penguins-eggs 25.10.26 → 25.10.30

package/addons/eggs/theme/applications/install-system.desktop

@@ -1,12 +1,14 @@
 [Desktop Entry]
 Type=Application
 Version=1.0
-Name=Install system
-GenericName=Live Installer
-Comment=Install the operating system to disk
-Exec=/usr/sbin/install-system.sh
+Name=Install System
+GenericName=System Installer
+Keywords=calamares;system;installer;
+TryExec=calamares
+Exec=sh -c "pkexec calamares"
+Comment=Calamares — System Installer
+Icon=install-system.png
 Terminal=false
 StartupNotify=true
-Type=Application
 Categories=Qt;System;
-Icon=install-system.png
+X-AppStream-Ignore=true

package/addons/eggs/theme/livecd/generic.grub.theme.cfg

@@ -1,8 +1,6 @@
-# Quirinux GNU/Linux by Charlie Martínez
-
 # Global Property
 title-color: "blue"
-title-text: "Debian live (Trixie)"
+title-text: "LINUX LIVE"
 title-font: "Sans Regular 16"
 desktop-color: "blue"
 desktop-image: "splash.png"

package/addons/eggs/theme/livecd/generic.isolinux.theme.cfg

@@ -1,4 +1,3 @@
-MENU TITLE Debian live (trixie)
 MENU CLEAR
 MENU MARGIN 8
 MENU ROWS 12
@@ -29,6 +28,6 @@ menu helpmsgendrow  -1
 menu hiddenrow -2
 menu hshift 0
 menu vshift 0
-menu title Linux live
+menu title LINUX LIVE
 menu background splash.png
 menu tabmsg Press ENTER to boot or TAB to edit a menu entry

package/assets/calamares/io.calamares.calamares.policy

@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- SPDX-FileCopyrightText: no
+     SPDX-License-Identifier: CC0-1.0
+-->
+<!DOCTYPE policyconfig PUBLIC
+"-//freedesktop//DTD PolicyKit Policy Configuration 1.0//EN"
+"http://www.freedesktop.org/standards/PolicyKit/1/policyconfig.dtd">
+<policyconfig>
+
+ <vendor>Calamares</vendor>
+ <vendor_url>https://calamares.io/</vendor_url>
+
+ <action id="io.calamares.calamares.pkexec.run">
+    <description>Run Installer</description>
+    <message>Authentication is required to run the installation program</message>
+    <icon_name>drive-harddisk</icon_name>
+    <defaults>
+     <allow_any>no</allow_any>
+     <allow_inactive>no</allow_inactive>
+     <allow_active>auth_admin</allow_active>
+    </defaults>
+    <annotate key="org.freedesktop.policykit.exec.path">/usr/bin/calamares</annotate>
+    <annotate key="org.freedesktop.policykit.exec.allow_gui">true</annotate>
+ </action>
+</policyconfig>

package/dist/classes/daddy.js

@@ -118,14 +118,18 @@ export default class Daddy {
             config = this.settings.config;
             config.compression = 'fast';
             if (reset || isCustom) {
+                // add fstype to snapshot_prefix 
                 if (config.snapshot_prefix === '') {
                     let fstype = ((await exec(`findmnt -n -o FSTYPE /`, { capture: true })).data.trim());
-                    if (fstype !== 'ext4') {
-                        fstype += '-';
+                    if (fstype === 'ext4') {
+                        fstype = '';
                     }
                     else {
-                        fstype = '';
+                        // btrfs-, etc
+                        fstype += '-';
                     }
+                    // excluded now
+                    fstype = '';
                     config.snapshot_prefix = Utils.snapshotPrefix(this.settings.distro.distroId, this.settings.distro.codenameId) + fstype;
                 }
                 jsonConf = JSON.stringify(config);

package/dist/classes/incubation/customize/customize-partitions.d.ts

@@ -1,4 +1,12 @@
 /**
- *
+ * ./src/classes/incubation/customize/customize-partitions.ts
+ * penguins-eggs v.25.7.x / ecmascript 2020
+ * author: Piero Proietti
+ * email: piero.proietti@gmail.com
+ * license: MIT
+ */
+/**
+ * customize module partition
+ * add/remove filesystem available
  */
 export declare function customizePartitions(): Promise<void>;

