2023-10-22 08:10:48 -04:00
|
|
|
#!/bin/sh
|
|
|
|
|
|
|
|
|
|
## Copyright (C) 2023 - 2023 ENCRYPTED SUPPORT LP <adrelanos@whonix.org>
|
|
|
|
|
## See the file COPYING for copying conditions.
|
|
|
|
|
|
2023-10-22 09:36:03 -04:00
|
|
|
## This script is intended to remount specified mount points with more secure
|
|
|
|
|
## options based on kernel command line parameters.
|
|
|
|
|
|
2023-10-22 08:10:48 -04:00
|
|
|
remount_hook() {
|
2023-10-22 13:25:31 -04:00
|
|
|
local remountsecure_action
|
|
|
|
|
## getarg returns the last parameter only.
|
2023-10-22 16:08:21 -04:00
|
|
|
## If /proc/cmdline contains 'remountsecure=0 remountsecure=1' the last one wins.
|
2023-10-22 13:25:31 -04:00
|
|
|
remountsecure_action=$(getarg remountsecure)
|
2023-10-22 08:10:48 -04:00
|
|
|
|
2023-10-22 16:08:21 -04:00
|
|
|
if ! remount-secure $remountsecure_action; then
|
|
|
|
|
warn "$0: ERROR: 'remount-secure $remountsecure_action' failed."
|
|
|
|
|
return 1
|
2023-10-22 08:10:48 -04:00
|
|
|
fi
|
2023-10-22 16:08:21 -04:00
|
|
|
info "$0: INFO: 'remount-secure $remountsecure_action' success."
|
|
|
|
|
return 0
|
2023-10-22 08:10:48 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
remount_hook
|
