From: Police Terror <PoliceTerror@dyne.org>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] cryptsetup with Python subprocess + pipes
Date: Fri, 24 Jun 2016 09:56:11 +0000 [thread overview]
Message-ID: <576D03BB.9010301@dyne.org> (raw)
In-Reply-To: <94146e8c-438a-85b5-0f29-ce02642af1ee@gmail.com>
Ahhh yes! Thank you Diagon and Milan.
I've added now the -q switch.
I looked at the pycryptsetup but 2 things:
1. It's not Python 3
2. It's an extra dependency and not in the repos.
Milan Broz:
> On 06/23/2016 11:37 PM, Police Terror wrote:
>> Hello,
>>
>> I'm trying to make a plausible deniability encryption wrapper around
>> cryptsetup.
>>
>> Basically it uses a hash table to first lookup an offset (encrypted with
>> the password), then uses that offset to load a hidden volume within a
>> contiguous file (within which other volumes may or may not exist).
>>
>> The theory is solid, and everything is mostly working. The only problem
>> I'm having is doing the communication in Python:
>>
>> # Format the volume
>> pipe = subprocess.Popen(["cryptsetup", "luksFormat", loop_device],
>> stdout=subprocess.PIPE,
>> stdin=subprocess.PIPE)
>> out = pipe.communicate(input=b"YES\n" + password)
>> if pipe.returncode:
>> error("Problem formatting volume.")
>> return pipe.returncode
>>
>> For some reason, this does not give any output! But the volume gets
>> created, but I cannot decrypt it with the password.
>
> Probably because if you use pipe, cryptsetup will switch to batch
> mode where there is no question and no output.
>
> It is better to add batch mode (-q switch) explicitly and remove from
> "YES\n" from your script (otherwise it becomes password ;-).
>
> There is also simple Python pycryptsetup wrapper (it doesn't cover all
> commands though).
>
> Milan
> _______________________________________________
> dm-crypt mailing list
> dm-crypt@saout.de
> http://www.saout.de/mailman/listinfo/dm-crypt
>
next prev parent reply other threads:[~2016-06-24 9:56 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-06-23 21:37 [dm-crypt] cryptsetup with Python subprocess + pipes Police Terror
2016-06-24 5:42 ` [dm-crypt] cryptsetup with Python subprocess + pipes (saout: to exclusive) Diagon
2016-06-24 9:58 ` Police Terror
2016-06-24 5:42 ` [dm-crypt] cryptsetup with Python subprocess + pipes Milan Broz
2016-06-24 9:56 ` Police Terror [this message]
2016-06-24 10:45 ` Milan Broz
2016-06-24 12:16 ` Police Terror
2016-06-24 15:28 ` Arno Wagner
2016-06-24 16:33 ` Police Terror
2016-06-24 16:58 ` Arno Wagner
2016-06-29 0:02 ` Arno Wagner
2016-06-29 8:47 ` Police Terror
2016-06-29 9:58 ` Arno Wagner
2016-06-29 11:47 ` Police Terror
2016-06-29 17:28 ` Arno Wagner
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=576D03BB.9010301@dyne.org \
--to=policeterror@dyne.org \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.