Re: [arch-general] mkinitcpio hook for custom root decryption with systemd boot
This is a good example how to uncrypt via tpm https://aur.archlinux.org/packages/mkinitcpio-tpm2-encrypt/ On Thu, 23 Jul 2020, 16:03 Giancarlo Razzolini via arch-general, < arch-general@archlinux.org> wrote: > Em julho 23, 2020 7:09 Riccardo Paolo Bestetti via arch-general escreveu: > > > > I would like to change my current crypto setup in a way that would > require more step to unlock the root than just typing in a passphares. For > this reason, sd-encrypt clearly cannot serve my use case. > > > > What step would that be? And how it would be secure? > > > For this reason, I would like to write a custom hook to mount the root > volume. Now, systemd boot doesn't have a concept of runtime hooks. Thus, I > need to make a systemd unit that gets pulled in by cryptsetup.target in the > place of systemd-cryptsetup@.service. (Basically, I need to replace the > whole systemd-cryptsetup-generator and systemd-cryptsetup logic.) > > > > It doesn't need to be in place of, you can simply have a unit that runs > either before or after systemd-cryptsetup@. Or you can even override > systemd-cryptsetup to require your unit. > There are several options. > > > However, I really have no idea on how to achieve this. Should I write a > custom mkinitcpio hook which completely bypasses sd-crypt/cryptsetup.target > and instead starts a different unit with my own decryption logic? Or is > there a way to hook into cryptsetup.target and instruct it to pull in my > logic instead of systemd-cryptsetup*? > > > > If you write a unit file and a script, they can probably be added to the > FILES section and that would be it. Main issue is the enabling of the unit, > so, for that, you would probably need a custom install hook. > > > Of course, the other possibility is to just stop using a systemd boot > and instead setting up a busybox early userspace. Then it's just a matter > of writing a shell script. However, since I'm already using systemd for > everything - from the bootloader to userspace - I don't think it makes much > sense to do that. > > > > If you use the base hook, you already have busybox on the initramfs. > > Regards, > Giancarlo Razzolini
Re: [arch-general] issue with i915
thanks i experience the same lags Am Di., 19. Nov. 2019 um 11:53 Uhr schrieb Enrique Pérez Arnaud via arch-general : > Hi, > > On Thu, Nov 14, 2019 at 12:02 PM Enrique Pérez Arnaud < > enriquepa...@gmail.com> wrote: > > > Hi, > > > > I am experiencing some issue with the i915 driver. The symptom is hangups > > of the graphic environment every few minutes, lasting for a couple of > > seconds. When they happen, journalctl shows a log entry like: > > > > Nov 14 12:39:46 eperez-ws kernel: i915 :00:02.0: Resetting rcs0 for > > hang on rcs0 > > > > In case anyone else experiences this issue, it's went away downgrading > the > kernel to 5.3.8.1-1 > > -- > Enrique Pérez Arnaud > enriquepa...@gmail.com >
Re: [arch-general] mariadb package outdate for over a month
@Christian you are absolutely right, i also do not feel very comfortable using the mariadb from AUR and would be glad to see if we can find a solution for the drop-in/zerofill problem i tried to find anything about the problem, does somebody know what the statement of mariadb is? Best regards Am Di., 18. Dez. 2018 um 23:47 Uhr schrieb Genes Lists via arch-general < arch-general@archlinux.org>: > On 12/18/18 3:54 PM, Christian Hesse wrote: > > > > The remaining issue is that zerofill support in libmariadb is broken. > > > > > Thanks Christian: > >I certainly assume you're all making sound decisions on holding off > on 10.3.11 - but it would be helpful, if you you wouldn't mind, sharing > a little more info about that. > >Are we waiting for fixes to client apps (which ones) or further fixes > to mariadb server or mariadb client lib or something else? Sounds like > the client library from above? > > What client apps are affected and how badly - i.e. what would break if > we did update. > > I do note that there are a lot of security fixes in the newer mariadb > [1] (12 CVEs alone in 10.3.11). > > I also note that fedora has included 10.3 and marked it as a security > update [2] (or at least its in Bodhi)- does that mean fedora doesn't > support those client apps that prevent updates like we do? > >Debian seems also seems to not ship 10.3 as far as I can tell and > neither does ubuntu nor Opensuse (not sure about tumbleweed). So we're > clearly not alone here. > > Thanks for your work keeping Arch the best!! > > regards > > gene > > > > [1] https://mariadb.com/kb/en/library/mariadb-10311-release-notes/ > [2] https://bodhi.fedoraproject.org/updates/?packages=mariadb&page=1 >
Re: [arch-general] mariadb package outdate for over a month
