|
|
|---|
CDROOT=1 | CDROOT=1 |
CDROOT_DEV=`parse_opt "${x}"` | CDROOT_DEV=`parse_opt "${x}"` |
;; | ;; |
# Start livecd loop, looptype options and encryption |
# Start livecd loop, looptype options |
loop\=*) | loop\=*) |
LOOP=`parse_opt "${x}"` | LOOP=`parse_opt "${x}"` |
;; | ;; |
looptype\=*) | looptype\=*) |
LOOPTYPE=`parse_opt "${x}"` | LOOPTYPE=`parse_opt "${x}"` |
;; | ;; |
loop_crypt\=*) |
|
LOOP_CRYPT=`parse_opt "${x}"` |
|
;; |
|
# Start Device Manager options | # Start Device Manager options |
devfs) | devfs) |
USE_DEVFS_NORMAL=1 | USE_DEVFS_NORMAL=1 |
|
|
|---|
crypt_swap\=*) | crypt_swap\=*) |
LUKS_SWAP=`parse_opt "${x}"` | LUKS_SWAP=`parse_opt "${x}"` |
;; | ;; |
|
crypt_silent\=*) |
|
LUKS_SILENT=`parse_opt "${x}"` |
|
;; |
real_rootflags\=*) | real_rootflags\=*) |
REAL_ROOTFLAGS=`parse_opt "${x}"` | REAL_ROOTFLAGS=`parse_opt "${x}"` |
;; | ;; |
|
|
|---|
# Scan volumes | # Scan volumes |
startVolumes | startVolumes |
| |
# Initialize LUKS root device |
# Initialize LUKS root device except for livecd's |
startLUKS |
if [ "${CDROOT}" -ne '1' ] |
|
then |
|
startLUKS |
|
fi |
| |
# Set up unionfs | # Set up unionfs |
mkdir -p ${NEW_ROOT} | mkdir -p ${NEW_ROOT} |
|
|
|---|
mount -t tmpfs tmpfs ${NEW_ROOT} | mount -t tmpfs tmpfs ${NEW_ROOT} |
fi | fi |
| |
for i in dev mnt mnt/cdrom mnt/livecd mnt/key tmp tmp/.initrd mnt/gentoo sys |
for i in dev mnt mnt/cdrom mnt/livecd mnt/keydev tmp tmp/.initrd mnt/gentoo sys |
do | do |
mkdir -p ${NEW_ROOT}/$i | mkdir -p ${NEW_ROOT}/$i |
chmod 755 ${NEW_ROOT}/$i | chmod 755 ${NEW_ROOT}/$i |
|
|
|---|
| |
| |
# If encrypted, find key and mount, otherwise mount as usual | # If encrypted, find key and mount, otherwise mount as usual |
if [ "${LOOP_CRYPT}" != '' ] |
if [ "${LUKS_ROOT}" != '' ] |
then | then |
good_msg 'You booted an encrypted livecd' |
if [ "${LUKS_SILENT}" = '' ] |
KEYNAME=$(head -n 1 ${NEW_ROOT}/mnt/cdrom/livecd) |
then |
|
good_msg 'You booted an encrypted livecd' |
|
fi |
| |
if [ "${KEYNAME}" = '' ] |
LUKS_ROOT_KEY=$(head -n 1 ${NEW_ROOT}/mnt/cdrom/livecd) |
then |
|
good_msg 'It's not locked with a gpg key, attempting to decrypt manually' |
|
losetup -e ${LOOP_CRYPT} /dev/loop1 ${NEW_ROOT}/mnt/cdrom/${LOOPEXT}${LOOP} |
|
|
|
| |
else |
if [ "${LUKS_ROOT_KEY}" ] |
good_msg 'Livecd locked with gpg key' |
then |
bootstrapKey | bootstrapKey |
good_msg 'Attempting to decrypt with key' |
|
losetup -K ${NEW_ROOT}/mnt/key/${SUBDIR}/${KEYNAME} -e ${LOOP_CRYPT} /dev/loop1 \ |
|
${NEW_ROOT}/mnt/cdrom/${LOOPEXT}${LOOP} |
|
fi | fi |
|
|
test_success 'Unencrypting loop' |
|
| |
|
losetup /dev/loop0 ${NEW_ROOT}/mnt/cdrom/${LOOPEXT}${LOOP} |
|
|
|
test_success 'Preparing loop filesystem' |
|
|
|
LUKS_ROOT='/dev/loop0' |
|
|
|
startLUKS |
|
|
case ${LOOPTYPE} in | case ${LOOPTYPE} in |
squashfs) |
|
MOUNTTYPE="squashfs" |
|
normal) | normal) |
MOUNTTYPE="ext2" | MOUNTTYPE="ext2" |
esac |
;; |
|
*) |
|
MOUNTTYPE="${LOOPTYPE}" |
|
;; |
|
esac |
| |
mount -t ${MOUNTTYPE} -o ro /dev/loop1 ${NEW_ROOT}/mnt/livecd |
|
|
mount -t ${MOUNTTYPE} -o ro /dev/mapper/root ${NEW_ROOT}/mnt/livecd |
test_success 'Mount filesystem, checking key' |
|
|
test_success 'Mount filesystem' |
FS_LOCATION='mnt/livecd' | FS_LOCATION='mnt/livecd' |
| |
| |
|
|
|---|
test_success 'mount /dev/loop0 /' | test_success 'mount /dev/loop0 /' |
FS_LOCATION='mnt/livecd' | FS_LOCATION='mnt/livecd' |
fi | fi |
|
fi |
# | # |
# End cdrom looptype determination and mounting if necessary | # End cdrom looptype determination and mounting if necessary |
# | # |
