| 1 | #+title: sources of aminb.org's pages and posts |
| 2 | |
| 3 | #+hugo_base_dir: .. |
| 4 | #+seq_todo: TODO DRAFT DONE |
| 5 | #+property: header-args :eval never-export |
| 6 | #+options: author:nil |
| 7 | |
| 8 | #+macro: abbr @@html:<abbr>$1</abbr>@@ |
| 9 | #+macro: span @@html:<span class="$1">$2</span>@@ |
| 10 | |
| 11 | * Pages |
| 12 | :PROPERTIES: |
| 13 | :EXPORT_HUGO_SECTION: / |
| 14 | :EXPORT_HUGO_MENU: :menu topnav |
| 15 | :END: |
| 16 | |
| 17 | ** CV |
| 18 | :PROPERTIES: |
| 19 | :EXPORT_FILE_NAME: cv |
| 20 | :END: |
| 21 | |
| 22 | My academic {{{abbr(CV)}}} is available as [[/cv.pdf][cv.pdf]], |
| 23 | and an outdated professional resume is available as [[/resume.pdf][resume.pdf]] as |
| 24 | well. |
| 25 | |
| 26 | I'm interested in functional programming and functional languages, |
| 27 | type systems, and formal methods in general. I love writing Haskell |
| 28 | and I'm looking into Rust and Lean as well. Feel free to [[/contact][drop me a |
| 29 | line]] if you like to geek out about any of the above. |
| 30 | |
| 31 | ** TODO Now |
| 32 | |
| 33 | ** TODO Projects |
| 34 | |
| 35 | ** TODO Contact |
| 36 | |
| 37 | * Posts |
| 38 | :PROPERTIES: |
| 39 | :EXPORT_HUGO_SECTION: post |
| 40 | :EXPORT_HUGO_MENU: :menu main |
| 41 | :END: |
| 42 | |
| 43 | ** Arch GNU/Linux on MacBook Air 2013 :arch:macbook: |
| 44 | :PROPERTIES: |
| 45 | :EXPORT_FILE_NAME: arch-macbook-air |
| 46 | :EXPORT_DATE: 2016-11-01 |
| 47 | :EXPORT_HUGO_MENU: :menu main |
| 48 | :EXPORT_OPTIONS: ^:{} |
| 49 | :END: |
| 50 | |
| 51 | This post summarizes how I install and dual-boot Arch GNU/Linux with |
| 52 | Full-Disk Encryption alongside macOS. It is not meant to be a |
| 53 | replacement for the [[https://wiki.archlinux.org/index.php/installation_guide][Installation Guide]] or the former [[https://csdietz.github.io/arch-beginner-guide/][Beginner's Guide]]. |
| 54 | Rather, it mostly serves as a small summary with a few useful notes |
| 55 | about the gotchas. |
| 56 | |
| 57 | So, make sure you understand what you type into your terminal. If you |
| 58 | don't, checking out the Arch wiki should probably be your first step. |
| 59 | |
| 60 | /Note:/ you will need internet access throughout the installation and |
| 61 | the MacBook Air's WiFi doesn't work out of the box on Arch. I |
| 62 | recommend using your phone's USB Tethering (if it does support it), or |
| 63 | using an Ethernet-USB adapter. |
| 64 | |
| 65 | *** Shrinking the macOS partition |
| 66 | |
| 67 | The first step I take is resizing the HFS+ macOS partition to make |
| 68 | room for the new {{{abbr(GNU/Linux)}}} installation. There are plenty |
| 69 | of tutorials on how to do this using macOS's Disk Utility, so do that |
| 70 | and then come back! |
| 71 | |
| 72 | *** Creating a bootable Arch Installer USB |
| 73 | |
| 74 | There are different ways of creating a bootable Arch USB, all |
| 75 | documented on the [[https://wiki.archlinux.org/index.php/USB_flash_installation_media][USB flash installation media]] page on the Arch wiki, |
| 76 | but the simplest one is using =dd= if you already have access to |
| 77 | another UNIX system. |
| 78 | |
| 79 | {{{span(red,Warning:)}}} make sure you backup the data on your flash |
| 80 | drive, as =dd= will irrevocably destroy all data on it. |
| 81 | |
| 82 | Use =lsblk= to find the name (block device) of your USB drive, then |
| 83 | run =dd= (as root) as shown below: |
| 84 | |
| 85 | #+begin_src bash |
