From: "Konstantin Bläsi" <ktrackfd@googlemail.com>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] piping password to cryptsetup
Date: Thu, 18 Sep 2014 15:45:15 +0200 [thread overview]
Message-ID: <541AE1EB.5010201@gmail.com> (raw)
In-Reply-To: <1411000175.17610.0@smtp.gmail.com>
[-- Attachment #1: Type: text/plain, Size: 1923 bytes --]
On 09/18/2014 02:29 AM, frodowiz wrote:
> i have been to so many forums to find a solution to this. all the
> variations are confusing me and none are working.
> i am trying to pipe a passphrase to cryptsetup using yad.
>
> pass1=`yad --form --title="Enter container passphrase" --height=50
> --width=350 --field=Password:H`
>
> then i strip out the pipe character present between yad variables
>
> pass="${pass1//|}"
>
> at this point the variable pass appears to be exactly what i want.
>
> later on i invoke cryptsetup with the passphrase variable piped to it.
>
> echo "$pass" | cryptsetup --cipher aes-xts-plain --key-size 512 --hash
> sha512 --iter-time 5000 --use-random luksFormat "$container" -
>
> after a moment, i see the device pop into the selection in my file
> manager then it dissapears.
>
> the funny thing is, i wrote a terminal only version using the same
> methods minus the yad things and it works fine(see attached)
>
> terminal version requires 3 confirmations YES, passphrase, passphrase.
> do i need to reproduce these confirmations even with a minus sign at
> the end of the cryptsetup line?
>
> if so, would echo "YES"$'\n'"$pass"$'\n'"$pass"'\n' do this?
>
> also, if i replace the echo "$pass" pipe with xterm -e cryptsetup....
> it works fine. basically, i am not getting the password format piped
> correctly. ive seen 7 different variations on this pipe and nothing is
> working. its probably something with spaces but i am resorting to
> email to lower my bloodpressure. also avoiding forums to lower my
> heart rate :)
>
> thanks to anyone reading this.
> Erik
>
>
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@saout.de
> http://www.saout.de/mailman/listinfo/dm-crypt
Hi Erik,
you want to use "echo -n" for piping the password without a trailing
newline and "cryptsetup -q ..." in your scripts to avoid any additional
user input.
Konstantin
[-- Attachment #2: Type: text/html, Size: 3263 bytes --]
next prev parent reply other threads:[~2014-09-18 13:45 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-09-18 0:29 [dm-crypt] piping password to cryptsetup frodowiz
2014-09-18 7:29 ` ken
2014-09-18 13:45 ` Konstantin Bläsi [this message]
2014-09-27 4:20 ` frodowiz
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=541AE1EB.5010201@gmail.com \
--to=ktrackfd@googlemail.com \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.