getch 0.1.3 → 0.3.0

data/lib/getch/filesystem/ext4/encrypt/format.rb

@@ -1,27 +1,20 @@
+# frozen_string_literal: true
+
+require 'mkfs'
+
 module Getch
   module FileSystem
     module Ext4
       module Encrypt
-        class Format < Getch::FileSystem::Ext4::Encrypt::Device
+        class Format
           def initialize
-            super
-            @state = Getch::States.new()
-            format
-          end
-
-          def format
-            return if STATES[:format]
-            exec("mkfs.fat -F32 #{@dev_esp}") if @dev_esp
-            exec("mkfs.ext4 -F #{@luks_root}")
-            exec("mkswap -f #{@dev_swap}")
-            exec("mkfs.ext4 -F #{@luks_home}") if @dev_home
-            @state.format
+            x
           end
 
           private
 
-          def exec(cmd)
-            Getch::Command.new(cmd).run!
+          def x
+            Mkfs::Encrypt.new(DEVS, OPTIONS)
           end
         end
       end

data/lib/getch/filesystem/ext4/encrypt/mount.rb

@@ -1,24 +1,20 @@
-require 'fileutils'
+# frozen_string_literal: true
+
+require 'mountfs'
 
 module Getch
   module FileSystem
     module Ext4
       module Encrypt
-        class Mount < Getch::FileSystem::Ext4::Encrypt::Device
+        class Mount
           def initialize
-            super
-            @mount = Getch::FileSystem::Mount.new
-            @state = Getch::States.new()
+            x
           end
 
-          def run
-            return if STATES[:mount]
-            @mount.swap(@dev_swap)
-            @mount.root(@luks_root)
-            @mount.boot(@dev_boot)
-            @mount.esp(@dev_esp)
-            @mount.home(@luks_home)
-            @state.mount
+          private
+
+          def x
+            MountFs::Encrypt.new(DEVS, OPTIONS)
           end
         end
       end

data/lib/getch/filesystem/ext4/encrypt/partition.rb

@@ -1,94 +1,22 @@
+# frozen_string_literal: true
+
+require 'sgdisk'
+require 'cryptsetup'
+
 module Getch
   module FileSystem
     module Ext4
       module Encrypt
-        class Partition < Getch::FileSystem::Ext4::Encrypt::Device
+        class Partition
           def initialize
-            super
-            @state = Getch::States.new
-            @partition = Getch::FileSystem::Partition.new
-            @clean = Getch::FileSystem::Clean
-            @log = Log.new
-            run_partition
-          end
-
-          def run_partition
-            return if STATES[:partition ]
-            @clean.struct(@disk, @cache_disk, @home_disk)
-            @clean.hdd(@disk, @cache_disk, @home_disk)
-            if Helpers::efi?
-              partition_efi
-              encrypt_efi
-            else
-              partition_bios
-              encrypt_bios
-            end
-            @state.partition
+            x
           end
 
           private
 
-          # Follow https://wiki.archlinux.org/index.php/Partitioning
-          def partition_efi
-            # /efi  - EFI system partition - 260MB
-            # swap  - Linux Swap - size of the ram
-            # /     - Root
-            # /home - Home
-            @partition.efi(@dev_esp)
-            @partition.swap(@dev_swap)
-            @partition.root(@dev_root, "8309")
-            @partition.home(@dev_home, "8309") if @dev_home
-          end
-
-          def encrypt_efi
-            @log.info("Format root")
-            Helpers::sys("cryptsetup luksFormat #{@dev_root}")
-            @log.debug("Opening root")
-            Helpers::sys("cryptsetup open --type luks #{@dev_root} cryptroot")
-            encrypt_home
-          end
-
-          def encrypt_bios
-            @log.info("Format root for bios")
-            Helpers::sys("cryptsetup luksFormat --type luks1 #{@dev_root}")
-            @log.debug("Opening root")
-            Helpers::sys("cryptsetup open --type luks1 #{@dev_root} cryptroot")
-            encrypt_home
-          end
-
-          def encrypt_home
-            if @dev_home then
-              create_secret_keys
-              @log.info("Format home with #{@key_path}")
-              Helpers::sys("cryptsetup luksFormat #{@dev_home} #{@key_path}")
-              @log.debug("Open home with key #{@key_path}")
-              exec("cryptsetup open --type luks -d #{@key_path} #{@dev_home} crypthome")
-            end
-          end
-
-          def create_secret_keys
-            return if ! @dev_home
-            @log.info("Creating secret keys")
-            keys_dir = "/root/secretkeys"
-            key_name = "crypto_keyfile.bin"
-            @key_path = "#{keys_dir}/#{key_name}"
-            FileUtils.mkdir keys_dir, mode: 0700 if ! Dir.exist?(keys_dir)
-            exec("dd bs=512 count=4 if=/dev/urandom of=#{@key_path}")
-          end
-
-          def partition_bios
-            # None      - Bios Boot Partition - 1MiB
-            # swap      - Linux Swap - size of the ram
-            # /         - Root
-            # /home     - Home
-            @partition.gpt(@dev_gpt)
-            @partition.swap(@dev_swap)
-            @partition.root(@dev_root, "8309")
-            @partition.home(@dev_home, "8309") if @dev_home
-          end
-
-          def exec(cmd)
-            Getch::Command.new(cmd).run!
+          def x
+            Sgdisk::Encrypt.new(DEVS)
+            CryptSetup.new(DEVS, OPTIONS).format
           end
         end
       end

