diff options
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/mkinitcpio.d/linux-hardened.preset | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/etc/mkinitcpio.d/linux-hardened.preset b/etc/mkinitcpio.d/linux-hardened.preset new file mode 100644 index 0000000..92da91c --- /dev/null +++ b/etc/mkinitcpio.d/linux-hardened.preset @@ -0,0 +1,19 @@ +# mkinitcpio preset for the 'linux-hardened' kernel. Produces a UKI at +# /boot/EFI/Linux/arch-linux-hardened.efi alongside the stock linux UKI. +# Shares etc/kernel/cmdline.tmpl (same LUKS root, no kernel-specific +# cmdline knobs). Register the EFI entry once with efibootmgr: +# +# sudo efibootmgr --create --disk /dev/nvme0n1 --part 1 \ +# --label 'Arch Hardened' --loader '\EFI\Linux\arch-linux-hardened.efi' +# +# Boot it on demand via: sudo efibootmgr --bootnext XXXX && systemctl reboot + +#ALL_config="/etc/mkinitcpio.conf" +ALL_kver="/boot/vmlinuz-linux-hardened" + +PRESETS=('default' 'fallback') + +default_uki="/boot/EFI/Linux/arch-linux-hardened.efi" + +fallback_uki="/boot/EFI/Linux/arch-linux-hardened-fallback.efi" +fallback_options="-S autodetect" |