Disabling integrity metadata verification (was: Equivalent of --integrity-recalculate)

public inbox for cryptsetup@lists.linux.dev
 help / color / mirror / Atom feed

From: Marc SCHAEFER <schaefer@alphanet.ch>
To: cryptsetup@lists.linux.dev
Subject: Disabling integrity metadata verification (was: Equivalent of --integrity-recalculate)
Date: Sun, 11 May 2025 10:25:30 +0200	[thread overview]
Message-ID: <aCBe+mX7P2zI4Te7@alphanet.ch> (raw)
In-Reply-To: <f2c3da09-bd41-427d-8e96-61d3a4a80397@gmail.com>

Hello,

Thank you for this insight:

On Sat, May 10, 2025 at 06:18:18PM +0200, Milan Broz wrote:
> Note, for integritysetup you use dm-integrity, for cryptsetup
> dm-integrity only provides metadata space, AEAD encrypton
> is performed in dm-crypt above.

So, if I understand well, integrity with cryptsetup is implemented with a HMAC
that needs cleartext data (just before encryption) and produce hashed-signed
integrity data that protects against tampering and is not fixable by an
attacker (resistant to voluntary corruption).

Where if I create a dm-integrity layer with a luks crypted volume on top, I get
integrity, but an attacker can modify the crypted data and the hash easily
(only resistant to accidental corruption).

Now, another question: assuming the metadata space is corrupted, but I know
that the crypted space is not, is it possible to ignore the metadata altogether
(to not produce read errors)?

Thank you.

next prev parent reply	other threads:[~2025-05-11  8:25 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2025-05-10 15:51 Equivalent of --integrity-recalculate Marc SCHAEFER
2025-05-10 16:18 ` Milan Broz
2025-05-11  8:25   ` Marc SCHAEFER [this message]
2025-05-11 18:46     ` Disabling integrity metadata verification Milan Broz

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=aCBe+mX7P2zI4Te7@alphanet.ch \
    --to=schaefer@alphanet.ch \
    --cc=cryptsetup@lists.linux.dev \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox