@penalvch it seems that ecryptfs-setup-swap might not be the ideal place to fix this issue. This issue isn't just an eCryptfs swap helper, it's a cross-cutting boot/login feature. The right "home" would be in initramfs-tools/cryptsetup + PAM integration, not here.
I'm going to see if I can build a PAM module that wraps the per-boot swap key into LUKS keyslots on login (as I like the option #2 proposed). Then I'll look into adding initramfs logic to detect a hibernation image and prompt for a user password to unlock swap and resume. And manage keyslot cleanup on shutdown. If I find the right forum to post updates on the progress of that, I'll post a link to it on here. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/432785 Title: add support to ecryptfs-setup-swap for keyed hibernation To manage notifications about this bug go to: https://bugs.launchpad.net/ecryptfs/+bug/432785/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