| 86 | dd bs=4M if=/path/to/archlinux.iso of=/dev/sdx status=progress && sync |
| 87 | #+end_src |
| 88 | |
| 89 | Replace =/path/to/archlinux.iso= with the path to the Arch image you |
| 90 | have downloaded, and =/dev/sdx= with your drive. |
| 91 | |
| 92 | *** Booting up from the USB |
| 93 | |
| 94 | After creating the install USB, reboot your laptop and hold the alt |
| 95 | key and boot into the USB. |
| 96 | |
| 97 | When booting is complete and you're presented with the prompt, it's a |
| 98 | good time to make sure you're connected to the internet (see the |
| 99 | /note/ at the top of this post). |
| 100 | |
| 101 | Use =ping= to verify that you've established a connection: |
| 102 | |
| 103 | #+begin_src bash |
| 104 | ping archlinux.org |
| 105 | #+end_src |
| 106 | |
| 107 | *** Updating the system clock |
| 108 | |
| 109 | Once you're connected to the internet, make sure the system clock is |
| 110 | accurate: |
| 111 | |
| 112 | #+begin_src bash |
| 113 | timedatectl set-ntp true # start and enable systemd-timesyncd |
| 114 | #+end_src |
| 115 | |
| 116 | You can check the service status using =timedatectl status=. |
| 117 | |
| 118 | *** Partitioning |
| 119 | :PROPERTIES: |
| 120 | :CUSTOM_ID: partitioning |
| 121 | :END: |
| 122 | |
| 123 | I won't dive into partitioning and instead, I'll refer you to the |
| 124 | [[https://wiki.archlinux.org/index.php/Partitioning][Partitioning]] page of Arch wiki. Of the available partitioning tools, I |
| 125 | personally prefer =cfdisk=. |
| 126 | |
| 127 | *** Setting up LVM & LUKS |
| 128 | |
| 129 | I use a [[https://wiki.archlinux.org/index.php/Dm-crypt/Encrypting_an_entire_system#LVM_on_LUKS][LVM on LUKS]] setup, where I set up LVM on top of the encrypted |
| 130 | partition. |
| 131 | |
| 132 | First, let's set up the underlying encrypted partition: |
| 133 | |
| 134 | #+begin_src bash |
| 135 | cryptsetup -v --cipher aes-xts-plain64 --key-size 512 --hash sha512 \ |
| 136 | --iter-time 5000 --use-urandom -y luksFormat /dev/sdaX |
| 137 | #+end_src |
| 138 | |
| 139 | where =/dev/sdaX= is the partition you created in the last step |
| 140 | (e.g. =/dev/sda4=). For more information about the =cryptsetup= |
| 141 | options, see the [[https://wiki.archlinux.org/index.php/Dm-crypt/Device_encryption#Encryption_options_for_LUKS_mode][LUKS encryption options]]. |
| 142 | |
| 143 | Then we open the container: |
| 144 | |
| 145 | #+begin_src bash |
| 146 | cryptsetup open --type luks /dev/sdaX lvm |
| 147 | #+end_src |
| 148 | |
| 149 | Now it's time to use lvm and prepare the logical volume(s): |
| 150 | |
| 151 | #+begin_src bash |
| 152 | pvcreate /dev/mapper/lvm |
| 153 | vgcreate vg /dev/mapper/lvm |
| 154 | lvcreate --extents +100%FREE -n root vg |
| 155 | #+end_src |
| 156 | |
| 157 | This will create a physical volume on the mapping we just opened, |
| 158 | create a volume group named =vg= on the physical volume, and create a |
| 159 | logical volume named =root= that spans the entire volume group. More |
| 160 | complex setups are possible thanks to the great flexibility of lvm. |
| 161 | |
| 162 | We now format the logical volume with =ext4=: |
| 163 | |
| 164 | #+begin_src bash |
| 165 | mkfs.ext4 /dev/mapper/vg-root |
| 166 | #+end_src |
| 167 | |
| 168 | *** Installing the base system |
| 169 | |
| 170 | Let's mount the logical volume, make a directory for the mount point |
| 171 | of the boot partition, and mount the boot partition (=/dev/sda1=): |
