← Back to branch summary

~glledo/ubiquity/ubiquity-crypto

2159 by Gerard
* Initial support for partman-crypto 
1
 
Experimental support for partman-crypto in ubiquity
2173 by gerard
* Documentation 
2
 
---------------------------------------------------

3
 









4



	Unfortunately, I'm not gonna have as much time available to develop 










5



this features as I had before.










6












7



	The status of the branch is unstable as hell, but I managed to get










8



ubiquity installed on a ciphered partition and working. If you want to










9



install it, use a gutsy live cd, apt-get ubiquity from this repository:










10



	deb http://geeksynapse.net/ubuntu gutsy main










11












12



	Then, before loading the installer, modprobe aes and dm-crypt. Then










13



follow the installer: the way to configure the ciphered partitions










14



is the same than in debian and quite straightfordward if you have done so










15



in debian already. Note that this has just been tested with a crypto










16



partition for / and a normal partition for /boot (without any swap).










17



When the installer is done, chroot to the target and install cryptsetup,










18



that contains the scripts necessary to mount the / at boot time (those are










19



stored in initrd). When rebooting, if it doesn't work, try with the recovery










20



mode










21












22



This is a list of TODO items (mostly bugs):










23



* WAITING CURSOR: When setting up the crypto partition, the cursor stays










24



	normal, and can lead to confusion (the user can think that the 










25



	partitioner is doing nothing or it has stopped working).










26












27



* ERROR MESSAGE: Just after setting up the crypto partition, the










28



	partitioner complains about the newly created crypto partition.










29












30



* KERNEL MODULES: The installer should modprobe by himself 'aes' and










31



	'dm_crypt'










32












33



* CRYPTSETUP: This tool is used to create and mount (or map) the encrypted










34



	devices. It needs to be installed in the live cd and in the target system.










35



	Nowadays, this tool is in universe (maybe needs to get promoted).










36












37



* TESTING: This installation has been always tested in the same way, and










38



	probably it will fail with bizarre configurations.










39












40



* OPTIONS: The ubiquity interface for the partman-crypto modules is just the










41



	necesssary passphrase (the option to erase the partition is there, but










42



	has no effect). All the other options are set to the defaults, and need










43



	to be implemented to be user-configurable.










44












45



* NICE BOOT INTERFACE: I explicitely removed the splash option from the grub










46



	installer (that hides the LUKS passphrase prompt). I guess that in the










47



	future, a nicer interface will be necessary.










48












49



* OTHERS THAT I COULD HAVE FORGOTTEN: :P