#
# Bootless: evil-maid mitigator.
#

#
# Load environment
#
if [ -s $prefix/grubenv ]; then
  load_env
fi

#
# Basic config
#
set default="0"
set timeout=5

#
# Menu appearance
#
set menu_color_normal=white/blue
set menu_color_highlight=yellow/red

#
# Handles boot from fully encrypted /boot volumes.
#
function bootfde {
  insmod luks
  insmod lvm

  cryptomount lvm/${1}-root
  set root=(crypto0)

	echo	 "Loading ${1}..."
  linux  /boot/vmlinuz-${2}-amd64 root=/dev/mapper/root cryptopts=target=root,source=/dev/mapper/${1}-root ro quiet
  echo   'Loading initial ramdisk ...'
  initrd /boot/initrd.img-${2}-amd64
}

#
# Default menu entry
#
menuentry "Memtest86+" {
  linux16 /boot/default/memtest/memtest86+.bin
}

#
# Custom menu entries
#
if [ -e "/boot/custom/custom.cfg" ]; then
  configfile /boot/custom/custom.cfg
fi