mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-12-30 15:38:06 +01:00
58 lines
1.1 KiB
Bash
Executable File
58 lines
1.1 KiB
Bash
Executable File
#!/bin/sh
|
|
#
|
|
# $FreeBSD$
|
|
#
|
|
|
|
# PROVIDE: disks
|
|
# REQUIRE: initrandom
|
|
# KEYWORD: nojail
|
|
|
|
. /etc/rc.subr
|
|
|
|
name="encswap"
|
|
start_cmd="encswap_attach"
|
|
stop_cmd="encswap_detach"
|
|
|
|
encswap_attach()
|
|
{
|
|
while read device mountpoint type options rest ; do
|
|
case ":${device}:${type}:${options}" in
|
|
:#*)
|
|
continue
|
|
;;
|
|
*.bde:swap:sw)
|
|
passphrase=`dd if=/dev/random count=1 2>/dev/null | md5 -q`
|
|
device="${device%.bde}"
|
|
gbde init "${device}" -P "${passphrase}" || return 1
|
|
gbde attach "${device}" -p "${passphrase}" || return 1
|
|
;;
|
|
*.eli:swap:sw)
|
|
device="${device%.eli}"
|
|
geli onetime ${geli_swap_flags} "${device}" || return 1
|
|
;;
|
|
esac
|
|
done < /etc/fstab
|
|
}
|
|
|
|
encswap_detach()
|
|
{
|
|
while read device mountpoint type options rest ; do
|
|
case ":${device}:${type}:${options}" in
|
|
:#*)
|
|
continue
|
|
;;
|
|
*.bde:swap:sw)
|
|
device="${device%.bde}"
|
|
gbde detach "${device}"
|
|
;;
|
|
*.eli:swap:sw)
|
|
# Nothing here, because geli swap devices should be
|
|
# created with the auto-detach-on-last-close option.
|
|
;;
|
|
esac
|
|
done < /etc/fstab
|
|
}
|
|
|
|
load_rc_config $name
|
|
run_rc_command "$1"
|