a working 10.3 exist in AUR and so far it workes very well in my environment https://aur.archlinux.org/packages/mariadb-10.3 Am Di., 18. Dez. 2018 um 20:56 Uhr schrieb Eli Schwartz via arch-general < arch-general@archlinux.org>: > On 12/18/18 2:31 PM, Sefa Eyeoglu via arch-general wrote: > > Hey fellow Arch users, > > > > the extra/mariadb package is flagged as out of date since 2018-11-09. I > was > > wondering, why it still was not updated. There is already an AUR package, > > which provides a newer version. Is there any information on why the > package > > is still out of date? > > > > Kind regards, > > Sefa Eyeoglu > > https://scrumplex.net > > > https://lists.archlinux.org/pipermail/arch-general/2017-September/044255.html > > -- > Eli Schwartz > Bug Wrangler and Trusted User > >
Re: [arch-general] Firefox crashes randomly
Hi, Maybe you can find something in the logs journalctl -qb /usr/bin/firefox Hubert Hauser via arch-general schrieb am Do., 20. Sep. 2018, 18:21: > Hello! > > I have problem with randomly crashing Firefox 62.0 or single tabs in > this browser on 64-bit Arch Linux system. Running Firefox in safe mode > doesn't help. Resetting browser or removing folder ~/.mozilla still > doesn't help. Any ideas how to fix this issue? > > -- > > Cheers, > Hubert Hauser. >
Re: [arch-general] Re-install of Arch on a larger drive
I also planning to do that and found this: https://wiki.archlinux.org/index.php/disk_cloning#Using_e2image It only copies the used blocks to the new partition Ralf Mardorf schrieb am So., 18. März 2018, 04:14: > On Sun, 18 Mar 2018 04:03:41 +0100, Ralf Mardorf wrote: > >On Sat, 17 Mar 2018 18:40:33 -0400, Trey Sizemore wrote: > >>On Sat, 2018-03-17 at 23:24 +0100, Jens John wrote: > >>> Do not reinstall but migrate your file system contents 1:1 to the > >>> new disk using rsync. > > > >Why using such an advanced tool for a simple copy? > > > >Run a Linux from a live media and simply do a > > > > sudo cp -a /from/source/mountpoint /to/target/mountpoint > > > >>But does the fact that I'm going from a 250GB to 500GB (and different > >>partition sized) complicate this procedure? > > > >It doesn't matter, don't confuse the copy (or any sync) command, with > >something like the dd command. > > > >Since you don't migrate to other hardware, appart from the drive, you > >even don't need to fix a graphics driver or something like that, you > >only need to reinstall the bootloader after coping all files. > > Oops, perhaps you need to fix fstab, your bootloader's config and > similar files, assuming you are one of those UUID users. If you tend to > use labels instead of UUIDs, you even don't need to fix those > files. After copying the files just use the same label for the new > partition, you used for the partition on the old drive. >
Re: [arch-general] Tips for a stable GNOME Shell?
Hi Giovanni,
I also use gnome shell and love it, I don't have any lags or memory
problems. Tbh in the last 2-4 years it's the most productive thing i have.
Most of time I am running chromium (100tabs + YouTube), pycharm, gedit, lot
of shells, MySQL Workbench and have several services running (sphinx,
mariadb).
Running these things very fluently on a i7 4700 with 16gb ram and standard
OCZ SSD. Especially IDE takes a lot of RAM and Visual Studio is well known
on windows not to spare with it.
I have the same software setup on a Intel NUC with i3 and 8gb RAM. But with
kodi, retroarch and a lot of instances node, cherrypy, mariadb instances. I
don't use a IDE on it but whenever I do things on it it runs smoothly.
I would check the RAM and SSD, what setup do you have?
Giovanni Santini via arch-general schrieb am
Di., 6. Feb. 2018, 23:09:
> Good evening,
> I am writing here since I do believe people here might have found
> solutions already to my problems.
>
> Sadly, I am the problem, as I love GNOME Shell (ops).
> Jokes aside, I love its interface and behaviour; although, it is really
> hard to use it on a real-context basis for me.
> What it happens is that if I execute RAM-consuming applications, GNOME
> Shell behaves really badly, swapping a lot with memory.
>
> The usual scenario is me trying to send some e-mails, while I have
> Visual Studio Code and Firefox for some coding; usually, this leads to
> huge slowdown, up to making the system unusable.
>
> This doesn't happen when using a GNOME-friendly i3 session, executing by
> far many more RAM-consuming applications (such as running Franz with
> multiple services, Telegram Desktop and others).
>
> I got some good boosts from the following actions:
> - Disabling almost all the Shell extensions, except for my 'essential'
> ones.
> - Using a X11 session instead of Wayland
> - Tweaking swap and VFS parameters (there is a web article referenced in
> the ArchWiki which is really good)
>
> So I have two questions:
> 1. Am I nuts? Did I do something really bad to my GNOME Shell without
> knowing that? How could I repair my setup?