package/dist/classes/incubation/customize/customize-partitions.js

@@ -1,9 +1,17 @@
+/**
+ * ./src/classes/incubation/customize/customize-partitions.ts
+ * penguins-eggs v.25.7.x / ecmascript 2020
+ * author: Piero Proietti
+ * email: piero.proietti@gmail.com
+ * license: MIT
+ */
 import fs from 'node:fs';
 import Pacman from '../../pacman.js';
 import yaml from 'js-yaml';
 import { exec } from '../../../lib/utils.js';
 /**
- *
+ * customize module partition
+ * add/remove filesystem available
  */
 export async function customizePartitions() {
     const filePartition = '/etc/calamares/modules/partition.conf';
@@ -15,7 +23,7 @@ export async function customizePartitions() {
      * Determino i filesystem disponibili
      */
     partition.availableFileSystemTypes = ['ext4'];
-    if (Pacman.packageIsInstalled('btrfs-progs') ||
+    if (Pacman.packageIsInstalled('progs') ||
         Pacman.packageIsInstalled('btrfsprogs')) {
         partition.availableFileSystemTypes.push('btrfs');
     }

package/dist/classes/incubation/incubator.d.ts

@@ -43,6 +43,7 @@ export default class Incubator {
     private createInstallerDirs;
     /**
      * soluzione tampone from Glenn
+     *
      */
     private sudoers;
 }

package/dist/classes/incubation/incubator.js

@@ -70,7 +70,7 @@ export default class Incubator {
         Utils.warning(`creating ${installer().name} configuration files on ${installer().configRoot}`);
         this.createInstallerDirs();
         this.createBranding();
-        this.sudoers();
+        // this.sudoers()
         const distroUniqueId = this.distro.distroUniqueId;
         try {
             /**
@@ -80,7 +80,7 @@ export default class Incubator {
                 const alpine = new Alpine(this.installer, this.remix, this.distro, this.user_opt, release, this.theme, this.isClone, this.verbose);
                 await alpine.create();
                 /**
-                 * Archòomix
+                 * Archlinux
                  */
             }
             else if (distroUniqueId === 'archlinux') {
@@ -321,11 +321,13 @@ export default class Incubator {
             console.log(`${calamaresBranding} branding not found!`);
             process.exit();
         }
+        /**
+         * install-system.png
+         */
         let calamaresIcon = path.resolve(__dirname, `../../../addons/${this.remix.branding}/theme/artwork/install-system.png`);
         if (this.theme.includes('/')) {
             calamaresIcon = `${this.theme}/theme/artwork/install-system.png`;
         }
-        // se non esiste non copio la icona
         if (Pacman.calamaresExists()) {
             if (fs.existsSync(calamaresIcon)) {
                 shx.cp(calamaresIcon, '/usr/share/icons/');
@@ -335,6 +337,9 @@ export default class Incubator {
                 process.exit();
             }
         }
+        /**
+         * install-system.desktop
+         */
         let calamaresLauncher = path.resolve(__dirname, `../../../addons/${this.remix.branding}/theme/applications/install-system.desktop`);
         if (this.theme.includes('/')) {
             calamaresLauncher = `${this.theme}/theme/applications/install-system.desktop`;
@@ -346,22 +351,22 @@ export default class Incubator {
             console.log(`${calamaresLauncher} launcher not found!`);
             process.exit();
         }
-        // script di avvio
+        /**
+         * install-system.sh
+         */
         shx.cp(path.resolve(__dirname, '../../../assets/calamares/install-system.sh'), '/usr/sbin/install-system.sh');
         shx.chmod('+x', '/usr/sbin/install-system.sh');
     }
     /**
      * soluzione tampone from Glenn
+     *
      */
     sudoers() {
-        let live = 'live';
-        let content = `${live} ALL=(ALL) NOPASSWD: /usr/bin/calamares`;
-        content = `# ${live} ALL=(ALL) NOPASSWD: /usr/bin/calamares`;
+        let live = this.user_opt;
+        let content = '';
+        content += `# grants the live user passwordless permission to run /usr/bin/calamare\n`;
+        content += `${live} ALL=(ALL) NOPASSWD: /usr/bin/calamares\n`;
         let fname = '/etc/sudoers.d/calamares';
-        // su bionic fa un macello
-        if (this.distro.distroUniqueId !== 'bionic') {
-            fs.writeFileSync(fname, content, 'utf-8');
-        }
     }
 }
 /**

