Raspi2-3_GenImage Commit - r695:8cb208392eb0 · Collaboration Tremplin des Sciences

838

# Initialize encrypted partition

838

# Initialize encrypted partition

839

cryptsetup --verbose --debug -q luksFormat "${ROOT_LOOP}" -c "${CRYPTFS_CIPHER}" -h "${CRYPTFS_HASH}" -s "${CRYPTFS_XTSKEYSIZE}" .password

839

cryptsetup --verbose --debug -q luksFormat "${ROOT_LOOP}" -c "${CRYPTFS_CIPHER}" -h "${CRYPTFS_HASH}" -s "${CRYPTFS_XTSKEYSIZE}" .password

840

841

# Update temporary loop device

842

ROOT_LOOP="/dev/mapper/${CRYPTFS_MAPPING}"

843

844

# Open encrypted partition and setup mapping

841

# Open encrypted partition and setup mapping

845

cryptsetup luksOpen "${ROOT_LOOP}" -d .password "${CRYPTFS_MAPPING}"

842

cryptsetup luksOpen "${ROOT_LOOP}" -d .password "${CRYPTFS_MAPPING}"

846

843

847

# Secure delete password keyfile

844

# Secure delete password keyfile

848

shred -zu .password

845

shred -zu .password

849

846

847

# Update temporary loop device

848

ROOT_LOOP="/dev/mapper/${CRYPTFS_MAPPING}"

849

850

# Wipe encrypted partition (encryption cipher is used for randomness)

850

# Wipe encrypted partition (encryption cipher is used for randomness)

851

dd if=/dev/zero of="${ROOT_LOOP}" bs=512 count="$(blockdev --getsz "${ROOT_LOOP}")"

851

dd if=/dev/zero of="${ROOT_LOOP}" bs=512 count="$(blockdev --getsz "${ROOT_LOOP}")"

852

fi

852

fi

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

               # Initialize encrypted partition
               cryptsetup --verbose --debug -q luksFormat "${ROOT_LOOP}" -c "${CRYPTFS_CIPHER}" -h "${CRYPTFS_HASH}" -s "${CRYPTFS_XTSKEYSIZE}" .password
-              # Update temporary loop device
-              ROOT_LOOP="/dev/mapper/${CRYPTFS_MAPPING}"
               # Open encrypted partition and setup mapping
               cryptsetup luksOpen "${ROOT_LOOP}" -d .password "${CRYPTFS_MAPPING}"
               # Secure delete password keyfile
               shred -zu .password
+              # Update temporary loop device
+              ROOT_LOOP="/dev/mapper/${CRYPTFS_MAPPING}"
               # Wipe encrypted partition (encryption cipher is used for randomness)
               dd if=/dev/zero of="${ROOT_LOOP}" bs=512 count="$(blockdev --getsz "${ROOT_LOOP}")"
             fi