feat(focus): enable libvirt and acme

spec/focus/acme.nix

@@ -0,0 +1,11 @@
+{
+  security.acme.certs = let
+    cloudflare = {
+      dnsProvider = "cloudflare";
+      credentialsFile = "/nix/persist/secret/cloudflare";
+    };
+  in {
+    "sf.514fpv.io" = cloudflare;
+    ".sf.514fpv.io" = cloudflare // { domain = "*.sf.514fpv.io"; };
+  };
+}

spec/focus/default.nix

@@ -3,7 +3,6 @@
   global = {
     id = "22e9d4e37bd7436ba0cbe6e767fb0912";
     auth.openssh.enable = true;
-    libvirt.enable = false;
     fs.esp.uuid = "8C36-CBE2";
     fs.type = "zfs";
     fs.zfs.externalStore = true;
@@ -14,6 +13,7 @@
     fs.cryptsetup.allowDiscards = false;
     fs.cryptsetup.uuids.secret = "c2bc361e-6f9a-48fa-b698-ed3603a9664a";
     boot.lanzaboote = true;
+    acme.enable = true;
   };
 
   services.fstrim.enable = true;