nixos/modules/tasks/filesystems/ecryptfs.nix at 23.11-pre · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

nixpkgs / nixos / modules / tasks / filesystems / ecryptfs.nix

at 23.11-pre 630 B view raw

 1{ config, lib, pkgs, ... }:
 2# TODO: make ecryptfs work in initramfs?
 3
 4with lib;
 5
 6{
 7  config = mkIf (any (fs: fs == "ecryptfs") config.boot.supportedFilesystems) {
 8    system.fsPackages = [ pkgs.ecryptfs ];
 9    security.wrappers = {
10      "mount.ecryptfs_private" =
11        { setuid = true;
12          owner = "root";
13          group = "root";
14          source = "${pkgs.ecryptfs.out}/bin/mount.ecryptfs_private";
15        };
16      "umount.ecryptfs_private" =
17        { setuid = true;
18          owner = "root";
19          group = "root";
20          source = "${pkgs.ecryptfs.out}/bin/umount.ecryptfs_private";
21        };
22    };
23  };
24}