| 172 | |
| 173 | #+begin_src bash |
| 174 | mount /dev/mapper/vg-root /mnt |
| 175 | mkdir /mnt/boot |
| 176 | mount /dev/sda1 /mnt/boot |
| 177 | #+end_src |
| 178 | |
| 179 | Finally, let's install the base system (and optionally =base-devel=): |
| 180 | |
| 181 | #+begin_src bash |
| 182 | pacstrap /mnt base base-devel |
| 183 | #+end_src |
| 184 | |
| 185 | *** Configuring the system |
| 186 | |
| 187 | Let's generate the fstab: |
| 188 | |
| 189 | #+begin_src bash |
| 190 | genfstab -U /mnt >> /mnt/etc/fstab |
| 191 | #+end_src |
| 192 | |
| 193 | Use your favorite terminal-based editor, edit the fstab file and add |
| 194 | the =discard= option for the root partition to enable TRIM on the SSD. |
| 195 | |
| 196 | Now we change root into our newly installed system and will configure |
| 197 | it. Adjust these according to your own setup. |
| 198 | |
| 199 | #+begin_src bash |
| 200 | arch-chroot /mnt /bin/bash |
| 201 | passwd # set the root password |
| 202 | echo myhostname > /etc/hostname # set the hostname |
| 203 | ln -s /usr/share/zoneinfo/Canada/Eastern /etc/localtime # time zone |
| 204 | hwclock --systohc --utc # write system clock to hardware clock (UTC) |
| 205 | useradd -m -G wheel -s /bin/bash myuser # create myuser |
| 206 | passwd myuser # set the password for myuser |
| 207 | echo "myuser ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers.d/myuser |
| 208 | # uncomment en_US.UTF-8 UTF-8 and other needed locales in /etc/locale.gen |
| 209 | locale-gen |
| 210 | echo LANG=en_US.UTF-8 > /etc/locale.conf |
| 211 | export LANG=en_US.UTF-8 |
| 212 | #+end_src |
| 213 | |
| 214 | Then adjust the initramfs hooks in =/etc/mkinitcpio.conf= and enable |
| 215 | the =encrypt= and =lvm2= hooks, and make sure =keyboard= is available |
| 216 | before =encrypt= so you can actually type in the LUKS password when |
| 217 | booting. Your =HOOKS= line should look similar to this: |
| 218 | |
| 219 | #+begin_src |
| 220 | HOOKS="base udev autodetect modconf block keyboard encrypt lvm2 filesystems fsck" |
| 221 | #+end_src |
| 222 | |
| 223 | After adjusting the hooks, build the initramfs: |
| 224 | |
| 225 | #+begin_src bash |
| 226 | mkinitcpio -p linux |
| 227 | #+end_src |
| 228 | |
| 229 | Now, install the =intel-ucode= package. We'll configure the bootloader |
| 230 | to enable intel microcode updates. |
| 231 | |
| 232 | #+begin_src bash |
| 233 | pacman -S intel-ucode |
| 234 | #+end_src |
| 235 | |
| 236 | Create the =/boot/loader/loader.conf= with the following content |
| 237 | (adjust the timeout to your liking): |
| 238 | |
| 239 | #+begin_src |
| 240 | default arch |
| 241 | timeout 3 |
| 242 | #+end_src |
| 243 | |
| 244 | Then create the entry for Arch: |
| 245 | |
| 246 | #+begin_src bash |
| 247 | mkdir -p /boot/loader/entries |
| 248 | touch /boot/loader/entries/arch.conf |
| 249 | #+end_src |
| 250 | |
| 251 | Now edit =/boot/loader/entries/arch.conf= to specify the Arch entry: |
| 252 | |
| 253 | #+begin_src |
| 254 | title Arch GNU/Linux |
| 255 | linux /vmlinuz-linux |
| 256 | initrd /intel-ucode.img |
| 257 | initrd /initramfs-linux.img |
| 258 | options cryptdevice=/dev/sdaX:vg:allow-discards root=/dev/mapper/vg-root rw |
| 259 | #+end_src |
| 260 | |
| 261 | Again, =/dev/sdaX= is the partition you created in the [[#partitioning][partitioning]] |
| 262 | step as the underlying encrypted partition. |
| 263 | |
| 264 | Finally, install the bootloader, exit the chroot, umount and reboot! |
| 265 | |