data/lib/getch/filesystem/ext4/encrypt/void.rb

@@ -0,0 +1,63 @@
+# frozen_string_literal: true
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Encrypt
+        class Void < Device
+          include Helpers::Void
+
+          attr_reader :boot_disk
+
+          # Create key to avoid enter password twice
+          def create_key
+            add_key('volume.key', @dev_root)
+            add_key('home.key', @dev_home) if @home_disk
+          end
+
+          # Key need to be added in dracut.conf.d and crypttab
+          def add_key(name, dev)
+            command "dd bs=1 count=64 if=/dev/urandom of=/boot/#{name}"
+            puts " => Creating a key for #{dev}, password required:"
+            chroot "cryptsetup luksAddKey #{dev} /boot/#{name}"
+            command "chmod 000 /boot/#{name}"
+            #command "chmod -R g-rwx,o-rwx /boot"
+          end
+
+          def crypttab
+            conf = "#{MOUNTPOINT}/etc/crypttab"
+            File.write(conf, "\n", mode: 'w', chmod: 0644)
+            line_crypttab('cryptswap', @dev_swap, '/dev/urandom', 'swap,discard,cipher=aes-xts-plain64:sha256,size=512') if @dev_swap
+            line_crypttab('cryptroot', @dev_root, '/boot/volume.key', 'luks')
+            line_crypttab('crypthome', @dev_home, '/boot/home.key', 'luks') if @home_disk
+          end
+
+          def finish
+            puts '+ Enter in your system: chroot /mnt /bin/bash'
+            puts '+ Reboot with: shutdown -r now'
+          end
+
+          private
+
+          def b_uuid(dev)
+            device = dev.delete_prefix('/dev/')
+            Dir.glob('/dev/disk/by-uuid/*').each do |f|
+              link = File.readlink(f)
+              return f.delete_prefix('/dev/disk/by-uuid/') if link.match(/#{device}$/)
+            end
+          end
+
+          # line_crypttab("cryptswap", "sda2", "/dev/urandom", "luks")
+          def line_crypttab(mapname, dev, point, rest)
+            conf = "#{MOUNTPOINT}/etc/crypttab"
+            device = s_uuid(dev)
+            raise "No partuuid for #{dev} #{device}" unless device
+            raise "Bad partuuid for #{dev} #{device}" if device.kind_of? Array
+
+            add_line(conf, "#{mapname} PARTUUID=#{device} #{point} #{rest}")
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/encrypt.rb

@@ -1,7 +1,11 @@
+# frozen_string_literal: true
+
 module Getch
   module FileSystem
     module Ext4
       module Encrypt
+        def self.end
+        end
       end
     end
   end

data/lib/getch/filesystem/ext4/hybrid/config.rb

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+require 'fstab'
+require 'dracut'
+require 'cryptsetup'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Config
+          def initialize
+            x
+          end
+
+          private
+
+          def x
+            Fstab::Hybrid.new(DEVS, OPTIONS).generate
+            Dracut::Hybrid.new(DEVS, OPTIONS).generate
+            CryptSetup.new(DEVS, OPTIONS).configs
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/deps.rb

@@ -0,0 +1,55 @@
+# frozen_string_literal: true
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Deps
+          def initialize
+            x
+          end
+
+          protected
+
+          def x
+            install
+            service
+          end
+
+          def install
+            case OPTIONS[:os]
+            when 'gentoo' then Install.new('sys-fs/cryptsetup sys-fs/lvm2')
+            when 'void' then Install.new('cryptsetup lvm2')
+            end
+          end
+
+          def service
+            systemd
+            openrc
+            runit
+          end
+
+          def systemd
+            Helpers.systemd? || return
+
+            exec('systemctl enable lvm2-monitor')
+          end
+
+          def openrc
+            Helpers.openrc? || return
+
+            exec('rc-update add lvm boot')
+            exec('rc-update add dmcrypt boot')
+          end
+
+          def runit
+          end
+
+          def exec(cmd)
+            Getch::Chroot.new(cmd)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/device.rb

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+
+require 'devs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Device
+          def initialize
+            @args = { start: true, boot: true, root: true }
+            x
+          end
+
+          private
+
+          def x
+            Devs::Settings.new(@args, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/format.rb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+require 'mkfs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Format
+          def initialize
+            x
+          end
+
+          private
+
+          def x
+            Mkfs::Hybrid.new(DEVS, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/mount.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+require 'mountfs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Mount
+          def initialize
+            x
+          end
+
+          def x
+            MountFs::Hybrid.new(DEVS, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/partition.rb

