation, which is quite convenient if you have to acess is remotely via a web interface, which tend to be quite slow and unresponsive. 2025-04-09 15:31:18 +02:00			`inherit (lib.options) mkOption mkEnableOption;`
			`inherit (lib.types) int;`
flake: inherit explicitly from parts of lib Instead of doing `inherit (lib) <something>``, all inherits now use `inherit (lib.<subsystem>) <something>`, which is much nicer. 2025-04-09 15:31:18 +02:00
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`cfg = config.modules.system.boot;`
boot/module.nix: change plymouth theme 2025-04-06 21:43:36 +02:00			`in {`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`options.modules.system.boot = {`
			`grub.enable = mkEnableOption "Grub, a bloated boot loader";`
			`systemd-boot.enable = mkEnableOption "Poetteringboot";`
boot/module.nix: add timeout option On desktop systems, it is convenient to have the timeout at zero, and just spam space when trying to start a previous generation. On servers however, it is preferable to have some time to choose the generation, which is quite convenient if you have to acess is remotely via a web interface, which tend to be quite slow and unresponsive. 2025-04-09 15:31:18 +02:00			`timeout = mkOption {`
			`description = ''`
			`Set the boot loader's timeout. This is 0 by default, but preferably longer on remote servers to make switching to previous generations easier.`
			`'';`
			`type = int;`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`# I love spamming space`
boot/module.nix: add timeout option On desktop systems, it is convenient to have the timeout at zero, and just spam space when trying to start a previous generation. On servers however, it is preferable to have some time to choose the generation, which is quite convenient if you have to acess is remotely via a web interface, which tend to be quite slow and unresponsive. 2025-04-09 15:31:18 +02:00			`default = 0;`
			`};`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`};`
			`config = {`
			`assertions = [`
			`{`
			`assertion = cfg.systemd-boot.enable \|\| cfg.grub.enable;`
			`message = "No bootloader is enabled.";`
			`}`
			`{`
			`assertion = cfg.systemd-boot.enable -> !cfg.grub.enable && cfg.grub.enable -> !cfg.systemd-boot.enable;`
			`message = "Please enable only ONE of systemd-boot or grub.";`
			`}`
			`];`
			`boot = {`
boot/module.nix: enable tmpFs 2025-04-09 15:31:18 +02:00			`tmp.useTmpfs = true;`
boot/module.nix: quiesce boot process 2025-04-09 15:31:18 +02:00			`consoleLogLevel = 0;`

			`kernelParams = [`
			`"quiet"`
			`"splash"`
			`"rd.systemd.show_status=false"`
			`"rd.udev.log_level=3"`
			`"udev.log_priority=3"`
			`"boot.shell_on_fail"`
			`];`

flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`initrd = {`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`verbose = false;`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`systemd.enable = true;`
boot/module.nix: switch to sytemd-boot 2025-04-06 21:22:56 +02:00			`};`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`loader = {`
			`efi.canTouchEfiVariables = true;`
world: init 2025-05-15 11:22:57 +02:00			`timeout = mkDefault cfg.timeout;`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`systemd-boot = {`
			`enable = cfg.systemd-boot.enable;`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`# INFO: Leaving this enabled is a security vulneratibility,`
			`# since we can just start /bin/sh from there and get root access.`
			`# Since I have FDE, this isn't _as_ critical, but it would still be`
			`# a bad idea to leave it enabled`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`editor = mkForce false;`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`consoleMode = "auto";`
flake: set options for both grub and systemd-boot 2025-04-07 14:01:35 +02:00			`configurationLimit = 5;`
			`};`
			`grub = {`
			`enable = cfg.grub.enable;`
			`efiSupport = true;`
			`device = "nodev";`
			`configurationLimit = 5;`
			`};`
			`};`
			`plymouth = {`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`enable = true;`
			`themePackages = [`
			`(pkgs.adi1090x-plymouth-themes.override`
			`{`
			`selected_themes = [`
			`"hud_3"`
			`];`
			`})`
			`];`
			`theme = "hud_3";`
boot/module.nix: switch to sytemd-boot 2025-04-06 21:22:56 +02:00			`};`
			`};`
boot/module.nix: cleanup, add plymouth 2025-04-09 15:31:18 +02:00			`powerManagement = {`
			`powerDownCommands = ''`
			`${pkgs.plymouth} --show-splash`
			`'';`
			`resumeCommands = ''`
			`${pkgs.plymouth} --quit`
			`'';`
			`};`
system: add config for networking and hardware 2024-08-16 13:32:13 +02:00			`};`
			`}`