@tychotithonus wow holy shit they want to remove LUKS support from GRUB based on their (IMO misguided) preference of doing LUKS from an initrd. I hate that design pattern, but I guess they have their reasons. Personally my linux laptops that are FDE encrypted are *completely* encrypted and boot leveraging GRUB's LUKS support. It's unusual, but I believe more resilient to bad shit.