RomanNum3ral
/
archinstall
mirror of https://github.com/archlinux/archinstall.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added --crypt-x options as parameters, that passes in the values to the .encrypt() function to set iter-time, key-size and hash-type.

This commit is contained in:
Anton Hvornum 2022-02-09 14:39:10 +01:00
parent f1333eb77c
commit 205d217a44
No known key found for this signature in database
GPG Key ID: F1234C5BA67C59DF
5 changed files with 48 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
archinstall/__init__.py
View File

@ -72,6 +72,9 @@ def define_arguments():
parser.add_argument("--script", default="guided", nargs="?", help="Script to run for installation", type=str) parser.add_argument("--script", default="guided", nargs="?", help="Script to run for installation", type=str)
parser.add_argument("--mount-point","--mount_point", nargs="?", type=str, help="Define an alternate mount point for installation") parser.add_argument("--mount-point","--mount_point", nargs="?", type=str, help="Define an alternate mount point for installation")
parser.add_argument("--debug", action="store_true", default=False, help="Adds debug info into the log") parser.add_argument("--debug", action="store_true", default=False, help="Adds debug info into the log")
parser.add_argument("--crypt-iter-time", default='10000', nargs="?", type=str)
parser.add_argument("--crypt-key-size", default='512', nargs="?", type=str)
parser.add_argument("--crypt-hash-type", default='sha512', nargs="?", type=str)
parser.add_argument("--plugin", nargs="?", type=str) parser.add_argument("--plugin", nargs="?", type=str)
def parse_unspecified_argument_list(unknowns :list, multiple :bool = False, error :bool = False) -> dict: def parse_unspecified_argument_list(unknowns :list, multiple :bool = False, error :bool = False) -> dict:

35
archinstall/lib/disk/btrfs.py
View File

@ -3,13 +3,13 @@ import pathlib
import glob import glob
import logging import logging
import re import re
from typing import Union, Dict, TYPE_CHECKING, Any, Iterator from typing import Union, Dict, TYPE_CHECKING, Any, Iterator, Optional
from dataclasses import dataclass from dataclasses import dataclass
# https://stackoverflow.com/a/39757388/929999 # https://stackoverflow.com/a/39757388/929999
if TYPE_CHECKING: if TYPE_CHECKING:
from ..installer import Installer from ..installer import Installer
from .helpers import get_mount_info from .helpers import get_mount_info, get_mount_fs_type
from ..exceptions import DiskError from ..exceptions import DiskError
from ..general import SysCommand from ..general import SysCommand
from ..output import log from ..output import log
@ -24,6 +24,37 @@ class BtrfsSubvolume:
options :str options :str
root :bool = False root :bool = False
@property
def MapperDev(self):
return self._mapperdev
def mount(self, target :str, fs :Optional[str] = None, options :str = '') -> bool:
log(f'Mounting {self} to {target}', level=logging.INFO)
if not fs:
if not self.MapperDev.filesystem:
raise DiskError(f'Need to format (or define) the filesystem on {self} before mounting.')
fs = self.MapperDev.filesystem
fs_type = get_mount_fs_type(fs)
pathlib.Path(target).mkdir(parents=True, exist_ok=True)
# TODO: Detect if destination is already mounted some how.
# Otherwise we won't be able to mount the subvolume.
# TODO options should be better be a list than a string
if options:
options = f"{options},subvol={self.name}"
else:
options = f"subvol={self.name}"
try:
SysCommand(f"/usr/bin/mount -t {fs_type} -o {options} {self.MapperDev.path} {target}")
except SysCallError as err:
raise DiskError(f"Could not mount {self.path} to {target} using options {options}: {err}")
return True
def get_subvolumes_from_findmnt(struct :Dict[str, Any], index=0) -> Iterator[BtrfsSubvolume]: def get_subvolumes_from_findmnt(struct :Dict[str, Any], index=0) -> Iterator[BtrfsSubvolume]:
if '@' in struct['source']: if '@' in struct['source']:
subvolume = re.findall(r'\[.*?\]', struct['source'])[0][1:-1] subvolume = re.findall(r'\[.*?\]', struct['source'])[0][1:-1]

7
archinstall/lib/disk/filesystem.py
View File

@ -123,7 +123,12 @@ class Filesystem:
else: else:
loopdev = f"{storage.get('ENC_IDENTIFIER', 'ai')}{pathlib.Path(partition['device_instance'].path).name}" loopdev = f"{storage.get('ENC_IDENTIFIER', 'ai')}{pathlib.Path(partition['device_instance'].path).name}"
partition['device_instance'].encrypt(password=partition['!password']) partition['device_instance'].encrypt(
password=partition['!password'],
key_size=storage['arguments']['crypt-key-size'],
hash_type=storage['arguments']['crypt-hash-type'],
iter_time=storage['arguments']['crypt-iter-time']
)
# Immediately unlock the encrypted device to format the inner volume # Immediately unlock the encrypted device to format the inner volume
with luks2(partition['device_instance'], loopdev, partition['!password'], auto_unmount=True) as unlocked_device: with luks2(partition['device_instance'], loopdev, partition['!password'], auto_unmount=True) as unlocked_device:
if not partition.get('wipe'): if not partition.get('wipe'):

8
archinstall/lib/disk/mapperdev.py
View File

@ -5,7 +5,7 @@ import json
from dataclasses import dataclass from dataclasses import dataclass
from typing import Optional, List, Dict, Any, Iterator, TYPE_CHECKING from typing import Optional, List, Dict, Any, Iterator, TYPE_CHECKING
from ..exceptions import SysCallError from ..exceptions import SysCallError, DiskError
from ..general import SysCommand from ..general import SysCommand
from ..output import log from ..output import log
@ -103,12 +103,10 @@ class MapperDev:
try: try:
if options: if options:
mnt_handle = SysCommand(f"/usr/bin/mount -t {fs_type} -o {options} {self.path} {target}") SysCommand(f"/usr/bin/mount -t {fs_type} -o {options} {self.path} {target}")
else: else:
mnt_handle = SysCommand(f"/usr/bin/mount -t {fs_type} {self.path} {target}") SysCommand(f"/usr/bin/mount -t {fs_type} {self.path} {target}")
except SysCallError as err: except SysCallError as err:
raise DiskError(f"Could not mount {self.path} to {target} using options {options}: {err}") raise DiskError(f"Could not mount {self.path} to {target} using options {options}: {err}")
return True return True

4
archinstall/lib/luks.py
View File

@ -107,7 +107,7 @@ class luks2:
pw_given = False pw_given = False
while cryptworker.is_alive(): while cryptworker.is_alive():
if bytes(f'Enter passphrase for {partition.path}', 'UTF-8') in cryptworker and pw_given is False: if bytes(f'Enter passphrase for {partition.path}', 'UTF-8') in cryptworker._trace_log and pw_given is False:
cryptworker.write(password) cryptworker.write(password)
pw_given = True pw_given = True
@ -186,7 +186,7 @@ class luks2:
pw_given = False pw_given = False
while cryptworker.is_alive(): while cryptworker.is_alive():
if bytes(f'Enter passphrase for {partition.path}', 'UTF-8') in cryptworker and pw_given is False: if bytes(f'Enter passphrase for {partition.path}', 'UTF-8') in cryptworker._trace_log and pw_given is False:
cryptworker.write(password) cryptworker.write(password)
pw_given = True pw_given = True