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+require 'sgdisk'
+require 'cryptsetup'
+require 'lvm2'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        class Partition
+          def initialize
+            x
+          end
+
+          private
+
+          def x
+            Sgdisk::Encrypt.new(DEVS)
+            CryptSetup.new(DEVS, OPTIONS).format
+            Lvm2::Hybrid.new(DEVS, OPTIONS).x
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid/void.rb

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+
+module Getch
+  module FileSystem
+    module Lvm
+      module Encrypt
+        class Void < Device
+          include Helpers::Void
+
+          attr_reader :boot_disk
+
+          # Create key to avoid enter password twice
+          def create_key
+            add_key('volume.key', @dev_root)
+            add_key('home.key', @dev_home) if @home_disk
+          end
+
+          # Key need to be added in dracut.conf.d and crypttab
+          def add_key(name, dev)
+            command "dd bs=1 count=64 if=/dev/urandom of=/boot/#{name}"
+            puts " => Creating a key for #{dev}, password required:"
+            chroot "cryptsetup luksAddKey #{dev} /boot/#{name}"
+            command "chmod 000 /boot/#{name}"
+            #command "chmod -R g-rwx,o-rwx /boot"
+          end
+
+          def crypttab
+            conf = "#{MOUNTPOINT}/etc/crypttab"
+            File.write(conf, "\n", mode: 'w', chmod: 0644)
+            add_line(conf, "cryptswap #{@lv_swap} /dev/urandom swap,discard,cipher=aes-xts-plain64:sha256,size=512")
+            line_crypttab(@vg, @dev_root, '/boot/volume.key', 'luks')
+            line_crypttab("crypthome", @dev_home, "/boot/home.key", "luks") if @home_disk
+          end
+
+          def finish
+            puts '+ Enter in your system: chroot /mnt /bin/bash'
+            puts '+ Reboot with: shutdown -r now'
+          end
+
+          private
+
+          def b_uuid(dev)
+            device = dev.delete_prefix('/dev/')
+            Dir.glob('/dev/disk/by-uuid/*').each { |f|
+              link = File.readlink(f)
+              return f.delete_prefix('/dev/disk/by-uuid/') if link.match(/#{device}$/)
+            }
+          end
+
+          # line_crypttab("cryptswap", "sda2", "/dev/urandom", "luks")
+          def line_crypttab(mapname, dev, point, rest)
+            conf = "#{MOUNTPOINT}/etc/crypttab"
+            device = s_uuid(dev)
+            raise "No partuuid for #{dev} #{device}" unless device
+            raise "Bad partuuid for #{dev} #{device}" if device.kind_of? Array
+            add_line(conf, "#{mapname} PARTUUID=#{device} #{point} #{rest}")
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/hybrid.rb

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Hybrid
+        def self.end
+        end
+      end
+    end
+  end
+end
+
+require_relative 'hybrid/device'
+require_relative 'hybrid/partition'
+require_relative 'hybrid/format'
+require_relative 'hybrid/mount'
+require_relative 'hybrid/deps'
+require_relative 'hybrid/config'

data/lib/getch/filesystem/ext4/lvm/config.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+require 'fstab'
+require 'dracut'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Lvm
+        class Config
+          def initialize
+            x
+          end
+
+          private
+
+          def x
+            Fstab::Lvm.new(DEVS, OPTIONS).generate
+            Dracut::Lvm.new(DEVS, OPTIONS).generate
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/lvm/deps.rb

@@ -0,0 +1,56 @@
+# frozen_string_literal: true
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Lvm
+        class Deps
+          def initialize
+            x
+          end
+
+          protected
+
+          def x
+            install
+            service
+          end
+
+          private
+
+          def install
+            case OPTIONS[:os]
+            when 'gentoo' then Install.new('sys-fs/lvm2')
+            when 'void' then Install.new('lvm2')
+            end
+          end
+
+          def service
+            systemd
+            openrc
+            runit
+          end
+
+          def systemd
+            Helpers.systemd? || return
+
+            exec('systemctl enable lvm2-monitor')
+          end
+
+          def openrc
+            Helpers.openrc? || return
+
+            exec('rc-update add lvm boot')
+          end
+
+          def runit
+          end
+
+          def exec(cmd)
+            Getch::Chroot.new(cmd)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/lvm/device.rb

@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require 'devs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Lvm
+        class Device
+          def initialize
+            @args = { start: true, root: true }
+            @vg = OPTIONS[:vg_name] ||= 'vg0'
+            @lv_root = "/dev/#{@vg}/root"
+            @lv_swap = "/dev/#{@vg}/swap"
+            @lv_home = @home_disk ? "/dev/#{@vg}/home" : nil
+            x
+          end
+
+          private
+
+          def x
+            Devs::Settings.new(@args, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/lvm/format.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+require 'mkfs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Lvm
+        class Format
+          def initialize
+            x
+          end
+
+          def x
+            Mkfs::Lvm.new(DEVS, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/getch/filesystem/ext4/lvm/mount.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+require 'mountfs'
+
+module Getch
+  module FileSystem
+    module Ext4
+      module Lvm
+        class Mount
+          def initialize
+            x
+          end
+
+          def x
+            MountFs::Lvm.new(DEVS, OPTIONS)
+          end
+        end
+      end
+    end
+  end
+end