> 2. If this is it (GNOME Shell is TOO heavy), is there any lightweight DE
> that offers something similar? I would need at least the search within
> apps and files for sure.
>
> Thanks in advance for replies and sorry for such a long message.
>
> --
> Giovanni Santini
> My blog: http://giovannisantini.tk
> My code: https://git{hub,lab}.com/ItachiSan
> My GPG: 2FADEBF5
>
Re: [arch-general] Switch from AMD GPU to nvidia GPU
Hi, Afaik, you should at least be able to boot into the system, maybe you can try to but into a arch boot image and read the log files. If you have some more information you could check this guide: https://wiki.archlinux.org/index.php/NVIDIA/Troubleshooting Foxtrot Mike via arch-general schrieb am Sa., 30. Dez. 2017, 18:54: > Hi all, > > I was using amd r7 260x card without any problem with 'amdgpu' module. > Now I want to install my new nvidia card (1050ti). I assumed that > installing 'nvidia' package from pacman would be enough to be able to > use my new GPU. (Apparently not). > > The nvidia related packages installed on my PC are: > > ~$ pacman -Qs nvidia > local/libvdpau 1.1.1+3+ga21bf7a-1 > Nvidia VDPAU library > local/nvidia 387.34-15 > NVIDIA drivers for linux > local/nvidia-utils 387.34-2 > NVIDIA drivers utilities > > Upon rebooting after switching the cards, arch boots fine until "Reached > target graphical interface" appears on the display. It seemed the PC was > stuck, but switching to tty2 resulted in flashing keyboard lights. > Which, according to a quick Google search, means kernel panic. > > Moreover, [1] says that "the files are read in ASCII order, and by > convention their names start with XX- (two digits and a hyphen, so that > for example 10 is read before 20).". But I have multiple files in > "/usr/share/X11/xorg.conf.d" starting with the same number 10: > > ~$ ls /usr/share/X11/xorg.conf.d/ > 10-amdgpu.conf10-quirks.conf > 10-nvidia-drm-outputclass.conf40-libinput.conf > > Please help me in getting my new card up and running. > > Regards. > > > [1] https://wiki.archlinux.org/index.php/xorg#Using_.conf_files > >
Re: [arch-general] Install Archlinux on HP Elitebook
Hi, i also would say systemd-boot should be used with uefi: 1. make sure you have bootable image with *UEFI* ArchLinux Image and the *EFI partition* must be available ( https://wiki.archlinux.org/index.php/Unified_Extensible_Firmware_Interface#Requirements_for_UEFI_variable_support ) 2. as mentioned in the wiki you need to have the latestHP firmware ( https://wiki.archlinux.org/index.php/HP_EliteBook_840_G1) 3. install systemd-boot ( https://wiki.archlinux.org/index.php/systemd-boot#EFI_boot) 4. you need to manually add a new EFI Boot entry in your BIOS pointing to the boot loader file (from Step 3) ( https://wiki.archlinux.org/index.php/HP_EliteBook_840_G1) best regards 2017-12-21 9:31 GMT+01:00 Marcel Hoppe via arch-general < arch-general@archlinux.org>: > Have you tried arch with systemd-boot instead of grub2? (I always use > systemd-boot since a while😉) > > Greets > Marcel > > Gesendet von meinem Smartphone > > Am 21.12.2017 09:28 schrieb : > > > Le 2017-12-20 15:45, David Rosenstrauch a écrit : > > > >> On 2017-12-20 3:00 am, David C. Rankin wrote: > >> > >>> I have struggled with this issue and Arch for a year. The problem is > >>> grub2 on > >>> Arch fails to write anything to bytes 0x04 - 0x63 of the mbr, while > other > >>> distros don't seem to have that problem. > >>> > >> > >> > >> More of a workaround than a solution, but I stopped using grub > >> altogether once they upgraded to grub2. (The complexity of the grub2 > >> config file as compared to the simplicity of the grub-legacy menu.lst > >> file is what eventually turned me away.) I've started using syslinux > >> in recent years, and have been quite happy with it. > >> > >> HTH, > >> > >> DR > >> > > > > Hello everyone, > > > > I have good news ... sort of. After a full reset (OS+BIOS) here is the > > result : > > [1] Archlinux : not able to boot. > > [2] Obarun : not able to boot. Yet this distro uses syslinux, not grub... > > [3] OpenSuze : not able to boot. David : maybe a difference between Leap > > 42.2 and 42.3 ? > > [4] Debian : not able to boot. I tried Debian and Subgraph. > > [5] Ubuntu : booting and functionnal (as functionnal as Ubuntu can be). > > > > I'll install Ubuntu and see what I can install from there. Archlinux with > > syslinux I guess. Note : all these USB stick were made with dd. Even > Ubuntu > > was unable to boot with an Easy2Boot stick with imgPTN image and so one. > > > > Tom > > >
