		THINGS TO FIX

* Currently we must have devfs, but don't really check. We just get errors
  if it isn't there. But we could easily check for the existence of 
  /dev/.devfsd to known whether devfs is running.
	* would we want to start it if we find it?
	* can we work out some method of predefined links in non-devfs
	  systems to get around the inability to write to root this
	  early in the boot?

* Jaaru used the first 40K of data off the swap space for entropy. We need 
  some other way as this data is available to an attacker, as I am optionally
  wiping the entire swap device on shutdown.

* There may still be a problem if swap on /md. Will have to research it.

* "Cryptoswap setting up swap on /dev/swap0...The cipher does not exist, 
   or a cipher module needs to be loaded into the kernel
   ioctl: LOOP_SET_STATUS: Invalid argument"
   will occur in a number of cases: 
	* bad cipher name
	* non-crypto kernel
	* not yet loaded or non-existant cipher module
   Will be something similar on kernel without loopback option

*  I need to add modprobes for missing modules, which means I
   have to detect failure to load and handle it.


			IDEAS

* We could pair swap partitions and alternate re-keying them, say
  once every 12 hours off of crontab

* Perhaps we should look at cryptographic wipes as another option.
  It happens at shutdown so the entropy pool should be in good shape.
  It also takes a very long time to do so I doubt many would want it.


