Unencrypted boot and encrypted root with Calamares
If you have concerns about using an unencrypted boot you are not in the target audience and you would likely be using qubes-os and full disk encryption
There is pro’s and con’s to this approach so please respect that this topic is not intended for discussions of such considerations.
This topic is for those who are not worried about abusive government and their agencies but still caring enough of their privacy to encrypt their data without sacrificing their system boot time.
Calamares EFI system encryption guide
Ensure your system is using EFI mode by entering your system firmware and disable Legacy or Ccmpatibility mode.
Boot the live ISO and start the Calamares installer.
In the installer - move along with the installer until you reach the Partitions section
Partitions section.
- Choose Manual partitioning option
- Do Not tick the Encrypt system box
- Click > Next button
Screenshot
- Click the New Parition Table button
- The GPT partition scheme should be preselected
(if it’s not something’s not right - cancel and fix it) - Click the OK button
Screenshot
Select the Free space and click the Create button
- Size → 512M
- File system → fat32
- Mount Point → /boot/efi
- FS Label → efi system
- Flags → boot
- Click the OK button
Screenshot
Select the Free space and click the Create button
- Size → 1024M
- File system → ext4
- Mount Point → /boot
- FS Label → linux boot
- Flags → No flags
- Click the OK button
Screenshot
Select the Free space and click the Create button
- Size → remaining
- File system → ext4
- Tick Encrypt
- Fill in encryption phrase
- Confirm encryption phrase
- Mount Point → /
- FS Label → linux root
- Flags → root
- Click the OK button
Summary
When you continue the remainder of the installation you will be notified by the installer, the installation is considered unsafe. You already know that - so acknowledge the warning and continue.
After you finalize your installation and reboot - consider creating a swapfile following the instructions on the wiki page at Swap - Manjaro
Hibernate functionality is not initially setup using this kind of installation. It is likely possible to setup but beyond the scope of this guide.