From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gmazyland@gmail.com>
Received: from mail-wi0-x230.google.com (mail-wi0-x230.google.com
 [IPv6:2a00:1450:400c:c05::230])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mail.server123.net (Postfix) with ESMTPS
 for <dm-crypt@saout.de>; Fri,  8 Aug 2014 15:22:36 +0200 (CEST)
Received: by mail-wi0-f176.google.com with SMTP id bs8so1011492wib.15
 for <dm-crypt@saout.de>; Fri, 08 Aug 2014 06:22:36 -0700 (PDT)
Message-ID: <53E4CF19.1090904@gmail.com>
Date: Fri, 08 Aug 2014 15:22:33 +0200
From: Milan Broz <gmazyland@gmail.com>
MIME-Version: 1.0
References: <CAFGk=e+CZymTXZ-MNhAojMRG68cGvFfmzkoVqfueNLWVbvAJtQ@mail.gmail.com>
 <53E2FDAD.8080603@gmail.com>
In-Reply-To: <53E2FDAD.8080603@gmail.com>
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 7bit
Subject: Re: [dm-crypt] luks header on initramfs img
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt/>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=subscribe>
To: hgabreu@gmail.com, dm-crypt@saout.de

On 08/07/2014 06:16 AM, Milan Broz wrote:
> On 08/07/2014 03:09 AM, Henrique Abreu wrote:
>> I use to have a setup with luks header on a separate file, as describe here:
>> https://wiki.archlinux.org/index.php/Dm-crypt/Specialties#Encrypted_system_using_a_remote_LUKS_header
>>
>> But since update from 1.6.4 to 1.6.5 it doesn't work anymore. It just keeps asking for the passphrase on and on without any error messages.
>>
>> I noticed that, if I mount a usb drive and move the header from memory to the drive, then attempt to open again with the exact same command (below) it works:
>> # cryptsetup open --header header.img --type luks /dev/sda4 lvm
>>
>> So, the difference is just where the header.img file is placed. For now, I have downgraded back to 1.6.4 to keep my boot setup simpler.
>> I rather use the header image inside initramfs if possible instead of having to mount a usb at boot just to read the header.
>>
>> Does anyone know if that's intended for not working anymore or if it's a bug?
> 
> There is no reason this should not work.
> (It could be bug elsewhere as well, 1.6.5 already uncovered 2 kernel bugs...)

Should be fixed in devel git (and in 1.6.6 which will be released in a few days).
(Basically I forgot to use wrapper for device open which avoids using O_DIRECT
if not supported, like in tmpfs.)

Thanks for report!

Milan