local keydev="$2"
local device="$3"
- # This creates a unique single mountpoint for *, or several for explicitly
- # given LUKS devices. It accomplishes unlocking multiple LUKS devices with
- # a single password entry.
- local mntp="/mnt/$(str_replace "keydev-$keydev-$keypath" '/' '-')"
-
- if [ ! -d "$mntp" ]; then
- mkdir "$mntp"
- mount -r "$keydev" "$mntp" || die 'Mounting rem. dev. failed!'
+ # No mounting needed if the keyfile resides inside the initrd
+ if [ "/" == "$keydev" ]; then
+ local mntp=/
+ else
+ # This creates a unique single mountpoint for *, or several for explicitly
+ # given LUKS devices. It accomplishes unlocking multiple LUKS devices with
+ # a single password entry.
+ local mntp="/mnt/$(str_replace "keydev-$keydev-$keypath" '/' '-')"
+
+ if [ ! -d "$mntp" ]; then
+ mkdir "$mntp"
+ mount -r "$keydev" "$mntp" || die 'Mounting rem. dev. failed!'
+ fi
fi
case "${keypath##*.}" in
*) cat "$mntp/$keypath" ;;
esac
- # General unmounting mechanism, modules doing custom cleanup should return earlier
- # and install a pre-pivot cleanup hook
- umount "$mntp"
- rmdir "$mntp"
+ # No unmounting if the keyfile resides inside the initrd
+ if [ "/" != "$keydev" ]; then
+ # General unmounting mechanism, modules doing custom cleanup should return earlier
+ # and install a pre-pivot cleanup hook
+ umount "$mntp"
+ rmdir "$mntp"
+ fi
}
continue
fi
- if [ -n "$keydev" ]; then
+ # A keydev of '/' is treated as the initrd itself
+ if [ "/" == "$keydev" ]; then
+ [ -z "$luksdev" ] && luksdev='*'
+ echo "$luksdev:$keydev:$keypath" >> /tmp/luks.keys
+ continue
+ elif [ -n "$keydev" ]; then
udevmatch "$keydev" >&7 || {
warn 'keydev incorrect!'
continue
projects / thirdparty / dracut.git / commitdiff
