/usr/share/initramfs-tools/hooks/cryptgnupg is in cryptsetup 2:1.6.6-5.
This file is owned by root:root, with mode 0o755.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 | #!/bin/sh
set -e
PREREQ="cryptroot"
prereqs()
{
echo "$PREREQ"
}
case $1 in
prereqs)
prereqs
exit 0
;;
esac
. /usr/share/initramfs-tools/hook-functions
# Hooks for loading gnupg software and key into the initramfs
# Check whether cryptroot hook has installed decrypt_gnupg script
if [ ! -x ${DESTDIR}/lib/cryptsetup/scripts/decrypt_gnupg ] ; then
exit 0
fi
# Install cryptroot key files into initramfs
keys=$(sed 's/^\(.*,\|\)key=//; s/,.*//' ${DESTDIR}/conf/conf.d/cryptroot)
if [ "${keys}" != "none" ]; then
if [ -z "${keys}" ]; then
echo "$0: Missing key files in ${DESTDIR}/conf/conf.d/cryptroot" >&2
cat ${DESTDIR}/conf/conf.d/cryptroot >&2
exit 1
fi
for key in ${keys} ; do
echo "WARNING: GnuPG key $key is copied to initramfs" >&2
if [ ! -d ${DESTDIR}/$(dirname ${key}) ] ; then
mkdir -p ${DESTDIR}/$(dirname ${key})
fi
cp ${key} ${DESTDIR}/${key}
done
fi
# Install gnupg software
copy_exec /usr/bin/gpg
exit 0
|