https://archlinux.org/download
gpg --keyserver-options auto-key-retrieve --verify archlinux-<version>-x86_64.iso.sigDisable FastBoot & Hibernation in Windows (If dual booting)
Disable SecureBoot in UEFI
ls /sys/firmware/efi/efivarsiwctl
device list
station <device> scan
station <device> get-networks
station <device> connect <SSID>
exit
ping archlinux.org
timedatectl list-timezones | less
timedatectl set-timezone <zone>
timedatectl set-ntp true
timedatectl statusfdisk -l
mkfs.ext4 <root_partition>
mount /dev/<root_partition> /mntpacman -Sy
pacman -S archlinux-keyringpacstrap /mnt base diffutils efibootmgr exfatprogs intel-ucode linux linux-firmware \
man-db man-pages memtest86+ ntfs-3g openssh reflector sudo tcpdump tmux usbutils vim zshmkdir /mnt/mnt/<dir>
mount /mnt/mnt/<dir> /dev/<data_partition>genfstab -L /mnt >> /mnt/etc/fstab
vim /mnt/etc/fstab #Check config and add below content
/dev/<root_partition> / ext4 rw,relatime 0 1
/dev/<data_partition> /mnt/<dir> ntfs-3g defaults,uid=1000,gid=1000,fmask=027,dmask=027,windows_names 0 0umount /mnt/<dir>arch-chroot /mntchmod 755 /passwdln -sf /usr/share/zoneinfo/<region/city> /etc/localtime
hwclock --systohc
sed -i '/#en_US.UTF-8 UTF-8/s/^#//g' /etc/locale.gen
locale-gen
echo "LANG=en_US.UTF-8" > /etc/locale.conf
echo "<hostname>" > /etc/hostname
cat >> /etc/hosts << EOF
127.0.0.1 localhost
::1 localhost
127.0.1.1 <hostname>.localdomain <hostname>
EOFpacman -S base-develpacman -S bc nss perl time
pacman -S gtk3 gtk4 libxslt qt5-base qt6-base xorg # Desktop installationpacman -S networkmanager
systemctl enable NetworkManagercat > /etc/NetworkManager/conf.d/dns-servers.conf << EOF
[global-dns-domain-*]
servers=1.1.1.1,1.0.0.1
EOFpacman -S dnsmasq
# Do NOT enable dnsmasq service.
# NetworkManager will handle dnssec in the below method
cat > /etc/NetworkManager/dnsmasq.d/dnssec.conf << EOF
conf-file=/usr/share/dnsmasq/trust-anchors.conf
dnssec
domain-needed
bogus-priv
dnssec-check-unsigned
EOF
cat > /etc/NetworkManager/conf.d/dns.conf << EOF
[main]
dns=dnsmasq
EOFmkdir /efi
mount /dev/<efi_partition> /efi
# mount windows partition, if any to create windows entry
pacman -S grub efibootmgr os-prober
vim /etc/default/grub # Add below line
GRUB_DISABLE_OS_PROBER=false
grub-install --efi-directory=/efi --bootloader-id=GRUB
grub-mkconfig -o /boot/grub/grub.cfgvisudo /etc/sudoers # Uncomment the below line in the file
%wheel ALL=(ALL:ALL) ALL
useradd -m -G wheel -s /usr/bin/zsh <username>
passwd <username>pacman -S xdg-user-dirs
xdg-user-dirs-updatelspci -v | grep -A1 -e VGA -e 3D
pacman -S xf86-video-intel
pacman -S intel-media-driver # For hardware acceleration
pacman -S xorg
pacman -S plasma-meta
pacman -S xdg-desktop-portal # Desktop integration for sandboxed apps
pacman -S colord-kde # Color correction
pacman -S wayland plasma-wayland-session # Wayland support
systemctl enable sddmNOTE: Install a terminal emulator before rebooting
Reboot
Turn off 'restore plasma session on logon' in kde settings
touch ~/.hushlogin
sudo ln -s /usr/bin/vim /usr/bin/vimkdir ~/.config
cat > ~/.config/kdesurc << EOF
[super-user-command]
super-user-command=sudo
EOFsudo sed -ri '/HookDir|Color|ParallelDownloads/s/^#//g' /etc/pacman.confsudo pacman -S pacman-contrib pacutilssudo mkdir /etc/pacman.d/hooks
sudo tee /etc/pacman.d/hooks/zsh-rehash.hook 1> /dev/null << EOF
[Trigger]
Type = Package
Operation = Install
Target = *
[Action]
When = PostTransaction
Exec = /usr/bin/zsh -c "zstyle ':completion:*' rehash true"
EOFsudo reflector --save /etc/pacman.d/mirrorlist --protocol https --latest 50 --sort rate
