====== Archlinux installieren (EFISTUB, Luks, Gnome, Hibernate) ======

===== Zielsystem =====
Dieser Guide ist gedacht für reine Intel ThinkPads mit EFI Boot und wurde getestet auf einem ThinkPad X270 und ThinkPad L380. Für andere Geräte sind ggf. kleine Änderungen notwendig. So konnte zB schon erfolgreich ein ThinkPad X230 installiert werden.
===== Partitionieren =====

  * 512MB EF00 efi
  * 100%FREE -- crypt
    * pv
      * vg main
        * lv 50GB root
        * lv RAM+2GB swap
        * lv 100%FREE home

<code bash>
mkfs.fat -F 32 -n EFI /dev/nvme0n1p1

cryptsetup luksFormat --type luks2 --cipher aes-xts-plain64 --hash sha512 --key-size 512 --pbkdf argon2id --iter-time 3000 /dev/nvme0n1p2

cryptsetup luksOpen /dev/nvme0n1p2 lvm

pvcreate /dev/mapper/lvm

vgcreate main /dev/mapper/lvm

lvcreate -L 50GB -n root main

lvcreate -L 34GB -n swap main

lvcreate -l 100%FREE -n home main

mkfs.ext4 -L root /dev/mapper/main-root

mkswap -L swap /dev/mapper/main-swap

swapon -L swap

mkfs.ext4 -L home /dev/mapper/main-home
</code>

===== Partitionen mounten =====

<code bash>
mount /dev/mapper/main-root /mnt

mkdir /mnt/boot

mount /dev/nvme0n1p1 /mnt/boot

mkdir /mnt/home

mount /dev/mapper/main-home /mnt/home
</code>

===== Grundinstallation =====

==== Pacman konfigurieren =====

Spiegelserver auswählen

<code bash>
reflector -c Germany > /etc/pacman.d/mirrorlist
</code>

==== Bootstrapping ====

<code bash>
pacstrap /mnt base base-devel dosfstools gptfdisk lvm2 linux linux-firmware nano

pacman --root /mnt -S dhcpcd bash-completion intel-ucode wpa_supplicant efibootmgr sudo openssh tmux
</code>

==== fstab bauen =====

<code bash>
genfstab -Up /mnt > /mnt/etc/fstab
</code>

===== chrooten =====

<code bash>
arch-chroot /mnt
</code>

==== Hostname ====

<code bash>
echo krypton > /etc/hostname
</code>

==== Locale ====

<code bash>
nano /etc/locale.gen

echo LANG=en_GB.UTF-8 > /etc/locale.conf

locale-gen

echo KEYMAP=de-latin1 > /etc/vconsole.conf

ln -sf /usr/share/zoneinfo/Europe/Berlin /etc/localtime
</code>

==== Network ====

<code - /etc/hosts>
127.0.0.1 localhost.net.clerie.de localhost
::1 localhost.net.clerie.de localhost
</code>

===== Kernel konfigurieren =====

==== Initramfs ====

<code - /etc/mkinitcpio.conf>
...
MODULES=(ext4 i915)
...
HOOKS=(base udev autodetect modconf block keyboard keymap encrypt lvm2 resume filesystems fsck shutdown)
...
</code>

<code bash>
mkinitcpio -p linux
</code>

==== EFI Boot ====

<code bash>
efibootmgr -c -d /dev/nvme0n1 -p 1 -l \vmlinuz-linux -L "Arch Linux efistub" -u "initrd=\initramfs-linux.img quiet cryptdevice=/dev/nvme0n1p2:main root=/dev/mapper/main-root rw resume=/dev/mapper/main-swap"

efibootmgr -c -d /dev/nvme0n1 -p 1 -l \vmlinuz-linux -L "Arch Linux efistub Fallback" -u "initrd=\initramfs-linux-fallback.img cryptdevice=/dev/nvme0n1p2:main root=/dev/mapper/main-root rw"
</code>

=== Psst! Kleines Skript ===

<code - install-efistub.sh>
#!/bin/bash

drive="/dev/nvme0n1"
part="1"
p_cryptdevice="/dev/nvme0n1p2:main"
p_root="/dev/mapper/main-root"
p_swap="/dev/mapper/main-swap"

crypt="cryptdevice=${p_cryptdevice} root=${p_root} rw"
resume="resume=${p_swap}"
silent="quiet"

efibootmgr -c -d ${drive} -p ${part} -l \vmlinuz-linux -L "Arch Linux efistub Fallback" -u "initrd=\initramfs-linux-fallback.img ${crypt}"
efibootmgr -c -d ${drive} -p ${part} -l \vmlinuz-linux -L "Arch Linux efistub" -u "initrd=\initramfs-linux.img ${silent} ${crypt} ${resume}"
</code>
==== (optional) Grub ====

<code bash>
pacman -S grub

grub-install --target=x86_64-efi --efi-directory=/boot --bootloader-id="Arch Linux GRUB"
</code>

<code - /etc/default/grub>
...
GRUB_CMDLINE_LINUX_DEFAULT="quiet cryptdevice=/dev/nvme0n1p2:main resume=/dev/mapper/main-swap"
....
</code>

<code bash>
grub-mkconfig -o /boot/grub/grub.cfg
</code>

===== Abschließen =====

<code bash>
passwd

exit

umount -R /mnt

reboot
</code>

===== Einrichten =====

==== Temporärers Netzwerk ====

<code bash>
dhcpcd enp0s31f6
</code>

==== Benutzer ====

<code bash>
useradd -m -s /bin/bash clerie

passwd clerie

EDITOR=nano visudo
</code>

<code - visudo>
...
%wheel ALL=(ALL) ALL
...
</code>

<code bash>
usermod -a -G wheel clerie
</code>

==== SSD Trim ====

<code bash>
systemctl enable --now fstrim.timer
</code>

==== Gnome installieren ====

<code bash>
pacman -S gnome

oder

pacman -S cheese eog evince file-roller gdm gedit gnome-backgrounds gnome-calculator gnome-characters gnome-color-manager gnome-control-center gnome-disk-utility gnome-font-viewer gnome-keyring gnome-menus gnome-screenshot gnome-session gnome-settings-daemon gnome-shell gnome-shell-extensions gnome-system-monitor gnome-terminal gnome-themes-extra gnome-user-share gnome-video-effects nautilus networkmanager sushi totem gnome-tweaks

systemctl enable gdm

systemctl enable NetworkManager.service
</code>

==== Bluetooth ====

<code bash>
pacman -S bluez bluez-utils

systemctl enable blutooth.service
</code>

===== Rebooten =====

<code bash>
reboot
</code>

===== Siehe auch =====
  * [[https://wiki.archlinux.de/title/Anleitung_für_Einsteiger]]
  * [[https://wiki.archlinux.de/title/Moderne_Installation_mit_UEFI_und_Verschl%C3%BCsselung]]