This will be relatively standard for Ubuntu encrypted-swap setups, and a pretty straight-forward, frequently-used way of doing this. However, I doubt that this is the be-all, end-all of ways to encrypt swap.
I think you should be able to loop over the swap partitions in /proc/swaps, looking for matches in /etc/crypttab should do it. It would *certainly* be better than what we have now, which is nothing.
Sorry for the delay. I haven't had much time to devote to eCryptfs lately.
So this is shell, rather than C code, but here's the script that we use to setup the encrypted swap.
http:// bazaar. launchpad. net/~ecryptfs/ ecryptfs/ ecryptfs- utils/annotate/ head%3A/ src/utils/ ecryptfs- setup-swap
Toward the bottom, you can see a series of "warn" calls, that check if the device is already setup for encryption.
Basically, on my system with encrypted swap, I have:
kirkland@x200:~$ cat /proc/swaps cryptswap1 partition 4803392 35872 -1 aes-cbc- essiv:sha256 6543-46cf- ab65-ff332df913 b9 none swap sw 0 0 cryptswap1 none swap sw 0 0
Filename Type Size Used Priority
/dev/mapper/
kirkland@x200:~$ cat /etc/crypttab
# <target name> <source device> <key file> <options>
cryptswap1 /dev/sda5 /dev/urandom swap,cipher=
kirkland@x200:~$ grep swap /etc/fstab
# swap was on /dev/sda5 during installation
#UUID=0f683971-
/dev/mapper/
This will be relatively standard for Ubuntu encrypted-swap setups, and a pretty straight-forward, frequently-used way of doing this. However, I doubt that this is the be-all, end-all of ways to encrypt swap.
I think you should be able to loop over the swap partitions in /proc/swaps, looking for matches in /etc/crypttab should do it. It would *certainly* be better than what we have now, which is nothing.
:-Dustin
:-Dustin