package/dist/classes/ovary.d/create-xdg-autostart.js

@@ -38,14 +38,13 @@ export async function createXdgAutostart(theme = 'eggs', myAddons, myLinks = [],
      */
     let installerLink = 'install-system.desktop';
     if (Pacman.calamaresExists()) {
-        /**
-         * Replace Exec in install-system.desktop per Biglinux e Bigcommunity
-         */
-        if (this.settings.distro.distroId === 'Biglinux' || this.settings.distro.distroId === 'Bigcommunity') {
-            let installSystemDesktop = path.resolve(__dirname, `../../../addons/${theme}/theme/applications/install-system.desktop`);
-            await exec(`sed -i 's|^Exec=.*|Exec=/usr/bin/calamares_polkit %f|' ${installSystemDesktop}`);
-        }
+        // 1. Copia il lanciatore .desktop STANDARD (quello con pkexec)
         shx.cp(path.resolve(__dirname, `../../../addons/${theme}/theme/applications/install-system.desktop`), `${this.settings.work_dir.merged}/usr/share/applications/`);
+        // 2. Copia la TUA policy Polkit per Calamares
+        const policySource = path.resolve(__dirname, '../../../assets/calamares/io.calamares.calamares.policy');
+        const policyDest = '/usr/share/polkit-1/actions/';
+        shx.cp(policySource, policyDest);
+        await exec(`sed -i 's/auth_admin/yes/' ${policyDest}io.calamares.calamares.policy`);
     }
     else if (Pacman.packageIsInstalled('live-installer')) {
         /**

package/dist/classes/ovary.d/luks-get-password.d.ts

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/luks-home.ts
+ * ./src/classes/ovary.d/luks-get-password.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com

package/dist/classes/ovary.d/luks-get-password.js

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/luks-home.ts
+ * ./src/classes/ovary.d/luks-get-password.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com

package/dist/classes/ovary.d/luks-helpers.d.ts

@@ -0,0 +1,19 @@
+/**
+ * ./src/classes/ovary.d/luks-helpers.ts
+ * penguins-eggs v.25.10.x / ecmascript 2020
+ * author: Piero Proietti
+ * email: piero.proietti@gmail.com
+ * license: MIT
+ */
+import Ovary from '../ovary.js';
+import { type CryptoConfig } from './luks-interactive-crypto-config.js';
+/**
+ * Funzione helper per eseguire comandi esterni in modo asincrono,
+ * gestendo lo standard input per passare le password.
+ * Restituisce una Promise che si risolve al successo o si rigetta in caso di errore.
+ */
+export declare function luksExecuteCommand(this: Ovary, command: string, args: string[], stdinData?: string): Promise<void>;
+/**
+ * buildLuksFormatArgs
+ */
+export declare function buildLuksFormatArgs(this: Ovary, config: CryptoConfig, luksFile: string): string[];

package/dist/classes/ovary.d/luks-helpers.js

@@ -0,0 +1,73 @@
+/**
+ * ./src/classes/ovary.d/luks-helpers.ts
+ * penguins-eggs v.25.10.x / ecmascript 2020
+ * author: Piero Proietti
+ * email: piero.proietti@gmail.com
+ * license: MIT
+ */
+import { spawn } from 'node:child_process';
+import Utils from '../utils.js';
+const noop = () => { };
+/**
+ * Funzione helper per eseguire comandi esterni in modo asincrono,
+ * gestendo lo standard input per passare le password.
+ * Restituisce una Promise che si risolve al successo o si rigetta in caso di errore.
+ */
+export function luksExecuteCommand(command, args, stdinData) {
+    if (!this.hidden) {
+        Utils.info(`${command} ${args.join(' ')}`);
+    }
+    return new Promise((resolve, reject) => {
+        // Se passiamo dati a stdin, dobbiamo usare 'pipe'. Altrimenti, 'inherit'.
+        const stdioConfig = stdinData ? ['pipe', 'inherit', 'inherit'] : 'inherit';
+        const process = spawn(command, args, { stdio: stdioConfig });
+        // Se fornito, scriviamo i dati (es. la password) nello stdin del processo.
+        if (stdinData && process.stdin) {
+            process.stdin.write(stdinData);
+            process.stdin.end();
+        }
+        process.on('error', (err) => {
+            reject(new Error(`Error starting command "${command}": ${err.message}`));
+        });
+        process.on('close', (code) => {
+            if (code === 0) {
+                resolve(); // Success
+            }
+            else {
+                reject(new Error(`Command "${command} ${args.join(' ')}" ended with error code ${code}`));
+            }
+        });
+    });
+}
+/**
+ * buildLuksFormatArgs
+ */
+export function buildLuksFormatArgs(config, luksFile) {
+    const args = [
+        '--batch-mode', // Per saltare la conferma "YES"
+        'luksFormat',
+        '--type', 'luks2',
+        // Parametri base
+        '--cipher', config.cipher,
+        '--key-size', config['key-size'].toString(),
+        '--hash', config.hash,
+        '--sector-size', config['sector-size'].toString(),
+        '--pbkdf', config.pbkdf,
+    ];
+    // Aggiungi i parametri condizionali del PBKDF
+    switch (config.pbkdf) {
+        case 'argon2id':
+        case 'argon2i':
+            const argonConfig = config;
+            args.push('--pbkdf-memory', argonConfig['pbkdf-memory (KiB)'].toString());
+            args.push('--pbkdf-parallel', argonConfig['pbkdf-parallel (threads)'].toString());
+            break;
+        case 'pbkdf2':
+            const pbkdf2Config = config;
+            args.push('--iter-time', pbkdf2Config['iter-time (ms)'].toString());
+            break;
+    }
+    // Aggiungi il file di destinazione
+    args.push(luksFile);
+    return args;
+}

package/dist/classes/ovary.d/luks-home-support.js

@@ -53,23 +53,18 @@ WantedBy=local-fs.target
     const servicePath = path.join(squashfsRoot, 'etc/systemd/system/mount-encrypted-home.service');
     const symlinkDir = path.join(squashfsRoot, 'etc/systemd/system/local-fs.target.wants');
     const symlinkPath = path.join(symlinkDir, 'mount-encrypted-home.service');
-    // Crea le directory necessarie
+    // Create dirs
     fs.mkdirSync(path.dirname(scriptPath), { recursive: true });
     fs.mkdirSync(path.dirname(servicePath), { recursive: true });
     fs.mkdirSync(symlinkDir, { recursive: true });
     // Scrivi lo script
     fs.writeFileSync(scriptPath, bashScript);
     fs.chmodSync(scriptPath, 0o755);
-    // console.log(`✓ Created: ${scriptPath}`)
     // Scrivi il service
     fs.writeFileSync(servicePath, systemdService);
-    // console.log(`✓ Created: ${servicePath}`)
     // Crea il symlink per abilitare il service
     if (fs.existsSync(symlinkPath)) {
         fs.unlinkSync(symlinkPath);
     }
     fs.symlinkSync('../mount-encrypted-home.service', symlinkPath);
-    // console.log(`✓ Enabled: mount-encrypted-home.service`)
-    // console.log('Encrypted home support installed successfully')
-    // console.log('Logs will be available at: /var/log/mount-encrypted-home.log')
 }

package/dist/classes/ovary.d/luks-home.js

@@ -7,7 +7,6 @@
  */
 // packages
 import fs from 'fs';
-import { spawn } from 'node:child_process';
 import Utils from '../utils.js';
 import { exec } from '../../lib/utils.js';
 const noop = () => { };
@@ -53,11 +52,13 @@ export async function luksHome(clone = false, homecrypt = false) {
         warning(`homes size: ${bytesToGB(size)}`);
         warning(`partition LUKS ${this.luksFile} size: ${bytesToGB(luksSize)}`);
         warning(`creating partition LUKS: ${this.luksFile}`);
-        await executeCommand('truncate', ['--size', `${luksSize}`, this.luksFile]);
+        await this.luksExecuteCommand('truncate', ['--size', `${luksSize}`, this.luksFile]);
         warning(`formatting ${this.luksFile} as a LUKS volume...`);
-        await executeCommand('cryptsetup', ['--batch-mode', 'luksFormat', this.luksFile], `${this.luksPassword}\n`);
+        //await this.luksExecuteCommand('cryptsetup', ['--batch-mode', 'luksFormat', this.luksFile], `${this.luksPassword}\n`);
+        const luksFormatArgs = this.buildLuksFormatArgs(this.luksConfig, this.luksFile);
+        await this.luksExecuteCommand('cryptsetup', luksFormatArgs, `${this.luksPassword}\n`);
         warning(`opening the LUKS volume. It will be mapped to ${this.luksDevice}`);
-        await executeCommand('cryptsetup', ['luksOpen', this.luksFile, this.luksMappedName], `${this.luksPassword}\n`);
+        await this.luksExecuteCommand('cryptsetup', ['luksOpen', this.luksFile, this.luksMappedName], `${this.luksPassword}\n`);
         warning(`formatting c ext4 `);
         await exec(`mkfs.ext4 -L live-home ${this.luksDevice}`, this.echo);
         warning(`mounting ${this.luksDevice} on ${this.luksMountpoint}`);
@@ -97,7 +98,7 @@ export async function luksHome(clone = false, homecrypt = false) {
         warning(`unmount ${this.luksDevice}`);
         await exec(`umount ${this.luksMountpoint}`, this.echo);
         warning(`closing LUKS volume ${this.luksMappedName}.`);
-        await executeCommand('cryptsetup', ['close', this.luksMappedName]);
+        await this.luksExecuteCommand('cryptsetup', ['close', this.luksMappedName]);
         warning(`moving ${this.luksMappedName}  to (ISO)/live/.`);
         await exec(`mv ${this.luksFile} ${this.settings.iso_work}/live`, this.echo);
         warning('encryption process successfully completed!');
@@ -114,40 +115,12 @@ export async function luksHome(clone = false, homecrypt = false) {
             await exec(`umount -lf ${this.luksMountpoint}`).catch(() => { });
         }
         if (fs.existsSync(this.luksDevice)) {
-            await executeCommand('cryptsetup', ['close', this.luksMappedName]).catch(() => { });
+            await this.luksExecuteCommand('cryptsetup', ['close', this.luksMappedName]).catch(() => { });
         }
         await Utils.pressKeyToExit();
         process.exit(1);
     }
 }
-/**
- * Funzione helper per eseguire comandi esterni in modo asincrono,
- * gestendo lo standard input per passare le password.
- * Restituisce una Promise che si risolve al successo o si rigetta in caso di errore.
- */
-function executeCommand(command, args, stdinData) {
-    return new Promise((resolve, reject) => {
-        // Se passiamo dati a stdin, dobbiamo usare 'pipe'. Altrimenti, 'inherit'.
-        const stdioConfig = stdinData ? ['pipe', 'inherit', 'inherit'] : 'inherit';
-        const process = spawn(command, args, { stdio: stdioConfig });
-        // Se fornito, scriviamo i dati (es. la password) nello stdin del processo.
-        if (stdinData && process.stdin) {
-            process.stdin.write(stdinData);
-            process.stdin.end();
-        }
-        process.on('error', (err) => {
-            reject(new Error(`Error starting command "${command}": ${err.message}`));
-        });
-        process.on('close', (code) => {
-            if (code === 0) {
-                resolve(); // Success
-            }
-            else {
-                reject(new Error(`Command "${command} ${args.join(' ')}" ended with error code ${code}`));
-            }
-        });
-    });
-}
 /**
  * Converte bytes in gigabytes per la visualizzazione.
  */

package/dist/classes/ovary.d/luks-interactive-crypto-config.js

@@ -50,7 +50,7 @@ const questions = [
         name: 'sector-size',
         message: 'Choose the sector size:',
         choices: SECTOR_SIZE_OPTIONS.map(size => ({
-            name: `${size} bytes ${size === 4096 ? '(Modern SSDs/NVMe)' : '(Legacy default)'}`,
+            name: `${size} bytes ${size === 4096 ? '(Modern SSDs/NVMe)' : '(Legacy default/Loop devices'}`,
             value: size,
         })),
         default: 512,
@@ -131,5 +131,9 @@ export async function interactiveCryptoConfig() {
     const answers = await inquirer.prompt(questions);
     // Use the double-cast fix to satisfy TypeScript
     const finalConfig = answers;
+    if (finalConfig['sector-size'] === 4096) {
+        Utils.warning(`in a loop device - regardless of the hardware - the sector_size will be set to 512`);
+        finalConfig['sector-size'] = 512;
+    }
     return finalConfig;
 }

package/dist/classes/ovary.d/luks-root-initrd.d.ts

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/initrd-luks.ts
+ * ./src/classes/ovary.d/luks-root-initrd.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com

package/dist/classes/ovary.d/luks-root-initrd.js

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/initrd-luks.ts
+ * ./src/classes/ovary.d/luks-root-initrd.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com

package/dist/classes/ovary.d/luks-root.d.ts

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/encrypt-live-fs.ts
+ * ./src/classes/ovary.d/luks-root.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com

package/dist/classes/ovary.d/luks-root.js

@@ -1,5 +1,5 @@
 /**
- * ./src/classes/ovary.d/encrypt-live-fs.ts
+ * ./src/classes/ovary.d/luks-root.ts
  * penguins-eggs v.25.10.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com
@@ -7,7 +7,6 @@
  */
 // packages
 import fs from 'fs';
-import { spawn } from 'node:child_process';
 import Utils from '../utils.js';
 import { exec } from '../../lib/utils.js';
 const noop = () => { };
@@ -29,7 +28,7 @@ export async function luksRoot() {
     const live_fs = `${this.settings.iso_work}live/filesystem.squashfs`;
     try {
         /**
-         * this.luksMappedName = 'luks.img';
+         * this.luksMappedName = 'root.img';
          * this.luksFile = `/tmp/${luksMappedName}`
          * this.luksDevice = `/dev/mapper/${luksMappedName}`
          * this.luksMountpoint = `/tmp/mnt/${luksMappedName}`
@@ -52,13 +51,12 @@ export async function luksRoot() {
         warning(`filesystem.squashfs size: ${bytesToGB(size)}`);
         warning(`partition LUKS ${this.luksFile} size: ${bytesToGB(luksSize)}`);
         warning(`creating partition LUKS: ${this.luksFile}`);
-        await executeCommand('truncate', ['--size', `${luksSize}`, this.luksFile]);
+        await this.luksExecuteCommand('truncate', ['--size', `${luksSize}`, this.luksFile]);
         warning(`formatting ${this.luksFile} as a LUKS volume...`);
-        // await executeCommand('cryptsetup', ['--batch-mode', 'luksFormat', this.luksFile], `${this.luksPassword}\n`);
-        const luksFormatArgs = buildLuksFormatArgs(this.luksConfig, this.luksFile);
-        await executeCommand('cryptsetup', luksFormatArgs, `${this.luksPassword}\n`);
+        const luksFormatArgs = this.buildLuksFormatArgs(this.luksConfig, this.luksFile);
+        await this.luksExecuteCommand('cryptsetup', luksFormatArgs, `${this.luksPassword}\n`);
         warning(`opening the LUKS volume. It will be mapped to ${this.luksDevice}`);
-        await executeCommand('cryptsetup', ['luksOpen', this.luksFile, this.luksMappedName], `${this.luksPassword}\n`);
+        await this.luksExecuteCommand('cryptsetup', ['luksOpen', this.luksFile, this.luksMappedName], `${this.luksPassword}\n`);
         warning(`formatting ext4 (without journal)...`);
         await exec(`mkfs.ext4 -O ^has_journal -L live-root ${this.luksDevice}`, this.echo);
         warning(`mounting ${this.luksDevice} on ${this.luksMountpoint}`);
@@ -92,7 +90,7 @@ export async function luksRoot() {
             throw umountError;
         }
         warning(`closing LUKS volume ${this.luksFile}.`);
-        await executeCommand('cryptsetup', ['close', this.luksMappedName]);
+        await this.luksExecuteCommand('cryptsetup', ['close', this.luksMappedName]);
         warning(`moving ${this.luksMappedName} on (ISO)/live.`);
         await exec(`mv ${this.luksFile} ${this.settings.iso_work}/live`, this.echo);
     }
@@ -108,40 +106,12 @@ export async function luksRoot() {
             await exec(`umount -lf ${this.luksMountpoint}`).catch(() => { });
         }
         if (fs.existsSync(this.luksDevice)) {
-            await executeCommand('cryptsetup', ['close', this.luksMappedName]).catch(() => { });
+            await this.luksExecuteCommand('cryptsetup', ['close', this.luksMappedName]).catch(() => { });
         }
         await Utils.pressKeyToExit();
         process.exit(1);
     }
 }
-/**
- * Funzione helper per eseguire comandi esterni in modo asincrono,
- * gestendo lo standard input per passare le password.
- * Restituisce una Promise che si risolve al successo o si rigetta in caso di errore.
- */
-function executeCommand(command, args, stdinData) {
-    return new Promise((resolve, reject) => {
-        // Se passiamo dati a stdin, dobbiamo usare 'pipe'. Altrimenti, 'inherit'.
-        const stdioConfig = stdinData ? ['pipe', 'inherit', 'inherit'] : 'inherit';
-        const process = spawn(command, args, { stdio: stdioConfig });
-        // Se fornito, scriviamo i dati (es. la password) nello stdin del processo.
-        if (stdinData && process.stdin) {
-            process.stdin.write(stdinData);
-            process.stdin.end();
-        }
-        process.on('error', (err) => {
-            reject(new Error(`Error starting command "${command}": ${err.message}`));
-        });
-        process.on('close', (code) => {
-            if (code === 0) {
-                resolve(); // Success
-            }
-            else {
-                reject(new Error(`Command "${command} ${args.join(' ')}" ended with error code ${code}`));
-            }
-        });
-    });
-}
 /**
  * Converte bytes in gigabytes per la visualizzazione.
  */
@@ -151,35 +121,3 @@ function bytesToGB(bytes) {
     const gigabytes = bytes / (1024 * 1024 * 1024);
     return gigabytes.toFixed(2) + ' GB';
 }
-/**
- * buildLuksFormatArgs
- */
-function buildLuksFormatArgs(config, luksFile) {
-    const args = [
-        '--batch-mode', // Per saltare la conferma "YES"
-        'luksFormat',
-        '--type', 'luks2',
-        // Parametri base
-        '--cipher', config.cipher,
-        '--key-size', config['key-size'].toString(),
-        '--hash', config.hash,
-        '--sector-size', config['sector-size'].toString(),
-        '--pbkdf', config.pbkdf,
-    ];
-    // Aggiungi i parametri condizionali del PBKDF
-    switch (config.pbkdf) {
-        case 'argon2id':
-        case 'argon2i':
-            const argonConfig = config;
-            args.push('--pbkdf-memory', argonConfig['pbkdf-memory (KiB)'].toString());
-            args.push('--pbkdf-parallel', argonConfig['pbkdf-parallel (threads)'].toString());
-            break;
-        case 'pbkdf2':
-            const pbkdf2Config = config;
-            args.push('--iter-time', pbkdf2Config['iter-time (ms)'].toString());
-            break;
-    }
-    // Aggiungi il file di destinazione
-    args.push(luksFile);
-    return args;
-}

