From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from list by lists.gnu.org with archive (Exim 4.71) id 1ZKA5e-0007W6-TY for mharc-grub-devel@gnu.org; Tue, 28 Jul 2015 14:59:02 -0400 Received: from eggs.gnu.org ([2001:4830:134:3::10]:41334) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZKA5Z-0007Sq-5T for grub-devel@gnu.org; Tue, 28 Jul 2015 14:59:01 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1ZKA5V-0004rz-Vq for grub-devel@gnu.org; Tue, 28 Jul 2015 14:58:57 -0400 Received: from johnlane.plus.com ([212.159.104.145]:55454 helo=sodium.amajohn.co.uk) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1ZKA5V-0004rS-Nv for grub-devel@gnu.org; Tue, 28 Jul 2015 14:58:53 -0400 Received: by sodium.amajohn.co.uk (Postfix, from userid 1000) id AB5DD5E; Tue, 28 Jul 2015 19:51:17 +0100 (BST) Received: from [10.0.200.1] (hydrogen.amajohn.co.uk [10.0.200.1]) by sodium.amajohn.co.uk (Postfix) with ESMTPSA id 239234B for ; Tue, 28 Jul 2015 19:51:15 +0100 (BST) Message-ID: <55B7CF21.3080808@jelmail.com> Date: Tue, 28 Jul 2015 19:51:13 +0100 From: John Lane User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2 MIME-Version: 1.0 To: grub-devel@gnu.org Subject: Re: Cryptomount enhancements - revised References: <1435588260-29456-1-git-send-email-grub@jelmail.com> In-Reply-To: <1435588260-29456-1-git-send-email-grub@jelmail.com> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Outbound-Checked: Yes X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 212.159.104.145 X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: The development of GNU GRUB List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Jul 2015 18:59:01 -0000 On 29/06/15 15:30, John Lane wrote: > These patches provide extensions to the "cryptomount" command. There are five patches > > [PATCH 1/5] Cryptomount support LUKS detached header > Support LUKS detached headers so that the header can be separated from the data payload, e.g. by storing on external removable media such as a USB key. > > [PATCH 2/5] Cryptomount support key files > Support key files so that passphrase entry can be suppressed. The passphrase can be stored in a "key file" that can be stored, for example, on external removable media such as a USB key. > > [PATCH 3/5] cryptomount luks allow multiple passphrase attempts > Allow a second attempt to enter a passphrase. If unlocking fails on the first attempt then the user is presented with the passphrase entry prompt again. If a key file is given that does not unlock the device then the user is given the opportunity to enter a passphrase. > > [PATCH 4/5] Cryptomount support plain dm-crypt > Support plain dm-crypt mode. Allow plain volumes to be opened. This is largely a re-factoring of exisitng code to allow the crypto routines be used independently of LUKS. > > [PATCH 5/5] Cryptomount support for hyphens in UUID > Support for hyphens in UUID. The "-u" option of cryptomount accepts a UUID. This option allows that to be delimited with hyphens so that the same format can be given to Grub as is passed to the Linux kernel boot options. > > > This is a revised patch set following feedback from patches sent on 16/6/15. > > grub-core/disk/cryptodisk.c | 382 ++++++++++++++++++++++++++++++++++++++++++++++++++-- > grub-core/disk/geli.c | 9 +- > grub-core/disk/luks.c | 508 +++++++++++++++++++++++++-------------------------------------------- > include/grub/cryptodisk.h | 18 ++- > 4 files changed, 581 insertions(+), 336 deletions(-) > > > _______________________________________________ > Grub-devel mailing list > Grub-devel@gnu.org > https://lists.gnu.org/mailman/listinfo/grub-devel > Just wondering if there's any feedback on these patches... It's been a while since I posted them.