From 6d2832ebae620952e56fbb8e628ba4f3be64cc2c Mon Sep 17 00:00:00 2001
From: Eric Hameleers <alien@slackware.com>
Date: Fri, 24 Jun 2016 23:30:02 +0200
Subject: iso2usb.sh: make the name of the '/home' LUKS container configurable.

New parameter to the script:
  -l|--lukshome <name>       Custom path to the containerfile for your LUKS
                             encrypted /home (slhome by default).

Note: not only (just as with the persistence container) can you choose
a custom name for the the LUKS container file but you can also create it
in a subdirectory instead of in the filesystem root now.
---
 iso2usb.sh | 62 ++++++++++++++++++++++++++++++++++++++++++++------------------
 1 file changed, 44 insertions(+), 18 deletions(-)

(limited to 'iso2usb.sh')

diff --git a/iso2usb.sh b/iso2usb.sh
index 11c9605..e0aa770 100644
--- a/iso2usb.sh
+++ b/iso2usb.sh
@@ -26,6 +26,10 @@ set -e
 # Set to '1' if you want to ignore all warnings:
 FORCE=0
 
+# By default, we use 'slhome.img' as the name of the LUKS home containerfile.
+DEF_SLHOME="slhome"
+SLHOME="${DEF_SLHOME}"
+
 # By default, we use 'persistence' as the name of the persistence directory,
 # or 'persistence.img' as the name of the persistence container:
 DEF_PERSISTENCE="persistence"
@@ -66,6 +70,7 @@ IMGDIR=""
 ISOMNT=""
 CNTMNT=""
 USBMNT=""
+US2MNT=""
 
 # Compressor used on the initrd ("gzip" or "xz --check=crc32");
 # Note that the kernel's XZ decompressor does not understand CRC64:
@@ -93,6 +98,7 @@ cleanup() {
   [ -n "${ISOMNT}" ] && ( /sbin/umount -f ${ISOMNT} 2>/dev/null; rmdir $ISOMNT )
   [ -n "${CNTMNT}" ] && ( /sbin/umount -f ${CNTMNT} 2>/dev/null; rmdir $CNTMNT )
   [ -n "${USBMNT}" ] && ( /sbin/umount -f ${USBMNT} 2>/dev/null; rmdir $USBMNT )
+  [ -n "${US2MNT}" ] && ( /sbin/umount -f ${US2MNT} 2>/dev/null; rmdir $US2MNT )
   [ -n "${IMGDIR}" ] && ( rm -rf $IMGDIR )
   set -e
 }
@@ -116,8 +122,11 @@ cat <<EOT
 #   -f|--force                 Ignore most warnings (except the back-out).
 #   -h|--help                  This help.
 #   -i|--infile <filename>     Full path to the ISO image file.
+#   -l|--lukshome <name>       Custom path to the containerfile for your LUKS
+#                              encrypted /home ($SLHOME by default).
 #   -o|--outdev <filename>     The device name of your USB drive.
-#   -p|--persistence <dirname> Custom name of the 'persistence' directory.
+#   -p|--persistence <name>    Custom path to the 'persistence' directory
+#                              or containerfile ($PERSISTENCE by default).
 #   -r|--refresh               Refresh the USB stick with the ISO content.
 #                              No formatting, do not touch user content.
 #   -u|--unattended            Do not ask any questions.
@@ -184,15 +193,19 @@ update_initrd() {
     if [ $REFRESH -eq 1 ]; then
       echo "--- Refreshing Slackware initrd..."
       WAIT="$OLDWAIT"
+      if [ -n "$OLDLUKS" ]; then
+        echo "--- Detected LUKS container configuration:"
+        echo "$OLDLUKS" | sed 's/^/    /'
+      fi
       echo "$OLDLUKS" >> luksdev
       if [ "${PERSISTENCE}" != "${DEF_PERSISTENCE}" ]; then
         # If the user specified a nonstandard persistence, use that:
         echo "--- Updating persistence from '$OLDPERSISTENCE' to '$PERSISTENCE'"
         sed -i -e "s,^PERSISTENCE=.*,PERSISTENCE=\"${PERSISTENCE}\"," init
-      elif ["${PERSISTENCE}" != "${OLDPERSISTENCE}" ]; then
+      elif [ "${PERSISTENCE}" != "${OLDPERSISTENCE}" ]; then
         # The user did not specify persistence, re-use the retrieved value:
         sed -i -e "s,^PERSISTENCE=.*,PERSISTENCE=\"${OLDPERSISTENCE}\"," init
-        echo "--- Updating persistence from '$PERSISTENCE' to '$OLDPERSISTENCE'"
+        echo "--- Re-use previous '$OLDPERSISTENCE' for persistence"
         PERSISTENCE="${OLDPERSISTENCE}"
       fi
     else
@@ -358,6 +371,10 @@ while [ ! -z "$1" ]; do
       SLISO="$(cd $(dirname $2); pwd)/$(basename $2)"
       shift 2
       ;;
+    -l|--lukshome)
+      SLHOME="$2"
+      shift 2
+      ;;
     -o|--outdev)
       TARGET="$2"
       shift 2
@@ -527,7 +544,7 @@ if [ ! -d $ISOMNT ]; then
 else
   chmod 711 $ISOMNT
 fi
-# USB mount:
+# USB mounts:
 USBMNT=$(mktemp -d -p /mnt -t alienusb.XXXXXX)
 if [ ! -d $USBMNT ]; then
   echo "*** Failed to create a temporary mount point for the USB device!"
@@ -536,6 +553,14 @@ if [ ! -d $USBMNT ]; then
 else
   chmod 711 $USBMNT
 fi
+US2MNT=$(mktemp -d -p /mnt -t alienus2.XXXXXX)
+if [ ! -d $US2MNT ]; then
+  echo "*** Failed to create a temporary mount point for the USB device!"
+  cleanup
+  exit 1
+else
+  chmod 711 $US2MNT
+fi
 
 # Mount the Linux partition:
 /sbin/mount -t auto ${TARGET}3 ${USBMNT}
@@ -595,13 +620,15 @@ fi
 
 if [ $DOLUKS -eq 1 ]; then
   # Create LUKS container file:
-  create_container ${TARGET}3 ${HLUKSSIZE} slhome luks /home
+  create_container ${TARGET}3 ${HLUKSSIZE} ${SLHOME} luks /home
   LUKSHOME=${CNTFILE}
 fi
 
 # Update the initrd with regard to USB wait time, persistence and LUKS.
 # If this is a refresh and anything changed to persistence, then the
-# variable $PERSISTENCE will have the correct value when exing this call:
+# variable $PERSISTENCE will have the correct value when exing this function:
+# If you want to move your LUKS home containerfile you'll have to do that
+# manually - not a supported option for now.
 update_initrd ${USBMNT}/boot/initrd.img
 
 if [ $REFRESH -eq 1 ]; then
@@ -657,35 +684,34 @@ mv ${USBMNT}/boot/extlinux/isolinux.cfg ${USBMNT}/boot/extlinux/extlinux.conf
 rm -f ${USBMNT}/boot/extlinux/isolinux.*
 /sbin/extlinux --install ${USBMNT}/boot/extlinux
 
-# No longer needed:
-if /sbin/mount |grep -qw ${USBMNT} ; then /sbin/umount ${USBMNT} ; fi
-
 if [ $EFIBOOT -eq 1 ]; then
   # Mount the EFI partition and copy /EFI as well as /boot directories into it:
-  /sbin/mount -t vfat -o shortname=mixed ${TARGET}2 ${USBMNT}
-  mkdir -p ${USBMNT}/EFI/BOOT
-  rsync -rlptD ${ISOMNT}/EFI/BOOT/* ${USBMNT}/EFI/BOOT/
+  /sbin/mount -t vfat -o shortname=mixed ${TARGET}2 ${US2MNT}
+  mkdir -p ${US2MNT}/EFI/BOOT
+  rsync -rlptD ${ISOMNT}/EFI/BOOT/* ${US2MNT}/EFI/BOOT/
   mkdir -p ${USBMNT}/boot
   echo "--- Copying EFI boot files from ISO to USB."
   if [ $VERBOSE -eq 1 ]; then
-    rsync -rlptD -v ${ISOMNT}/boot/* ${USBMNT}/boot/
+    rsync -rlptD -v ${ISOMNT}/boot/* ${US2MNT}/boot/
   else
-    rsync -rlptD ${ISOMNT}/boot/* ${USBMNT}/boot/
+    rsync -rlptD ${ISOMNT}/boot/* ${US2MNT}/boot/
   fi
   if [ $REFRESH -eq 1 ]; then
     # Clean out old Live system data:
     echo "--- Cleaning out old Live system data."
     rsync -rlptD --delete \
-      ${ISOMNT}/EFI/BOOT/ ${USBMNT}/EFI/BOOT/
+      ${ISOMNT}/EFI/BOOT/ ${US2MNT}/EFI/BOOT/
     rsync -rlptD --delete \
-      ${ISOMNT}/boot/ ${USBMNT}/boot/
+      ${ISOMNT}/boot/ ${US2MNT}/boot/
   fi
-  # Update the initrd with longer USB wait time and LUKS container info:
-  update_initrd ${USBMNT}/boot/initrd.img
+  # Copy the modified initrd over from the Linux partition:
+  cat ${USBMNT}/boot/initrd.img > ${US2MNT}/boot/initrd.img
+  sync
 fi
 
 # No longer needed:
 if /sbin/mount |grep -qw ${USBMNT} ; then /sbin/umount ${USBMNT} ; fi
+if /sbin/mount |grep -qw ${US2MNT} ; then /sbin/umount ${US2MNT} ; fi
 
 # Unmount/remove stuff:
 cleanup
-- 
cgit v1.2.3