From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <heiko.rosemann@web.de>
Received: from fmmailgate02.web.de (fmmailgate02.web.de [217.72.192.227])
 by mail.saout.de (Postfix) with ESMTP
 for <dm-crypt@saout.de>; Sat,  8 Jan 2011 12:53:59 +0100 (CET)
Received: from smtp05.web.de  ( [172.20.4.166])
 by fmmailgate02.web.de (Postfix) with ESMTP id AD3B61930E8AF
 for <dm-crypt@saout.de>; Sat,  8 Jan 2011 12:53:14 +0100 (CET)
Received: from [89.244.161.8] (helo=[192.168.123.202])
 by smtp05.web.de with asmtp (TLSv1:AES256-SHA:256) (WEB.DE 4.110 #2)
 id 1PbXMA-0006tF-00
 for dm-crypt@saout.de; Sat, 08 Jan 2011 12:53:14 +0100
Message-ID: <4D285026.3060902@web.de>
Date: Sat, 08 Jan 2011 12:53:10 +0100
From: Heiko Rosemann <heiko.rosemann@web.de>
MIME-Version: 1.0
References: <4D266EF9.6090904@gmail.com> <20110107024910.GA2456@tansi.org>
 <4D2691D7.6020604@kdzbn.homelinux.net> <20110107043915.GC20270@tansi.org>
 <4D27EBFC.3080401@kdzbn.homelinux.net>
In-Reply-To: <4D27EBFC.3080401@kdzbn.homelinux.net>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Sender: heiko.rosemann@web.de
Subject: Re: [dm-crypt] Dmcrypt and hibernate key disclosure
List-Id: <dm-crypt.saout.de>
List-Unsubscribe: <http://www.saout.de/mailman/options/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=unsubscribe>
List-Archive: <http://www.saout.de/pipermail/dm-crypt>
List-Post: <mailto:dm-crypt@saout.de>
List-Help: <mailto:dm-crypt-request@saout.de?subject=help>
List-Subscribe: <http://www.saout.de/mailman/listinfo/dm-crypt>,
 <mailto:dm-crypt-request@saout.de?subject=subscribe>
To: dm-crypt@saout.de

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 01/08/11 05:45, Bryan Kadzban wrote:
> Arno Wagner wrote:
>>>> It seems to me that there is actually no software hook or script
>>>> thet gets executed during resume,
>>> From hibernate, there is.  It's a normal bootup, including
>>> initramfs, until some string gets written into /sys/power/resume.
>>> There might be restrictions on when this write can happen, but I'm
>>> sure they at least allow some initramfs code to run.
>>
>> Seems I misunderstood the respective kernel parameter then. Or it is
>> an alternative to the mechanism you describe. So writing to
>> /sys/power/resume replaces the current system with the suspended one?
>=20
> If you mean the "resume=3D" kernel command-line parameter, then I am
> fairly sure it will be used by the kernel only in the absence of an
> initramfs.  If an initramfs is present, the kernel will do nothing, and=

> the initramfs will need to support all options like resume=3D on its ow=
n.

This might be implementation dependend (there is more than one
suspend-to-disk-option for linux). If a resume2=3D parameter is present
for tuxonice, the initramfs "only" needs to write "1" to
/sys/power/tuxonice/do_resume.

Regards,
Heiko


- --=20
eMails verschl=FCsseln mit PGP - privacy is your right!
Mein PGP-Key zur Verifizierung: http://pgp.mit.edu

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.16 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk0oUCYACgkQ/Vb5NagElAWmfwCeLfsTTpZpJEabKq8VeYSG2Ln2
PPgAoJuAQEluPGKHCiYXWKYAF7ShAdUU
=3DtKBj
-----END PGP SIGNATURE-----