This repository has been archived by the owner on Jul 1, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 34
/
Copy pathinstall.sh
94 lines (85 loc) · 2.94 KB
/
install.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
#!/bin/bash
if [[ `whoami` != "root" ]]; then
# Run as root to avoid Console logging sudo commands.
echo "Attempting to re-run as root..."
curl -L https://raw.github.com/jridgewell/Unlock/master/install.sh -o install.sh
chmod +x install.sh
sudo bash ./install.sh
rm install.sh
exit
fi
mkdir tmp_install_unlock
cd tmp_install_unlock
echo "--------------------------"
echo ""
echo "Downloading..."
# Download the needed files.
curl -L "https://raw.github.com/jridgewell/Unlock/master/files/name.ridgewell.unlock.plist" -o name.ridgewell.unlock.plist
curl -L "https://github.com/downloads/jridgewell/Unlock/name.ridgewell.unlock" --location -o name.ridgewell.unlock
echo "--------------------------"
echo ""
echo "Installing..."
# Move to the LaunchDaemons dir, and set permissions
mkdir -p /Library/PrivilegedHelperTools/
mv name.ridgewell.unlock.plist /Library/LaunchDaemons/
mv name.ridgewell.unlock /Library/PrivilegedHelperTools/
chown root:wheel /Library/LaunchDaemons/name.ridgewell.unlock.plist
chown root:wheel /Library/PrivilegedHelperTools/name.ridgewell.unlock
chmod 644 /Library/LaunchDaemons/name.ridgewell.unlock.plist
chmod 755 /Library/PrivilegedHelperTools/name.ridgewell.unlock
vname() { echo `diskutil cs info $1 | grep "Volume Name" | cut -d : -f 2 | sed -e 's/^\ *//'`; }
unlock() {
echo "What is the passphrase used to encrypt ${2}?"
read -s password < /dev/tty
# Add the password to the System keychain
security add -a "${1}" -D "Encrypted Volume Password" -l "Unlock: ${2}" -s "name.ridgewell.unlock" \
-w "${password}" -T "" -T "/Library/PrivilegedHelperTools/name.ridgewell.unlock" -U "/Library/Keychains/System.keychain"
}
ask() {
# Get the name of the volume with UUID
name=`vname $1`
echo "Do you want to unlock ${name} at boot? (y/N)"
read yn < /dev/tty
# Make user input lowercase
answer=`echo ${yn}| awk '{print tolower($0)}'`
if [[ $answer = "y" || $answer = "yes" ]]; then
unlock $1 $name
fi
}
if [ -d tmp_install_unlock ]; then
# In case command was exited before
rm -r tmp_install_unlock
fi
boolUUID=false
bootUUID=`diskutil cs info \`mount | grep " / " | cut -d " " -f 1\` 2>/dev/null | grep UUID | grep -v LV | cut -d : -f 2 | sed -e 's/^\ *//'`
# http://stackoverflow.com/questions/893585/how-to-parse-xml-in-bash#answer-2608159
rdom() { local IFS=\> ; read -d \< E C ;}
CSVs=`diskutil cs list -plist`
echo $CSVs | while rdom; do
if [[ $E = "string" ]]; then
# All the important stuff is inside the "string" elements
echo "$C"
fi
done | \
while read LINE; do
# Loop through all found LVGs, LVFs, LVs
if $boolUUID; then
# If this is a LV's UUID, ask if they want to unlock it
if [[ $bootUUID != $LINE ]]; then
# Don't ask about the boot volume, File Vault will take care of that one
ask $LINE
fi
fi
if [[ $LINE = "LV" ]]; then
# If true, the next line will be a LV's UUID
boolUUID=true
else
boolUUID=false
fi
done
# Cleanup
cd ..
rm -r tmp_install_unlock
echo "--------------------------"
echo ""
echo "Installed!"