From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail.saout.de ([127.0.0.1]) by localhost (mail.saout.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j_nFBSaorTxu for ; Wed, 16 Jan 2013 21:05:49 +0100 (CET) Received: from mail-wi0-f177.google.com (mail-wi0-f177.google.com [209.85.212.177]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mail.saout.de (Postfix) with ESMTPS for ; Wed, 16 Jan 2013 21:05:49 +0100 (CET) Received: by mail-wi0-f177.google.com with SMTP id hm2so1630038wib.16 for ; Wed, 16 Jan 2013 12:05:49 -0800 (PST) Message-ID: <50F70819.6010308@gmail.com> Date: Wed, 16 Jan 2013 21:05:45 +0100 From: Milan Broz MIME-Version: 1.0 References: <50F6F2BE.9080203@strike.wu.ac.at> <50F7063B.9090607@strike.wu.ac.at> In-Reply-To: <50F7063B.9090607@strike.wu.ac.at> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: Re: [dm-crypt] migrate luks key-slots to another luks container List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Alexander 'Leo' Bergolth Cc: dm-crypt@saout.de On 01/16/2013 08:57 PM, Alexander 'Leo' Bergolth wrote: > Am 16.01.2013 19:50, schrieb .. ink ..: >> Is it possible to move the passphrases from one luks container to a new >> one with different cipher, size and payload offset? (There is currently >> no data on the new container, I just want to keep the old passphrases.) >> >> any reason why you dont want to just add those old passphrases to the >> new container using "luksAddKey"? > > I'd like to transfer the key-slots so that the same passphrases can be > used to unlock them. > I don't know the passphrases. (Just one of them.) Then it is impossible (if you want to change encryption parameters and master key). New master key must be encrypted with the new algorithm and you cannot do this for keyslots without passphrase knowledge for these keyslots. Milan