Re: [dm-crypt] miscellaneous dm-crypt/LUKS/cryptsetup questions

DM-Crypt Archive on lore.kernel.org
 help / color / mirror / Atom feed

From: Arno Wagner <arno@wagner.name>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] miscellaneous dm-crypt/LUKS/cryptsetup questions
Date: Fri, 28 May 2010 00:12:55 +0200	[thread overview]
Message-ID: <20100527221255.GC22477@tansi.org> (raw)
In-Reply-To: <4BFEB817.5070007@redhat.com>

On Thu, May 27, 2010 at 08:21:11PM +0200, Milan Broz wrote:
> On 05/27/2010 06:21 PM, Mario 'BitKoenig' Holbe wrote:
> > Milan Broz <mbroz@redhat.com> wrote:
> >> (read from /dev/random can return if there is not enough entropy, it needs
> > 
> > Nope. It blocks.
> 
> yep, you are right :)
> 
> The problem is that can wait very long time, so it should inform user that
> system is out of entropy and ask for some action etc. This should be part
> of the RNG handler in cryptsetup if using /dev/random is supported.

Indeed. You could also just flush an explanation to stdout and ask
the user to provide keystrokes if things take long. That would 
remove the need for monitoring what comes from /dev/random.
Maybe use this as a temporary fix that amounts to one printf.

However that does not solve the case of automatic installation
on, e.g., embedded devices that have a low-entropy envoronment.

Arno
-- 
Arno Wagner, Dr. sc. techn., Dipl. Inform., CISSP -- Email: arno@wagner.name 
GnuPG:  ID: 1E25338F  FP: 0C30 5782 9D93 F785 E79C  0296 797F 6B50 1E25 338F
----
Cuddly UI's are the manifestation of wishful thinking. -- Dylan Evans

If it's in the news, don't worry about it.  The very definition of 
"news" is "something that hardly ever happens." -- Bruce Schneier

next prev parent reply	other threads:[~2010-05-27 22:12 UTC|newest]

Thread overview: 15+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2010-05-27 12:51 [dm-crypt] miscellaneous dm-crypt/LUKS/cryptsetup questions Christoph Anton Mitterer
2010-05-27 13:53 ` Milan Broz
2010-05-27 14:20   ` Christoph Anton Mitterer
2010-05-27 14:45     ` Milan Broz
2010-05-27 16:21       ` Mario 'BitKoenig' Holbe
2010-05-27 18:21         ` Milan Broz
2010-05-27 21:41           ` Roscoe
2010-05-27 22:12           ` Arno Wagner [this message]
2010-05-28  7:39             ` Mario 'BitKoenig' Holbe
2010-05-28  8:03               ` Milan Broz
2010-05-28 11:05         ` Christoph Anton Mitterer
2010-05-28 12:11           ` Mario 'BitKoenig' Holbe
2010-05-28 10:56       ` Christoph Anton Mitterer
2010-05-28 11:26         ` Milan Broz
2010-05-28 15:36         ` Arno Wagner

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20100527221255.GC22477@tansi.org \
    --to=arno@wagner.name \
    --cc=dm-crypt@saout.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox