puter/packages/disk/disk.bash

#!/usr/bin/env bash

set -o errexit
set -o nounset
set -o pipefail

progname="$0"

warn() {
    local line
    for line in "$@"; do
        echo "$progname: $line" 1>&2
    done
}

error() {
    warn "$@"

    exit 1
}

args=$(getopt --options r:m:b:l:c: --longoptions=root:,mapping:,boot-label:,main-label:,cryptmain-label: --name "$progname" -- "$@")

eval set -- "$args"

root=/mnt
mapping=main
bootlbl=BOOT
mainlbl=main
cryptmainlbl=cryptmain
while true; do
  case "$1" in
  (-r | --root)
    root=$2
    shift 2
    ;;
  (-m | --mapping)
    mapping=$2
    shift 2
    ;;
  (-b | --boot-label)
    bootlbl=${2^^}
    shift 2
    ;;
  (-l | --main-label)
    mainlbl=$2
    shift 2
    ;;
  (-c | --cryptmain-label)
    cryptmainlbl=$2
    shift 2
    ;;
  (--)
    shift
    break
    ;;
  esac
done

if (( $# < 1 )); then
  error 'an argument specifying the block device is required'
fi

if (( $# > 1 )); then
  error 'too many arguments'
fi

blkdev=$1

sfdisk --label gpt --quiet -- "$blkdev" <<EOF
,512M,U;
,,L;
EOF

parts=()
json=$(sfdisk --json -- "$blkdev")
while IFS= read -r k; do
  parts+=("$(jq --argjson k "$k" --raw-output '.partitiontable.partitions[$k].node' <<<"$json")")
done < <(jq '.partitiontable.partitions | keys[]' <<<"$json")

bootfs="${parts[0]}"
mainblkdev="${parts[1]}"

mkfs.vfat -F 32 -n "$bootlbl" -- "$bootfs" >/dev/null

while true; do
  read -r -p 'Do you want your main partition to be encrypted [y/N]? ' luks
  case "$luks" in
  ([Yy]*)
    while true; do
      read -r -s -p 'Enter password: ' password
      warn ''
      read -r -s -p 'Re-enter password: ' repassword
      warn ''
      if [[ $password == "$repassword" ]]; then
        break
      fi
    done

    cryptsetup luksFormat --batch-mode --label "$cryptmainlbl" "$mainblkdev" <<<"$password"
    cryptsetup open "$mainblkdev" "$mapping" <<<"$password"

    mainfs=/dev/mapper/$mapping
    break
    ;;
  ('' | [Nn]*)
    mainfs=$mainblkdev
    break
    ;;
  (*) warn 'Please answer with yes or no' ;;
  esac
done

mkfs.ext4 -q -F -L "$mainlbl" -- "$mainfs"
mkdir --parents -- "$root"
mount --options noatime -- "$mainfs" "$root"

mkdir -- "$root/boot"
mount -- "$bootfs" "$root/boot"
hooks 2024-12-01 16:43:53 +00:00			`#!/usr/bin/env bash`

init 2024-02-04 20:51:11 +00:00			`set -o errexit`
			`set -o nounset`
			`set -o pipefail`

improvements 2024-12-27 00:20:40 +00:00			`progname="$0"`
init 2024-02-04 20:51:11 +00:00
fix 2025-01-05 15:58:54 +00:00			`warn() {`
			`local line`
improvements 2024-12-27 00:20:40 +00:00			`for line in "$@"; do`
fix 2025-01-05 15:58:54 +00:00			`echo "$progname: $line" 1>&2`
improvements 2024-12-27 00:20:40 +00:00			`done`
fix 2025-01-05 15:58:54 +00:00			`}`

			`error() {`
			`warn "$@"`
improvements 2024-12-27 00:20:40 +00:00
			`exit 1`
			`}`

			`args=$(getopt --options r:m:b:l:c: --longoptions=root:,mapping:,boot-label:,main-label:,cryptmain-label: --name "$progname" -- "$@")`

			`eval set -- "$args"`
init 2024-02-04 20:51:11 +00:00
			`root=/mnt`
whatever 2024-12-01 04:03:34 +00:00			`mapping=main`
init 2024-02-04 20:51:11 +00:00			`bootlbl=BOOT`
			`mainlbl=main`
whatever 2024-12-01 04:03:34 +00:00			`cryptmainlbl=cryptmain`
init 2024-02-04 20:51:11 +00:00			`while true; do`
			`case "$1" in`
improvements 2024-12-27 00:20:40 +00:00			`(-r \| --root)`
init 2024-02-04 20:51:11 +00:00			`root=$2`
			`shift 2`
			`;;`
improvements 2024-12-27 00:20:40 +00:00			`(-m \| --mapping)`
whatever 2024-12-01 04:03:34 +00:00			`mapping=$2`
			`shift 2`
			`;;`
improvements 2024-12-27 00:20:40 +00:00			`(-b \| --boot-label)`
init 2024-02-04 20:51:11 +00:00			`bootlbl=${2^^}`
			`shift 2`
			`;;`
improvements 2024-12-27 00:20:40 +00:00			`(-l \| --main-label)`
init 2024-02-04 20:51:11 +00:00			`mainlbl=$2`
			`shift 2`
			`;;`
improvements 2024-12-27 00:20:40 +00:00			`(-c \| --cryptmain-label)`
whatever 2024-12-01 04:03:34 +00:00			`cryptmainlbl=$2`
			`shift 2`
			`;;`
improvements 2024-12-27 00:20:40 +00:00			`(--)`
init 2024-02-04 20:51:11 +00:00			`shift`
			`break`
			`;;`
			`esac`
			`done`

improvements 2024-12-27 00:20:40 +00:00			`if (( $# < 1 )); then`
			`error 'an argument specifying the block device is required'`
			`fi`

			`if (( $# > 1 )); then`
			`error 'too many arguments'`
init 2024-02-04 20:51:11 +00:00			`fi`

			`blkdev=$1`

			`sfdisk --label gpt --quiet -- "$blkdev" <<EOF`
remove mail 2024-04-20 19:49:50 +00:00			`,512M,U;`
			`,,L;`
init 2024-02-04 20:51:11 +00:00			`EOF`

			`parts=()`
			`json=$(sfdisk --json -- "$blkdev")`
			`while IFS= read -r k; do`
			`parts+=("$(jq --argjson k "$k" --raw-output '.partitiontable.partitions[$k].node' <<<"$json")")`
			`done < <(jq '.partitiontable.partitions \| keys[]' <<<"$json")`

			`bootfs="${parts[0]}"`
whatever 2024-12-01 04:03:34 +00:00			`mainblkdev="${parts[1]}"`
init 2024-02-04 20:51:11 +00:00
			`mkfs.vfat -F 32 -n "$bootlbl" -- "$bootfs" >/dev/null`

whatever 2024-12-01 04:03:34 +00:00			`while true; do`
			`read -r -p 'Do you want your main partition to be encrypted [y/N]? ' luks`
			`case "$luks" in`
disk 2024-12-14 10:59:14 +00:00			`([Yy]*)`
whatever 2024-12-01 04:03:34 +00:00			`while true; do`
			`read -r -s -p 'Enter password: ' password`
fix 2025-01-05 15:58:54 +00:00			`warn ''`
whatever 2024-12-01 04:03:34 +00:00			`read -r -s -p 'Re-enter password: ' repassword`
fix 2025-01-05 15:58:54 +00:00			`warn ''`
hooks 2024-12-01 16:43:53 +00:00			`if [[ $password == "$repassword" ]]; then`
whatever 2024-12-01 04:03:34 +00:00			`break`
			`fi`
			`done`

			`cryptsetup luksFormat --batch-mode --label "$cryptmainlbl" "$mainblkdev" <<<"$password"`
			`cryptsetup open "$mainblkdev" "$mapping" <<<"$password"`

			`mainfs=/dev/mapper/$mapping`
			`break`
			`;;`
disk 2024-12-14 10:59:14 +00:00			`('' \| [Nn]*)`
whatever 2024-12-01 04:03:34 +00:00			`mainfs=$mainblkdev`
			`break`
			`;;`
fix 2025-01-05 15:58:54 +00:00			`(*) warn 'Please answer with yes or no' ;;`
whatever 2024-12-01 04:03:34 +00:00			`esac`
			`done`

revamp 2024-07-01 22:06:05 +00:00			`mkfs.ext4 -q -F -L "$mainlbl" -- "$mainfs"`
init 2024-02-04 20:51:11 +00:00			`mkdir --parents -- "$root"`
revamp 2024-07-01 22:06:05 +00:00			`mount --options noatime -- "$mainfs" "$root"`
init 2024-02-04 20:51:11 +00:00
			`mkdir -- "$root/boot"`
			`mount -- "$bootfs" "$root/boot"`