1. Forum
  2. Usenet
  3. LINUX.GENTOO.USER

  • [gentoo-user] Testing Gentoo before install on new laptop

    From Alexis Praga@21:1/5 to All on Tue Aug 6 17:50:01 2024
    This is an OpenPGP/MIME signed message (RFC 4880 and 3156) -----------------------69a3bc0f14f201dfb4ad3e833409e540 Content-Transfer-Encoding: quoted-printable
    Content-Type: text/plain;charset=utf-8

    Dear fellow Gentoo users,

    For the first time in 15 years, I have bought a new (and recent too !) laptop (Yoga 7 Gen 9).
    Is there a way to test Gentoo on it before installing it ?
    I was thinking of using the Live GUI usb to ensure the following works :
    - GPU (integrated AMD 780), especially with wayland
    - wifi
    - webcam
    - CPU (it's not a snapdragon but a Ryzen 7).

    Thanks !

    Alexis
    -----------------------69a3bc0f14f201dfb4ad3e833409e540--

    -----BEGIN PGP SIGNATURE-----
    Version: ProtonMail

    wnUEARYKACcFgmayNnsJkPAeFYUiLMsLFiEE2E8jfgAci+2JsBtK8B4VhSIs ywsAAKbSAP9UKSR6VQym2l7d0XEIGCI31Bo1HLLmRZrFtZhmUV7/CgD/a2zO 09ZR8tZE7h57xka/K2X3i6qoHygADPhW6YxqCw0=
    =HHXs
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Michael@21:1/5 to All on Tue Aug 6 21:57:07 2024
    Hi Alexis,

    On Tuesday, 6 August 2024 15:43:21 BST Alexis Praga wrote:
    Dear fellow Gentoo users,

    For the first time in 15 years, I have bought a new (and recent too !)
    laptop (Yoga 7 Gen 9). Is there a way to test Gentoo on it before
    installing it ?

    You can try the LiveUSB, but unless it has all the requisite firmware you will discover some hardware may not be identified or work as expected.


    I was thinking of using the Live GUI usb to ensure the following works :
    - GPU (integrated AMD 780), especially with wayland
    - wifi
    - webcam
    - CPU (it's not a snapdragon but a Ryzen 7).

    Thanks !

    Alexis

    You could try any Linux distro LiveUSB to get get an idea of what kernel drivers and firmware are needed for your hardware, then it is a matter of installing Gentoo and configuring your system accordingly.

    Initially, you can use binary packages from Gentoo for a quick installation
    and then decide if compiling from source and customising your USE flags is something you may prefer for you needs.

    https://wiki.gentoo.org/wiki/Gentoo_Binary_Host_Quickstart

    HTH.
    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCAAdFiEEXqhvaVh2ERicA8Ceseqq9sKVZxkFAmayjiMACgkQseqq9sKV ZxmKsBAA2tqZzzF7Era5C1gVenuAZz4Yt9OY9EF9od7ugMtPwq+kDVPBs62yXc56 YqKwtkP5M9cWgBHQKAYbCXgaseJCwUMPHG8e5WmA89FQr10xFk8/C1HP03y8Gk9e piGx/6uM1BNEtz4mejCZOhPc0G9Nzys9scnqGcohi0QsaK5G5h4Cp1X53z+6Drio PAo8Kc7iGQXqAvDSly9giOj05wyK1Pi5XU5gkuulSGr8VSnLqrexM3tSUVs3TmHd KbmG612KBjPnmgZ75AvvaNDGQEzmdyoKECJYmiaZXGlTy0q/ePYEu5jzXrlPDVwS 9vML1IDgTIh15Jx4TCVGMY10pmiXnJ032d6ZqgHZYNY5SwQGtMqA2jku42bRKgoJ 9OzVvxCoNdliJ/bLhuSn/iqb+YWVE8y0UK8W0XBFobhaN29NJQ/reg2SCbbpvZUs 5l5nMT3diNn36YeEIhAybhuBlduou/1jmhEzVZKzc4jA3xddx2OvNTL5iRgkDj1Z JAb1s1a5NkohuxPmc/21HscsFyRYn3nR2vfe+3ivHFXWibVIv7TpWPcvG545oQM0 z8/1u4iY3JjrHuOPwJgai0x4ted/Eazoycot7/LyMxtaGQi6LcwkMiUUiVN/ovUu y2rJ3cT3wAdvunFMeN2nijWrstMdipySZ/ljssLLDyEG7ysAgoA=
    =kMkG
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Michael@21:1/5 to All on Sun Aug 11 23:07:38 2024
    On Sunday, 11 August 2024 22:53:15 BST Alexis Praga wrote:
    Hi Michael,

    Thanks for your helpful advice.
    I was quite happy with Gentoo LiveUSB for checking wifi and GPU support. Using binary packages sped up installation substantially as expected.

    No issue to report at the moment. Wayland seems to work fine, too.

    The only point I didn't anticipate was Windows Secure Boot. I ended up disabling it as I could not setup Grub with it.

    Apart from that, quite happy with the process !

    Alexis

    Nice to hear you got your system up & running. If you need/prefer to run with Secure Boot enabled, have a look at this guide to help you setting it up.

    https://wiki.gentoo.org/wiki/Secure_Boot

    -----BEGIN PGP SIGNATURE-----

    iQIzBAABCAAdFiEEXqhvaVh2ERicA8Ceseqq9sKVZxkFAma5NioACgkQseqq9sKV Zxm6kA/+K89TJ+FXHPV/Olbb/VGZSADSmT8MiyOIEzgbeRylTBQ8ppe9Wdra+p0m /XCKVpZ6RHk4zbDqw0x1s7nFmrS4P6kgZ7rNJd2yEHyZo9gto9zRS3nQqFd5+LH0 TcmgzN5qTpGsP+AyjdRezimu3Vry+2xOmMagydNTPEf0XCu6DlRfWX9I4kwStHII IhppWISjaqny2IkulcssJ0zfG+QyRYTm9ze2N9sV8grpXa+y4LFP053u49ifbahC 3Mi4+N4sw9G3N6yMmlxV7fpuq5beoc9s/BdXfDUxhFYoqSLvjiADlUtIdKqF/XLX oP1ji2+zvwlr/k6s3ZZsiobCVZBarYkKXE4p7vD3PUwctHYnvKFVeTqI+NxTnxKQ C99BPYJuCYS+RXnAA/9O2VGwliZnnMqYl0V35dMttpKKSIhEmRw9IdVOLxGznhtH hHg7imEcyfWpDb2Puw8FpZWVWu02OinOR702XcaIkhxrQkHttQvc5msPoy7wQER2 Oa+b/CEqYYpSZfYK/Nv8AeJjmrAndxew1IS3hCa8i5HxbP9D5kwCwDduzR9bcTl4 kXLrHuOBokVBy04ltzBH85bi6xyePCWC2Iefpcx01G4Tl/wFdV0SKWtqBddMkSoy YiAHT1TbxiREFFBZNQjLLhgVSOMU9QEM/YjIeik4jlc+j5ANC1I=
    =SuyG
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Alexis Praga@21:1/5 to Michael on Mon Aug 12 00:00:01 2024
    This is an OpenPGP/MIME signed message (RFC 4880 and 3156) -----------------------2407a99f1b8b3f6fd05e3d66c4f90f62 Content-Transfer-Encoding: quoted-printable
    Content-Type: text/plain;charset=utf-8

    Hi Michael,

    Thanks for your helpful advice.
    I was quite happy with Gentoo LiveUSB for checking wifi and GPU support. Using binary packages sped up installation substantially as expected.

    No issue to report at the moment. Wayland seems to work fine, too.

    The only point I didn't anticipate was Windows Secure Boot. I ended up disabling it as I could not setup Grub with it.

    Apart from that, quite happy with the process !

    Alexis




    On Tuesday, August 6th, 2024 at 10:57 PM, Michael <confabulate@kintzios.com> wrote:





    Hi Alexis,


    On Tuesday, 6 August 2024 15:43:21 BST Alexis Praga wrote:


    Dear fellow Gentoo users,


    For the first time in 15 years, I have bought a new (and recent too !) laptop (Yoga 7 Gen 9). Is there a way to test Gentoo on it before installing it ?




    You can try the LiveUSB, but unless it has all the requisite firmware you will
    discover some hardware may not be identified or work as expected.


    I was thinking of using the Live GUI usb to ensure the following works :
    - GPU (integrated AMD 780), especially with wayland
    - wifi
    - webcam
    - CPU (it's not a snapdragon but a Ryzen 7).


    Thanks !


    Alexis




    You could try any Linux distro LiveUSB to get get an idea of what kernel drivers and firmware are needed for your hardware, then it is a matter of installing Gentoo and configuring your system accordingly.


    Initially, you can use binary packages from Gentoo for a quick installation and then decide if compiling from source and customising your USE flags is something you may prefer for you needs.


    https://wiki.gentoo.org/wiki/Gentoo_Binary_Host_Quickstart


    HTH.
    -----------------------2407a99f1b8b3f6fd05e3d66c4f90f62--

    -----BEGIN PGP SIGNATURE-----
    Version: ProtonMail

    wnUEARYKACcFgma5Mr0JkPAeFYUiLMsLFiEE2E8jfgAci+2JsBtK8B4VhSIs ywsAADm0AQCWZuu0Sqy+Syy8Nfu2pDz7OZp1AnpcpD3PwIzmaFNoswEAqz6F UpDnWxp8ORaFE03PqrKmjIvyrVl2wSUjRIsrqwQ=
    =Q+kB
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Matt Jolly@21:1/5 to Michael on Mon Aug 12 02:00:01 2024
    On 12/8/24 08:07, Michael wrote:
    Nice to hear you got your system up & running. If you need/prefer to
    run with
    Secure Boot enabled, have a look at this guide to help you setting it up.

    https://wiki.gentoo.org/wiki/Secure_Boot

    There's some recent news in relation to Secure Boot that should be
    considered: A number of major PC vendors have been shipping
    untrusted Platform Keys (PKs) for a long time[1].

    I haven't dug into this in too much depth yet, but if you
    are not removing factory keys and only using your own
    there is a good chance that you are vulnerable.

    Worse, even if you remove those keys, a factory reset will
    restore them.

    There is a tool available to scan firmware bins[2] to see
    if your firmware is impacted. It's obviously advertising for
    the firm hosting it so take that as you will.

    You can also scan EFI variables:

    Devices affected by PKfail will have the Platform Key certificate's
    subject and issuer fields containing the string DO NOT TRUST or DO NOT
    SHIP.

    ```
    # efi-readvar -v PK
    Variable PK, length 862
    PK: List 0, type X509
    Signature 0, size 834, owner 26dc4851-195f-4ae1-9a19-fbf883bbb35e
    Subject:
    CN=DO NOT TRUST - AMI Test PK
    Issuer:
    CN=DO NOT TRUST - AMI Test PK
    ```

    TL;DR - If you use the default keys you're potentially vulnerable.
    If you want to use Secure Boot you should be purging the
    manufacturer's PK and installing your own regardless.


    1: https://github.com/binarly-io/Vulnerability-REsearch/blob/main/PKfail/BRLY-2024-005.md
    2: https://pk.fail/

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)