| 266 | #+begin_src bash |
| 267 | bootctl install |
| 268 | exit |
| 269 | umount -R /mnt |
| 270 | reboot |
| 271 | #+end_src |
| 272 | |
| 273 | *** Post-installation recommendations |
| 274 | |
| 275 | Congratulations! You now have a minimal Arch installation. |
| 276 | |
| 277 | At this point, I usually install my favorite AUR helper, [[https://aur.archlinux.org/packages/pacaur/][pacaur]], then |
| 278 | I install the [[https://aur.archlinux.org/packages/broadcom-wl-dkms/][broadcom-wl-dkms]] wireless driver and [[https://aur.archlinux.org/packages/mba6x_bl-dkms/][mba6x_bl-dkms]] |
| 279 | backlight driver to fix the post suspend/resume issue where three's no |
| 280 | brightness after waking up from suspend, and the only available |
| 281 | brightness would be 100%. |
| 282 | |
| 283 | #+begin_src bash |
| 284 | pacaur -S linux-headers dkms # linux-headers is required for dkms |
| 285 | pacaur -S broadcom-wl-dkms |
| 286 | pacaur -S mba6x_bl-dkms |
| 287 | #+end_src |
| 288 | |
| 289 | Then, I'd like to install |
| 290 | |
| 291 | - input, graphics, and sound drivers, |
| 292 | - a desktop environment (I prefer Xfce or LXQt), |
| 293 | - a display manager for login screen (lightdm or sddm), and |
| 294 | - a network manager (NetworkManager or ConnMan). |
| 295 | |
| 296 | Check out the [[https://wiki.archlinux.org/index.php/General_recommendations][General recommendations]] for more details. |
| 297 | |
| 298 | *** References |
| 299 | |
| 300 | Here are some resources I've come across each with lots of useful bits |
| 301 | and pieces, about installing Arch on a MacBook: |
| 302 | |
| 303 | - [[https://github.com/pandeiro/arch-on-air][pandeiro/arch-on-air]] |
| 304 | - [[https://loicpefferkorn.net/2015/01/arch-linux-on-macbook-pro-retina-2014-with-dm-crypt-lvm-and-suspend-to-disk/][Arch Linux on MacBook Pro Retina 2014 with DM-Crypt, LVM and suspend to disk]] |
| 305 | - [[http://frankshin.com/installing-archlinux-on-macbook-air-2013/][Installing Archlinux on Macbook Air 2013]] |
| 306 | - [[http://panks.me/posts/2013/06/arch-linux-installation-with-os-x-on-macbook-air-dual-boot/][Arch Linux Installation with OS X on Macbook Air (Dual Boot)]] |
| 307 | - [[https://visual-assault.org/2016/03/05/install-encrypted-arch-linux-on-apple-macbook-pro/][Installing (encrypted) Arch Linux on an Apple MacBook Pro]] |
| 308 | - [[http://alexeyzabelin.com/arch-on-mac][Installing Arch Linux on a MacBook Air 2013]] |
| 309 | - [[https://medium.com/phils-thought-bubble-of-recent-stuff/arch-linux-running-on-my-macbook-2ea525ebefe3][Arch Linux running on my MacBook]] |
| 310 | - [[http://codylittlewood.com/arch-linux-on-macbook-pro-installation/][Dual boot Arch Linux on MacBook Pro Installation]] |
| 311 | |
| 312 | * Meta |
| 313 | ** Search |
| 314 | :PROPERTIES: |
| 315 | :EXPORT_HUGO_SECTION: / |
| 316 | :EXPORT_FILE_NAME: search |
| 317 | :EXPORT_HUGO_LAYOUT: search |
| 318 | :EXPORT_HUGO_OUTPUTS: html json |
| 319 | :EXPORT_HUGO_CUSTOM_FRONT_MATTER: :sitemap '((priority . 0.1)) |
| 320 | :END: |
| 321 | Results from static site search implemented using /Fusejs/, /jquery/ |
| 322 | and /mark.js/. -- [[https://gist.github.com/eddiewebb/735feb48f50f0ddd65ae5606a1cb41ae][Source]] |
| 323 | |
| 324 | * COMMENT Local Variables :ARCHIVE: |
| 325 | # Local Variables: |
| 326 | # org-hugo-footer: "\n\n[//]: # \"Exported with love from a post written in Org mode\"\n[//]: # \"- https://github.com/kaushalmodi/ox-hugo\"" |
| 327 | # End: |