sudo pacman -Syyusudo pacman -S pkgfile
sudo systemctl enable --now pkgfile-update.timer
sudo pkgfile -usudo pacman -S ufw gufw
sudo systemctl enable --now ufw
sudo ufw enablesudo pacman -S noto-fonts-emoji
sudo pacman -S noto-fonts-cjk # Chinese, Japanese, Korean logograms ~300MBsudo pacman -S bluez bluez-utils
sudo systemctl enable bluetoothsudo pacman -S packagekit-qt5
sudo pacman -S appstream # Reinstall when already installed
echo "Hidden=true" | sudo tee -a /etc/xdg/autostart/org.kde.discover.notifier.desktop 1> /dev/nullsudo pacman -S cups cups-pdf system-config-printer
sudo systemctl enable cups.socket
echo "Out /home/${USER}/Documents" | sudo tee -a /etc/cups/cups-pdf.conf 1> /dev/nullpacman -S archlinux-wallpaper
sudo ln -s /usr/share/backgrounds/archlinux /usr/share/wallpapers/archlinuxsudo pacman -S firefox plasma-browser-integration
xdg-settings set default-web-browser firefox.desktop # Set firefox as default to open linksSet flags in about:config
#Hardware acceleration
media.ffmpeg.vaapi.enabled to true
media.ffvpx.enabled to false
media.rdd-vpx.enabled to false
media.navigator.mediadatadecoder_vpx_enabled to true
gfx.x11-egl.force-enabled to true
gfx.x11-egl.force-disabled to false
#XDG portal (Breaks with default firefox profile in firejail)
widget.use-xdg-desktop-portal to true
sudo intel_gpu_top # Verify harware accelerationhttps://wiki.archlinux.org/title/MPRIS
sudo pacman -S playerctlKDE Settings -> Custom Shortcuts -> Edit -> New Group -> 'playerctl'
Edit -> New -> Global Shortcut -> Command/URL -> 'Play/Pause' ; Action='playerctl play-pause' ; Trigger='Media Play'
Edit -> New -> Global Shortcut -> Command/URL -> 'Previous' ; Action='playerctl previous' ; Trigger='Media Previous'
Edit -> New -> Global Shortcut -> Command/URL -> 'Next' ; Action='playerctl next' ; Trigger='Media Next'
Override default keybindings when setting trigger
sudo pacman -S git
git clone https://aur.archlinux.org/yay-bin.git
cd yay-bin
makepkg -siSilent Boot - https://wiki.archlinux.org/index.php/Silent_boot
sudoedit /etc/default/grub
GRUB_TIMEOUT=0 # -1 for dual boot system
GRUB_CMDLINE_LINUX_DEFAULT="quiet splash loglevel=3 i915.fastboot=1"
sudo grub-mkconfig -o /boot/grub/grub.cfg
sudo sed -i 's/echo/#echo/g' /boot/grub/grub.cfgyay -S plymouth
sudoedit /etc/mkinitcpio.conf
# Add module i915
# Replace hooks 'base udev' with 'systemd'
# Add hook sd-plymouth
sudo mkinitcpio -P
systemctl disable sddm
systemctl enable sddm-plymouth
sudo cp /usr/share/plymouth/arch-logo.png /usr/share/plymouth/themes/spinner/watermark.png
sudo plymouth-set-default-theme -R bgrtsudo pacman -S apparmor
sudo systemctl enable apparmor
sudoedit /etc/default/grub
GRUB_CMDLINE_LINUX_DEFAULT="lsm=lockdown,yama,apparmor,bpf"
sudo grub-mkconfig -o /boot/grub/grub.cfg
sudo sed -i 's/echo/#echo/g' /boot/grub/grub.cfg
# Reboot
aa-enabledsudo pacman -S firejail firetools
sudo firecfg # Enable firejail for all apps (that have profiles) by default
sudo firecfg --clean # Reverses the above
sudo aa-enforce firejail-default
sudoedit /etc/firejail/firejail.config # Set below options in the file
browser-allow-drm yes
quiet-by-default yeshttps://wiki.archlinux.org/index.php/Firejail#Using_Firejail_by_default
sudo tee /etc/pacman.d/hooks/firejail.hook 1> /dev/null << EOF
[Trigger]
Type = Path
Operation = Install
Operation = Upgrade
Operation = Remove
Target = usr/bin/*
Target = usr/local/bin/*
Target = usr/share/applications/*.desktop
[Action]
Description = Configure symlinks in /usr/local/bin based on firecfg.config...
