From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from list by lists.gnu.org with archive (Exim 4.71) id 1VktZK-00059K-E5 for mharc-grub-devel@gnu.org; Mon, 25 Nov 2013 05:39:06 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:34650) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VktZ9-0004wd-DP for grub-devel@gnu.org; Mon, 25 Nov 2013 05:39:04 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VktZ0-0003LK-Qb for grub-devel@gnu.org; Mon, 25 Nov 2013 05:38:55 -0500 Received: from userp1040.oracle.com ([156.151.31.81]:18653) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VktZ0-0003Ia-J1 for grub-devel@gnu.org; Mon, 25 Nov 2013 05:38:46 -0500 Received: from ucsinet21.oracle.com (ucsinet21.oracle.com [156.151.31.93]) by userp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id rAPAch1M003256 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 25 Nov 2013 10:38:43 GMT Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by ucsinet21.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id rAPAcggY029958 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 25 Nov 2013 10:38:43 GMT Received: from abhmp0014.oracle.com (abhmp0014.oracle.com [141.146.116.20]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id rAPAcgMp013783; Mon, 25 Nov 2013 10:38:42 GMT Received: from [10.163.198.80] (/10.163.198.80) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 25 Nov 2013 02:38:41 -0800 Message-ID: <529328B0.8000904@Oracle.COM> Date: Mon, 25 Nov 2013 10:38:40 +0000 From: Darren J Moffat Organization: Oracle Solaris Security User-Agent: Mozilla/5.0 (X11; SunOS i86pc; rv:17.0) Gecko/20130718 Thunderbird/17.0.6 MIME-Version: 1.0 To: The development of GNU GRUB Subject: Re: Keyfile Support for GRUBs LUKS References: <528BF7A9.8010702@ramses-pyramidenbau.de> <20131119193135.7b3b5d2f@crass-Ideapad-Z570> <20131120015540.GA35248@scollay.m5p.com> <20131119234312.3e95e55e@crass-Ideapad-Z570> <528C4D38.7050607@gmail.com> <20131120010244.24adbfa1@crass-Ideapad-Z570> <528C6688.5010806@gmail.com> In-Reply-To: <528C6688.5010806@gmail.com> Content-Type: text/plain; charset=UTF-8; format=flowed X-Source-IP: ucsinet21.oracle.com [156.151.31.93] Content-Transfer-Encoding: quoted-printable X-MIME-Autoconverted: from 8bit to quoted-printable by userp1040.oracle.com id rAPAch1M003256 X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.4.x-2.6.x [generic] X-Received-From: 156.151.31.81 Cc: =?UTF-8?B?VmxhZGltaXIgJ8+GLWNvZGVyL3BoY29kZXInIFNlcmJpbmVua28=?= X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: The development of GNU GRUB List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Nov 2013 10:39:04 -0000 On 11/20/13 07:36, Vladimir '=CF=86-coder/phcoder' Serbinenko wrote: > It's not that easy. Trouble is that you need to also prevent > inconsistent rollback and for this you need to have a hash tree. Then > since power failure is a possibility you need this tree to be consisten= t > at every moment. Those issues are a bit easier to handle on FS level. > ZFS supports HMACs. BtrFS perhaps will one day. Minor terminology nit: ZFS has a MAC not an HMAC. HMAC implies a hash=20 based MAC such as HMAC-SHA256. ZFS uses AES-CCM or AES-GCM modes which are AEAD modes that produce an=20 Auth/MAC tag. You could do an equivalent thing with AES-CBC or AES-XTS=20 plus HMAC-SHA256 (the original ZFS crypto prototype was AES-CBC with=20 HMAC-SHA256 but I switched to AES-CCM/GCM). --=20 Darren J Moffat