32bd2fbb4c
use "rm --" to guard against filenames beginning with "-"
2013-06-28 10:31:18 +02:00
ca2c693679
Do not call plymouth with full path
2013-04-11 16:08:26 +02:00
cdcb27a4fe
crypt/module-setup.sh: also handle UUID= while filtering crypttab
...
The crypttab filter for host-only did not handle UUID= entries.
https://bugzilla.redhat.com/show_bug.cgi?id=919752
2013-04-10 10:16:49 +02:00
96efbc51ac
crypt/module-setup.sh: filter /etc/crypttab in host-only mode
...
only take those /etc/crypttab entries, which we need to boot the system
2013-04-09 10:48:26 +02:00
ab9b04f55b
crypt/parse-crypt.sh: create udev rule for systemd
...
Start the systemd-cryptsetup@luks-*.service for the detected crypto_LUKS
device in the initqueue, so we block in the initqueue and wait for the
password entry.
2013-04-04 12:54:59 +02:00
d351541ee6
make host_fs_types a hashmap
...
This requires bash >= 4, but hash maps are so much more comfortable
2013-03-11 18:58:32 +01:00
cf24ac8c19
crypt, dmraid, mdraid: use for_each_host_dev_and_slaves_all()
...
To catch _all_ UUIDs and not only the first one, use
for_each_host_dev_and_slaves_all
2013-03-07 16:00:00 +01:00
5ac8420abc
crypt/parse-crypt.sh: don't generate luks rules in systemd mode
2013-03-06 17:29:11 +01:00
e9020221a7
crypt: do not cleanup in systemd mode
2013-03-06 17:29:11 +01:00
fdeae2a3ac
crypt/crypt-run-generator.sh: do not timeout for LUKS passwords with systemd
2012-12-14 09:04:55 +01:00
329bbd797f
crypt/crypt-run-generator.sh: fixup last commit 065fc56ab2
2012-11-21 16:36:37 +01:00
065fc56ab2
Make short uuid specification for allow-discards work
...
1) strstr " $discarduuids " did not remove the optional
'luks-' prefix from the argument as the documentation says.
2) The lookup seems backwards. $luksdev ($luks in the other code copy)
is the full uuid and thus one should check whether the user-supplied
argument (short form) is contained therein, not the other way around.
Before this commit, the only way to trigger allow-discards was to
specify the full uuid without the 'luks-' prefix.
2012-11-21 16:01:45 +01:00
585b3b37c0
90crypt: call systemd commands only if systemd binaries are there
2012-10-08 03:28:43 -04:00
e064127729
add "rd.auto" parameter and switch off automatic assembly
...
No automatic assembly is done anymore by default. You will have to
specify exactly what devices to assemble
("rd.md.uuid=" "rd.luks.uuid" ...)
or use "rd.auto=1" or "rd.auto" on the kernel command line.
For big servers with thousands of disks we don't want to assemble
everything by default (error prone, slow).
2012-09-27 14:05:50 +02:00
3722020071
crypt/crypt-run-generator.sh: add allow-discards to options in crypttab
2012-09-26 11:49:28 +02:00
3d12d7a2cc
crypt: install /etc/crypttab only in host-only mode
2012-09-24 13:15:08 +02:00
8a7f561ee5
crypt: do not run systemd crypt generator
...
"systemctl daemon-reload" does it already for us
2012-09-04 09:49:45 +02:00
3d3c192621
crypt/crypt-run-generator.sh: check if crypttab exists
2012-07-30 22:29:47 +02:00
92b3ee855f
removed finished-ask-password.sh
2012-07-30 22:29:42 +02:00
3f7e5358e5
crypt/crypt-run-generator.sh: do not add already existing luks
2012-07-30 20:41:16 +02:00
3d352f5228
crypt: add systemd crypt support
2012-07-30 17:08:52 +02:00
aefea76cf8
set DRACUT_SYSTEMD for systemd mode in the initramfs
2012-07-30 17:08:51 +02:00
68e7661ca7
deprecate old command line options
2012-07-25 10:32:42 +02:00
e88e3b2797
91crypt-loop: replace basename calls with string matching
2012-07-25 10:31:43 +02:00
df68781fca
91crypt-loop: use initqueue for cleanup strategy
2012-07-25 10:31:43 +02:00
c5758f2090
90crypt: enhance crypt-lib keydev mounting
...
Combining $keydev and $keypath should result in a unique, re-usable keydev
mountpoint. mkuniqdir doesn't seem to have any an advantage here and lacks
reusability. Is there ever a use case where these are true:
* there are more than one rd.luks.key=$keypath:$keydev
* one is actually different from the other
2012-07-25 10:31:43 +02:00
3e9b4330a9
90crypt: recognize .img as loop key container
2012-07-25 10:31:43 +02:00
53fe81e752
modules.d/*/module-setup.sh: combine and specify type for installs
...
To speedup image creation, combine dracut_install calls and specify the exact type.
E.g. inst_script instead of the generic inst.
2012-06-29 12:41:27 +02:00
4d0f1d7b28
modules.d/*/module-setup.sh: no more sourcing of dracutfunctions
2012-06-29 12:41:26 +02:00
5ad3803dac
crypt: add rd.luks.allow-discards and honor options in crypttab
...
also fixed the retry loop for rd.luks.key
2012-05-31 12:01:19 +02:00
eef7649e71
merge "cleanup" and "pre-pivot-cleanup" hooks
2012-04-23 11:32:45 +02:00
1bd76bf981
move cleanup scripts to pre-pivot-cleanup hook
...
below cleanup scripts is moved:
40network: kill-dhclient.sh
90crypt: crypt-cleanup.sh
90multipath: multipathd-stop.sh
95iscsi: cleanup-iscsi.sh
95nfs: nfsroot-cleanup.sh
Signed-off-by: Dave Young <dyoung@redhat.com>
2012-04-19 11:59:45 +02:00
8d021e4b8a
90crypt/parse-crypt.sh: simplify rd.luks.uuid testing
2012-02-29 16:20:02 +01:00
004fd0557d
host-only checks corrected and kernel_only mode
...
In kernel_only mode, we don't want to write /etc/cmdline.d
Correctly return the check functions, so we have a valid return of
for_each_host_dev_fs().
mdraid and dmraid functions had wrong checkings for the filesystem
type.
2012-02-22 19:29:57 +01:00
fb67e4aa36
shutdown on demand
...
Do not save and restore the initramfs, but instead, just unpack the
default initramfs for shutdown on shutdown.
2012-02-13 07:08:08 +01:00
96b8d60a9b
dracut: precreate "${initdir}/etc/cmdline.d"
2012-02-07 18:48:04 +01:00
6aafdc5c04
90crypt/crypt-cleanup.sh: send unneeded output to /dev/null
2012-02-07 11:23:42 +01:00
5f282199c8
90crypt/module-setup.sh: prepend "luks-" to hostonly cmdline file
2012-01-23 13:50:27 +01:00
1b7fd0fa3e
Check module dependencies of mount points
...
Like -H, we need to poll every module to check if it is needed
to mount a specific device in '--mount'.
Signed-off-by: Cong Wang <xiyou.wangcong@gmail.com>
2012-01-13 11:35:49 +01:00
480d772f22
*/module-setup.sh: use host_fs_types host_devs
...
For the $hostonly case, use $host_fs_types and $host_devs to determine,
if a module has to be included in the initramfs.
2011-12-15 14:49:03 +01:00
1939a4f96e
99fs-lib/fs-lib.sh: accept "UUID=" and "LABEL=" for fsck_single
...
with the reuse of crypt-lib.sh devnames() and putting it in
dracut-lib.sh, fsck_single() can use more generic names from /etc/fstab
2011-12-15 08:54:48 +01:00
4e05cb4023
cryptroot-ask.sh: use key file, if specified in crypttab and present
...
if a key file is specified in crypttab and present in the initramfs use
it to open the device.
https://bugzilla.redhat.com/show_bug.cgi?id=751640
2011-11-16 11:42:09 +01:00
2c0b5281f5
90crypt/parse-crypt.sh: also accept the beginning of the LUKS UUID
...
2e0c003435
2011-08-30 14:43:57 +02:00
2e0c003435
luks key on ext dev - wait for luks
...
This really waits for the luks mapper device, so luksOpen can do it job
2011-08-22 11:27:00 +02:00
1f735f82cc
crypt: changed cmdline arg name from rd.luks.tout to rd.luks.key.tout
2011-08-22 11:19:22 +02:00
c70f6415f8
luks key on ext dev - wait for luks
...
This asks for the luks passphrase if key is not found for defined time (if defined with rd.luks.tout cmd line):
modules.d/90crypt/cryptroot-ask.sh | 21 ++++++++++++++++++---
modules.d/90crypt/parse-crypt.sh | 5 +++--
2 files changed, 21 insertions(+), 5 deletions(-)
2011-08-22 11:19:22 +02:00
581dd40e73
90crypt: ask_for_password pings plymouthd
...
If plymouthd is not started, ask_for_password shouldn't try to prompt
for password with GUI and should use text prompt instead.
2011-08-19 15:18:04 +02:00
4a049ce556
add x-bit to *.sh
2011-08-12 16:29:28 +02:00
e59f58f854
use inst_simple to install non-binary files
2011-08-12 13:11:30 +02:00
b52294d00b
crypt: dropped plymouth --has-active-vt check on passwd prompt
...
As Ray Strode explains, plymouth --has-active-vt may fail if the user
passes console=ttyS0 or something other not corresponding to
console=tty0, because plymouth is outputing to the serial console and
not a VT in this case.
2011-07-01 10:15:26 +02:00
Harald Hoyer