kevinveenbirkenbach/linux-image-manager
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/linux-image-manager.git synced 2025-09-09 19:57:11 +02:00
Code Issues Packages Projects Releases Wiki Activity

Added draft for storage encryption procedures

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach
2020-05-20 10:35:37 +02:00
parent 78bee8d0cc
commit 7f629205ef
11 changed files with 99 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
scripts/encryption/storage/base.sh Normal file
View File

@@ -0,0 +1,13 @@
#!/bin/bash
source "$(dirname "$(readlink -f "${0}")")/../../base.sh" || (echo "Loading base.sh failed." && exit 1)
set_device_mount_and_mapper_paths(){
set_device_path &&
mapper_name="encrypteddrive-$device" &&
mapper_path="/dev/mapper/$mapper_name" &&
mount_path="/media/$mapper_name" &&
info "mapper name set to : $mapper_name" &&
info "mapper path set to : $mapper_path" ||
info "mount path set to : $mount_path" ||
error
}

14
scripts/encryption/storage/mount.sh Normal file
View File

@@ -0,0 +1,14 @@
source "$(dirname "$(readlink -f "${0}")")/base.sh" || (echo "Loading base.sh failed." && exit 1)
echo "Mounting encrypted storage..."
set_device_mount_and_mapper_paths
info "Unlock partition..." &&
sudo cryptsetup luksOpen $device_path $mapper_name ||
error
info "Mount partition..." &&
sudo mount $mapper_path $mount_path ||
error
success "Mounting successfull :)"

40
scripts/encryption/storage/setup.sh Normal file
View File

@@ -0,0 +1,40 @@
source "$(dirname "$(readlink -f "${0}")")/base.sh" || (echo "Loading base.sh failed." && exit 1)
echo "Setups disk encryption"
set_device_mount_and_mapper_paths
info "Overwritting device \"$device_path\" with zeros..." &&
sudo dd if=/dev/zero of=$device_path bs=$OPTIMAL_BLOCKSIZE status=progress conv=fdatasync ||
error
info "Creating new GPT partition table..."
( echo "g" # create a new empty GPT partition table
echo "w" # Write partition table
)| sudo fdisk "$device_path" || error
info "Creating partition table..."
( echo "n" # Create GPT partition table
echo "p" # Create GPT partition table
echo "w" # Write partition table
)| sudo fdisk "$device_path" || error
info "Show memory devices..." &&
sudo fdisk -l || error
info "Encrypt $device_path..." &&
sudo cryptsetup -v -y luksFormat $device_path
info "Unlock partition..." &&
sudo cryptsetup luksOpen $device_path $mapper_name
info "Create btrfs file system..." &&
sudo mkfs.btrfs $mapper_path || error
info "Creating mount folder unter \"$mount_path\"..." &&
mkdir -p $mount_path || error
info "Mount partition..." &&
sudo mount $mapper_path $mount_path || error
info "Own partition by user..." &&
sudo chown -R $USER:$USER $mount_path || error

0
scripts/encryption/storage/umount.sh Normal file
View File