kairos-agent/internal/agent/hooks/kcrypt.go

package hook

import (
	"fmt"
	"strings"
	"time"

	config "github.com/kairos-io/kairos/pkg/config"
	"github.com/kairos-io/kairos/pkg/machine"
	"github.com/kairos-io/kairos/pkg/utils"

	kcryptconfig "github.com/kairos-io/kcrypt/pkg/config"
)

type Kcrypt struct{}

func (k Kcrypt) Run(c config.Config) error {

	if len(c.Install.Encrypt) == 0 {
		return nil
	}

	machine.Mount("COS_OEM", "/oem") //nolint:errcheck
	defer func() {
		machine.Umount("/oem") //nolint:errcheck
	}()

	kcryptc, err := kcryptconfig.GetConfiguration(kcryptconfig.ConfigScanDirs)
	if err != nil {
		fmt.Println("Failed getting kcrypt configuration: ", err.Error())
		if c.FailOnBundleErrors {
			return err
		}
	}

	for _, p := range c.Install.Encrypt {
		out, err := utils.SH(fmt.Sprintf("kcrypt encrypt %s", p))
		if err != nil {
			fmt.Printf("could not encrypt partition: %s\n", out+err.Error())
			if c.FailOnBundleErrors {
				return err
			}
			// Give time to show the error
			time.Sleep(10 * time.Second)
			return nil // do not error out
		}

		err = kcryptc.SetMapping(strings.TrimSpace(out))
		if err != nil {
			fmt.Println("Failed updating the kcrypt configuration file: ", err.Error())
			if c.FailOnBundleErrors {
				return err
			}
		}
	}

	err = kcryptc.WriteMappings(kcryptconfig.MappingsFile)
	if err != nil {
		fmt.Println("Failed writing kcrypt partition mappings: ", err.Error())
		if c.FailOnBundleErrors {
			return err
		}
	}

	return nil
}
sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`package hook`

			`import (`
			`"fmt"`
Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`"strings"`
sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`"time"`

			`config "github.com/kairos-io/kairos/pkg/config"`
sparkles: Minor enhancements (#239) * :bug: Fixup grub option quoting * :gear: Copy discovery to oem if found * :sparkles: Add environment block to install * :gear: Use /oem for mount in kcrypt post-hook * :memo: Update docs with installer env reference * :robot: Add test deps * :gear: Be consistent and set env also for post-hooks * :gear: propagate env in post-hooks 2022-10-18 05:45:07 +00:00			`"github.com/kairos-io/kairos/pkg/machine"`
sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`"github.com/kairos-io/kairos/pkg/utils"`
Persist partition label/uuid mapping whenever we encrypt a partition (#408) Fixes: https://github.com/kairos-io/kairos/issues/380 Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2022-11-16 11:35:59 +00:00
Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`kcryptconfig "github.com/kairos-io/kcrypt/pkg/config"`
sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`)`

			`type Kcrypt struct{}`

			`func (k Kcrypt) Run(c config.Config) error {`
sparkles: Minor enhancements (#239) * :bug: Fixup grub option quoting * :gear: Copy discovery to oem if found * :sparkles: Add environment block to install * :gear: Use /oem for mount in kcrypt post-hook * :memo: Update docs with installer env reference * :robot: Add test deps * :gear: Be consistent and set env also for post-hooks * :gear: propagate env in post-hooks 2022-10-18 05:45:07 +00:00
			`if len(c.Install.Encrypt) == 0 {`
			`return nil`
			`}`

			`machine.Mount("COS_OEM", "/oem") //nolint:errcheck`
			`defer func() {`
sparkles: state api sdk (#262) * :sparkles: Add state api This is related to https://github.com/kairos-io/kairos/issues/34. Starts to unify the API to retrieve the state in the sdk to have a common place to query system status information. * :robot: Add test * Update go.mod * :gear: Fine-tune detection of partitions * :robot: Add more fine-grained tests * :art: Add /dev/ to partition name * :robot: Fixup tests * :gear: Remount accessors * :sparkles: Add state partition to cloud-init paths * :memo: Upper case Kairos in motd * :art: Add mounts sdk * :art: Set grub options via SDK * :art: Make it more idiomatic 2022-10-23 18:22:32 +00:00			`machine.Umount("/oem") //nolint:errcheck`
sparkles: Minor enhancements (#239) * :bug: Fixup grub option quoting * :gear: Copy discovery to oem if found * :sparkles: Add environment block to install * :gear: Use /oem for mount in kcrypt post-hook * :memo: Update docs with installer env reference * :robot: Add test deps * :gear: Be consistent and set env also for post-hooks * :gear: propagate env in post-hooks 2022-10-18 05:45:07 +00:00			`}()`

Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`kcryptc, err := kcryptconfig.GetConfiguration(kcryptconfig.ConfigScanDirs)`
			`if err != nil {`
			`fmt.Println("Failed getting kcrypt configuration: ", err.Error())`
			`if c.FailOnBundleErrors {`
			`return err`
			`}`
			`}`

sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`for _, p := range c.Install.Encrypt {`
			`out, err := utils.SH(fmt.Sprintf("kcrypt encrypt %s", p))`
			`if err != nil {`
			`fmt.Printf("could not encrypt partition: %s\n", out+err.Error())`
			`if c.FailOnBundleErrors {`
			`return err`
			`}`
			`// Give time to show the error`
			`time.Sleep(10 * time.Second)`
			`return nil // do not error out`
			`}`
Persist partition label/uuid mapping whenever we encrypt a partition (#408) Fixes: https://github.com/kairos-io/kairos/issues/380 Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2022-11-16 11:35:59 +00:00
Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`err = kcryptc.SetMapping(strings.TrimSpace(out))`
Persist partition label/uuid mapping whenever we encrypt a partition (#408) Fixes: https://github.com/kairos-io/kairos/issues/380 Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2022-11-16 11:35:59 +00:00			`if err != nil {`
Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`fmt.Println("Failed updating the kcrypt configuration file: ", err.Error())`
Persist partition label/uuid mapping whenever we encrypt a partition (#408) Fixes: https://github.com/kairos-io/kairos/issues/380 Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2022-11-16 11:35:59 +00:00			`if c.FailOnBundleErrors {`
			`return err`
			`}`
			`}`
Use new kcrypt/config package (#669) Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2023-01-18 13:14:57 +00:00			`}`

			`err = kcryptc.WriteMappings(kcryptconfig.MappingsFile)`
			`if err != nil {`
			`fmt.Println("Failed writing kcrypt partition mappings: ", err.Error())`
			`if c.FailOnBundleErrors {`
			`return err`
Persist partition label/uuid mapping whenever we encrypt a partition (#408) Fixes: https://github.com/kairos-io/kairos/issues/380 Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> Signed-off-by: Dimitris Karakasilis <dimitris@karakasilis.me> 2022-11-16 11:35:59 +00:00			`}`
sparkles: Add kcrypt to images (#195) * :sparkles: Add kcrypt to images This adds the dracut module and the binary to the images. Related to https://github.com/kairos-io/kairos/issues/184 * :sparkles: Add Kcrypt post-install hook Fixes https://github.com/kairos-io/kairos/issues/184 2022-10-07 11:36:32 +00:00			`}`

			`return nil`
			`}`