You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2025-11-02 18:47:56
- laichiaheng
- Member
- Registered: 2017-02-12
- Posts: 279
[Solved] Unable to enable kernel lockdown.
I'm using mkinitcpio(UKI), I have edited /etc/kernel/cmdline and added lockdown=integrity to the kernel parameter, but it never works.
I always have to do "echo integrity > /sys/kernel/security/lockdown" manually
Last edited by laichiaheng (2025-11-03 02:08:02)
Offline
#2 2025-11-02 22:54:41
- Scimmia
- Fellow
- Registered: 2012-09-01
- Posts: 13,247
Re: [Solved] Unable to enable kernel lockdown.
What does /proc/cmdline show?
Offline
#3 2025-11-03 01:59:03
- laichiaheng
- Member
- Registered: 2017-02-12
- Posts: 279
Re: [Solved] Unable to enable kernel lockdown.
Scimmia wrote:
What does /proc/cmdline show?
root=PARTUUID=299793bf-25aa-496b-9e76-64ae2c3189e1 zswap.enabled=0 rootflags=subvol=@ rw rootfstype=btrfs sysrq_always_enabled=1There is no lockdown=integrity, why?
Last edited by laichiaheng (2025-11-03 02:00:28)
Offline
#4 2025-11-03 02:04:08
- laichiaheng
- Member
- Registered: 2017-02-12
- Posts: 279
Re: [Solved] Unable to enable kernel lockdown.
Scimmia wrote:
What does /proc/cmdline show?
I see now, I need to do this:
sudo mkinitcpio -POffline
Pages: 1