From a4e18a2ae8c19a664bb1be5bc4ec43f10a876969 Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Sat, 4 Sep 2021 18:28:37 -0400
Subject: [PATCH] `dracut` `reproducible=yes`

---
 README.md                               | 2 ++
 etc/dracut.conf.d/30-security-misc.conf | 1 +
 2 files changed, 3 insertions(+)
 create mode 100644 etc/dracut.conf.d/30-security-misc.conf

diff --git a/README.md b/README.md
index b2c4736..0335f8b 100644
--- a/README.md
+++ b/README.md
@@ -394,6 +394,8 @@ executing `systemctl enable hide-hardware-info.service` as root.
 * hardened malloc compatibility for haveged workaround
 `/lib/systemd/system/haveged.service.d/30_security-misc.conf`
 
+* set `dracut` `reproducible=yes` setting
+
 ## Related
 
 * Linux Kernel Runtime Guard (LKRG)
diff --git a/etc/dracut.conf.d/30-security-misc.conf b/etc/dracut.conf.d/30-security-misc.conf
new file mode 100644
index 0000000..ce80509
--- /dev/null
+++ b/etc/dracut.conf.d/30-security-misc.conf
@@ -0,0 +1 @@
+reproducible=yes