From 8a072437cc6478757a8f21f3a6a0ea51a97b978b Mon Sep 17 00:00:00 2001
From: Patrick Schleizer <adrelanos@whonix.org>
Date: Wed, 29 Jun 2022 14:13:30 -0400
Subject: [PATCH] ram wipe on shutdown: fix, added `need_shutdown` hook

Otherwise dracut does not run on shutdown.

Without `need_shutdown` file `/run/initramfs/.need_shutdown` does not get created.
And without that file `/usr/lib/dracut/dracut-initramfs-restore`,
which itself is started by `/lib/systemd/system/dracut-shutdown.service` does nothing.
---
 usr/lib/dracut/modules.d/40sdmem-security-misc/module-setup.sh | 1 +
 .../modules.d/40sdmem-security-misc/wipe-needshutdown.sh       | 3 +++
 2 files changed, 4 insertions(+)
 create mode 100755 usr/lib/dracut/modules.d/40sdmem-security-misc/wipe-needshutdown.sh

diff --git a/usr/lib/dracut/modules.d/40sdmem-security-misc/module-setup.sh b/usr/lib/dracut/modules.d/40sdmem-security-misc/module-setup.sh
index b394574..18cd8d5 100755
--- a/usr/lib/dracut/modules.d/40sdmem-security-misc/module-setup.sh
+++ b/usr/lib/dracut/modules.d/40sdmem-security-misc/module-setup.sh
@@ -21,6 +21,7 @@ install() {
     inst_multiple sdmem
     inst_multiple dmsetup
     inst_hook shutdown 40 "$moddir/wipe.sh"
+    inst_hook cleanup 80 "$moddir/wipe-needshutdown.sh"
 }
 
 # called by dracut
diff --git a/usr/lib/dracut/modules.d/40sdmem-security-misc/wipe-needshutdown.sh b/usr/lib/dracut/modules.d/40sdmem-security-misc/wipe-needshutdown.sh
new file mode 100755
index 0000000..16df8ec
--- /dev/null
+++ b/usr/lib/dracut/modules.d/40sdmem-security-misc/wipe-needshutdown.sh
@@ -0,0 +1,3 @@
+#!/bin/sh
+
+need_shutdown