V8.00.000.2025.06.17

Signed-off-by: Marc S. Weidner <msw@coresecret.dev>

func/4060_generate_crypttab.sh

@@ -46,7 +46,7 @@ write_crypttab() {
 #   0: Successfully executed commands.
 #######################################
 generate_crypttab() {
-  declare var_key var_encryption_label var_luks_uuid var_ephemeral_enclabel var_ephemeral_fs_label
+  declare var_key var_encryption_label var_luks_uuid
 
   ### Generate '${TARGET}/etc/crypttab' header.
   : >| "${TARGET}/etc/crypttab"
@@ -70,7 +70,9 @@ generate_crypttab() {
 EOF
 
   ### Generate '${TARGET}/etc/crypttab' entries.
-  for var_key in "${HMP_PATH_LUKSUUID[@]}"; do
+  declare var_ephemeral_enclabel var_ephemeral_fs_label
+
+  for var_key in "${!HMP_PATH_LUKSUUID[@]}"; do
 
     var_encryption_label="${HMP_PATH_ENCLABEL["${var_key}"]}"
     var_luks_uuid="${HMP_PATH_LUKSUUID["${var_key}"]}"
@@ -78,19 +80,17 @@ EOF
     if [[ "${accounts_dropbear_unlock,,}" == "true" ]]; then
 
       write_crypttab "${var_encryption_label}" "UUID=${var_luks_uuid}" "none" "luks,discard,initramfs"
-      contine
 
     else
 
       write_crypttab "${var_encryption_label}" "UUID=${var_luks_uuid}" "none" "luks,discard"
-      contine
 
     fi
 
   done
 
   ### Generate '${TARGET}/etc/crypttab' ephemeral entries.
-  for var_key in "${HMP_EPHEMERAL_ENCLABEL[@]}"; do
+  for var_key in "${!HMP_EPHEMERAL_ENCLABEL[@]}"; do
 
     var_ephemeral_enclabel="${HMP_EPHEMERAL_ENCLABEL["${var_key}"]}"
     var_ephemeral_fs_label="${HMP_EPHEMERAL_FS_LABEL["${var_key}"]}"
@@ -104,6 +104,9 @@ EOF
         write_crypttab "${var_ephemeral_enclabel}" "LABEL=${var_ephemeral_fs_label}" "/dev/random" "offset=2048,cipher=aes-xts-plain64,size=512,sector-size=4096,tmp=ext4"
         continue
         ;;
+      *)
+        do_log "error" "false" "Only 'SWAP' and '/tmp' are valid Partitions for Ephemeral Encryption. Given value was: '${var_key}'."
+        ;;
     esac
 
   done