package/dist/classes/ovary.d/make-efi.js

@@ -94,9 +94,11 @@ export async function makeEfi(theme = 'eggs') {
      * create grub.cfg (bridge) on (ISO)/boot/grub/x86_64-efi/grub.cfg
      */
     Utils.warning(`creating grub.cfg bridge to main. (ISO)/boot/grub/${Utils.uefiFormat()}`);
-    let cfgBridge = `${isoDir}/boot/grub/${Utils.uefiFormat()}/grub.cfg`;
+    let cfgBridge = path.join(isoDir, '/boot/grub/', Utils.uefiFormat(), '/grub.cfg');
     let cfgBridgeText = `# grub.cfg bridge\n`;
-    cfgBridgeText += `# created on ${cfgBridge}\n`;
+    if (!this.hidden) {
+        cfgBridgeText += `# created on ${cfgBridge}\n`;
+    }
     cfgBridgeText += `\n`;
     cfgBridgeText += `source /boot/grub/grub.cfg\n`;
     fs.writeFileSync(cfgBridge, cfgBridgeText);
@@ -235,8 +237,12 @@ export async function makeEfi(theme = 'eggs') {
     const kernel_parameters = Diversions.kernelParameters(this.familyId, this.volid, this.fullcrypt);
     const cfgMain = path.join(isoDir, '/boot/grub/grub.cfg');
     const template = fs.readFileSync(grubTemplate, 'utf8');
+    let fullname = this.settings.remix.fullname.toUpperCase();
+    if (this.hidden) {
+        fullname = "LINUX";
+    }
     const view = {
-        fullname: this.settings.remix.fullname.toUpperCase(),
+        fullname: fullname,
         initrdImg: `/live/${path.basename(this.initrd)}`,
         kernel: this.kernel,
         kernel_parameters,