When = PostTransaction
Depends = firejail
Exec = /bin/sh -c 'firecfg >/dev/null 2>&1'
EOFsudo pacman -Syu --needed efibootmgr
sudo mount /dev/<efi_partition> /efiThe below MAY not work anymore
https://git.savannah.gnu.org/cgit/grub.git/commit/?id=6fe755c5c07bb386fda58306bfd19e4a1c974c53
yay -S preloader-signed
sudo cp /usr/share/preloader-signed/{PreLoader,HashTool}.efi /efi/EFI/GRUB/
sudo cp /efi/EFI/GRUB/grubx64.efi /efi/EFI/GRUB/loader.efi
sudo efibootmgr --verbose --disk /dev/sd<disk letter> --part <ESP number> --create --label "PreLoader" --loader /EFI/GRUB/PreLoader.efi
cp /efi/EFI/Microsoft/Boot/bootmgfw.efi /mnt/<somewhere> # As backupReboot (to UEFI settings)
Enable secure boot
Reboot
Message "Failed to start loader" - Press OK
Select "Enroll Hash"
Pick loader.efi and confirm
Reboot
Verify GRUB is chainloaded
yay -S shim-signed
sudo cp /usr/share/shim-signed/{shimx64,mmx64}.efi esp/EFI/GRUB/
sudo cp /efi/EFI/GRUB/grubx64.efi /efi/EFI/GRUB/loader.efi
sudo efibootmgr --verbose --disk /dev/sd<disk letter> --part <ESP number> --create --label "Shim" --loader /EFI/GRUB/shimx64.efi
cp /efi/EFI/Microsoft/Boot/bootmgfw.efi /mnt/<somewhere> # As backupsudo pacman -S pipewire easyeffects # pulseaudio & pulseffects replacementsReboot (Very important)
Open easyeeffects and close it (to create dirs and configs)
curl -fsSLO https://raw.githubusercontent.com/JackHack96/PulseEffects-Presets/master/install.sh
sed -i '/^check_installation$/c\PRESETS_DIRECTORY=$HOME/.config/easyeffects' ./install.sh
chmod +x ./install.sh && bash -c ./install.shLaunch easyeffects -> Click Plugins -> Select Convolver plugin -> Click Impulses -> Enable preferred preset.
Remove all other unneeded plugins # Devs removed checkboxes in favor of add/remove, WTF?
Enable 'Start service at login' in hamburger button in title bar
easyeffects --gapplication-service & disown
cat /sys/power/image_size #Hibernation size, by default 2/5 of RAM
sudo dd if=/dev/zero of=/swapfile bs=1M count=6554 status=progress # 2/5 of 16GB
sudo chmod 600 /swapfile
sudo mkswap /swapfile
sudo swapon /swapfile
sudoedit /etc/fstab # Add below line
/swapfile none swap defaults 0 0
resume_offset=$(sudo filefrag -v /swapfile | awk '{ if($1=="0:"){print substr($4, 1, length($4)-2)} }')
sudoedit /etc/default/grub # Add below line
GRUB_CMDLINE_LINUX="resume=<root_partition> resume_offset=<value>"sysctl vm.swappiness # Current swappiness
echo "vm.swappiness=1" | sudo tee /etc/sysctl.d/99-swappiness.conf 1> /dev/nullsudoedit /etc/systemd/sleep.conf # Add below lines
suspend=hybrid-sleep
SuspendMode=suspend
SuspendState=disk
hibernate=hybrid-sleep
HibernateMode=suspend
HibernateState=diskyay -S visual-studio-code-bin
pacman -S python-pip gnome-keyringsudo paccache -rk1
sudo paccache -ruk0
yay -Qtdq | yay -Rns -
sudo pacman -SccSet clipboard shortcut in KDE settings
sudoedit /etc/systemd/journald.conf # Add below line
SystemMaxUse=100M
sudo systemctl restart systemd-journald
journalctl --vacuum-size=100Msudo pacman -S gvimsudo pacman -S nvidia nvidia-prime nvidia-settings
sudo pacman -S opencl-nvidia #If required
sudoedit /etc/mkinitcpio.conf # Add below line
MODULES = (nvidia nvidia_modeset nvidia_uvm nvidia_drm) #Append to i915
sudo mkinitcpio -P
sudo tee /etc/pacman.d/hooks/nvidia.hook 1> /dev/null << EOF
[Trigger]
Operation=Install
Operation=Upgrade
Operation=Remove
Type=Package
Target=nvidia
Target=linux
# Change the linux part above and in the Exec line if a different kernel is used
[Action]
Description=Update Nvidia module in initcpio
Depends=mkinitcpio
When=PostTransaction
NeedsTargets
Exec=/bin/sh -c 'while read -r trg; do case $trg in linux) exit 0; esac; done; /usr/bin/mkinitcpio -P'
EOF- Do not run nvidia-xconfig (which modifies /etc/x11/xorg.conf)
- Do not modify /etc/x11/xorg.conf /etc/x11/xorg.conf.d/ /usr/share/X11/xorg.conf.d
- The above setup is already configured for prime render offloading
- The 1 xorg process that nvidia-smi shows is more like a hook for running xorg apps in nvidia gpu, it is NOT xorg itself (Citation needed)
- PROOF: Check GPU utilization in 'NVIDIA X Server settings' in the below scenarios
- Nothing running - 0% Usage
- Running glxrears - 0% Usage
- Running prime-run glxrears - >0% Usage
sudo pacman -S cuda
sudo systemctl enable nvidia-persistenced.service
/opt/cuda/extras/demo_suite/deviceQuery #Verify resultyay -S git-credential-manager-core-bin
git config --global user.name <Github_username>
git config --global user.email <Github_email>
git config --global credential.credentialStore secretservice
git clone https://github.com/<Github_username>/<Github_repo>
Username: <Github_username>
Password: <Github_Personal_Access_token>
git-credential-manager-core configure