This is just a few things I'll probably forget later
- Disable secure boot in BIOS if you want hibernation in Linux
- Shrink Windows partition using
diskmgmt.msc
- Boot off Fedora live ISO
- Choose install, do manual partitioning with blivet
- Mount existing EFI partition at
/boot/efi
- Create
/boot
partition - Create swap partition, enable encryption with LUKS2 now if you want it. 2x size of RAM is good
- Create
/
partition, enable LUKS2
After those steps, the Fedora setup will automatically configure the right things.
/boot/efi/EFI/fedora/grub.cfg
- will haveresume=...
in kernelopts/etc/dracut.conf.d/resume.conf
- will have theresume
dracut module enabled
# Install PCSCD
sudo dnf install pcsc-tools opensc pcsc-lite
Update ~/.gnupg/scdaemon.conf
- disable-ccid
turns off the built-in smartcard support so pcscd works
reader-port "Yubico Yubikey"
disable-ccid
Make sure it works with gpg --card-status
, and list keys gpg --list-key
Trust the RSA key on the smart card
gpg --edit-key <thumbprint>
# run "trust", "5", y, "quit"
Then, export the SSH public key:
gpg --export-ssh-key patrick.lang@hotmail.com > ~/.ssh/id_rsa.pub
And finally start gpg-agent
killall ssh-agent gpg-agent
eval $(gpg-agent --daemon --enable-ssh-support)