Re: [dm-crypt] Wrong behavior?

DM-Crypt Archive on lore.kernel.org
 help / color / mirror / Atom feed

From: Milan Broz <mbroz@redhat.com>
To: Sven Eschenberg <sven@whgl.uni-frankfurt.de>
Cc: dm-crypt@saout.de
Subject: Re: [dm-crypt] Wrong behavior?
Date: Tue, 13 Jul 2010 23:12:40 +0200	[thread overview]
Message-ID: <4C3CD6C8.6020303@redhat.com> (raw)
In-Reply-To: <1279054281.867.5.camel@Koma-Station.localdomain>

On 07/13/2010 10:51 PM, Sven Eschenberg wrote:
> Hi list, I just tried to issue the following command:
> 
> cryptsetup -c aes-xts-plain -s 256 -i 5000
> --master-key-file /kspace/tmpmaster
> luksFormat /dev/md125 /kspace/tmpkey.0
> 
> where tmpmaster and tmpkey.0 are binary files with entropy I wish to use
> for (tmpmaster) master key for the volume and (tmpkey.0) passphrase/key
> in key slot 0.
> 
> When I run the command, cryptsetup asks for a passphrase nevertheless,
> although it is stated:
> 
> luksFormat <device> [<new key file>] - formats a LUKS device
> 
> As an alternative, I tried passing the key file for the slot via
> --key-file since the manpage states this has precedence if used. No
> change though.
> 
> Is this a know bug?

you mean that keyfile should be used there?

Yes, I think it is not supported yet, easy to fix it though, can you please
add this to issues on google page?
(I'll fix it but later.)

(that option was meant for key escrow recovery mainly, for format you want
to use RNG generated master key in most situations)

Milan

> P.S.: Do I remember correctly, that the payload offset given by luksDump
> is always in 512 bytes sectors?

yes.

next prev parent reply	other threads:[~2010-07-13 21:12 UTC|newest]

Thread overview: 14+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2010-07-13 20:51 [dm-crypt] Wrong behavior? Sven Eschenberg
2010-07-13 21:12 ` Milan Broz [this message]
2010-07-13 22:17   ` Sven Eschenberg
     [not found]     ` <AANLkTilvdewwcdzdm2uX6go9q2dahLX7Fes-lwDNOkvU@mail.gmail.com>
2010-07-14  6:07       ` MkFly
2010-07-14  6:38         ` Heinz Diehl
2010-07-14  8:20           ` Milan Broz
2010-07-14 10:09           ` Arno Wagner
2010-07-14 18:09             ` Christoph Anton Mitterer
2010-07-14  7:58     ` Milan Broz
2010-07-14 11:39       ` Sven Eschenberg
2010-07-14 11:52         ` Milan Broz
2010-07-14 12:07           ` Sven Eschenberg
2010-07-14 12:13             ` Arno Wagner
2010-07-14 12:53             ` Milan Broz

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4C3CD6C8.6020303@redhat.com \
    --to=mbroz@redhat.com \
    --cc=dm-crypt@saout.de \
    --cc=sven@whgl.uni-frankfurt.de \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox