kernel
/
dracut
mirror of https://git.kernel.org/pub/scm/boot/dracut/dracut.git/
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

crypt: only manually activate systemd-cryptsetup, if not in crypttab 

Only additional rd.luks.UUID have to be manually activated.
master
Harald Hoyer 2013-08-13 10:26:29 +02:00
parent 730b9b8b77
commit a13bf117d5
3 changed files with 26 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
modules.d/90crypt/crypt-lib.sh
View File

@ -4,6 +4,19 @@


command -v getarg >/dev/null || . /lib/dracut-lib.sh command -v getarg >/dev/null || . /lib/dracut-lib.sh


# check if the crypttab contains an entry for a LUKS UUID
crypttab_contains() {
local luks="$1"
local l d rest
if [ -f /etc/crypttab ]; then
while read l d rest; do
strstr "${l##luks-}" "${luks##luks-}" && return 0
strstr "$d" "${luks##luks-}" && return 0
done < /etc/crypttab
fi
return 1
}

# ask_for_password # ask_for_password
# #
# Wraps around plymouth ask-for-password and adds fallback to tty password ask # Wraps around plymouth ask-for-password and adds fallback to tty password ask

8
modules.d/90crypt/crypt-run-generator.sh
View File

@ -3,16 +3,12 @@
# ex: ts=8 sw=4 sts=4 et filetype=sh # ex: ts=8 sw=4 sts=4 et filetype=sh


. /lib/dracut-lib.sh . /lib/dracut-lib.sh
type crypttab_contains >/dev/null 2>&1 || . /lib/dracut-crypt-lib.sh


dev=$1 dev=$1
luks=$2 luks=$2


if [ -f /etc/crypttab ]; then crypttab_contains "$luks" && exit 0
while read l d rest; do
strstr "${l##luks-}" "${luks##luks-}" && exit 0
strstr "$d" "${luks##luks-}" && exit 0
done < /etc/crypttab
fi


allowdiscards="-" allowdiscards="-"



4
modules.d/90crypt/parse-crypt.sh
View File

@ -2,6 +2,8 @@
# -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*- # -*- mode: shell-script; indent-tabs-mode: nil; sh-basic-offset: 4; -*-
# ex: ts=8 sw=4 sts=4 et filetype=sh # ex: ts=8 sw=4 sts=4 et filetype=sh


type crypttab_contains >/dev/null 2>&1 || . /lib/dracut-crypt-lib.sh

if ! getargbool 1 rd.luks -d -n rd_NO_LUKS; then if ! getargbool 1 rd.luks -d -n rd_NO_LUKS; then
info "rd.luks=0: removing cryptoluks activation" info "rd.luks=0: removing cryptoluks activation"
rm -f -- /etc/udev/rules.d/70-luks.rules rm -f -- /etc/udev/rules.d/70-luks.rules
@ -28,6 +30,7 @@ else
printf -- '$env{DEVNAME} luks-$env{ID_FS_UUID} %s"\n' $tout printf -- '$env{DEVNAME} luks-$env{ID_FS_UUID} %s"\n' $tout
} >> /etc/udev/rules.d/70-luks.rules.new } >> /etc/udev/rules.d/70-luks.rules.new
else else
if ! crypttab_contains "$luksid"; then
{ {
printf -- 'ENV{ID_FS_TYPE}=="crypto_LUKS", ' printf -- 'ENV{ID_FS_TYPE}=="crypto_LUKS", '
printf -- 'ENV{ID_FS_UUID}=="*%s*", ' $luksid printf -- 'ENV{ID_FS_UUID}=="*%s*", ' $luksid
@ -36,6 +39,7 @@ else
printf -- 'systemd-cryptsetup@luks$$(dev_unit_name -$env{ID_FS_UUID}).service"\n' printf -- 'systemd-cryptsetup@luks$$(dev_unit_name -$env{ID_FS_UUID}).service"\n'
} >> /etc/udev/rules.d/70-luks.rules.new } >> /etc/udev/rules.d/70-luks.rules.new
fi fi
fi


uuid=$luksid uuid=$luksid
while [ "$uuid" != "${uuid#*-}" ]; do uuid=${uuid%%-*}${uuid#*-}; done while [ "$uuid" != "${uuid#*-}" ]; do uuid=${uuid%%-*}${uuid#*-}; done