|
| From: | Krzysztof Leszczyński |
| Subject: | [bug #45641] cryptomount with dmsetup-like arguments |
| Date: | Mon, 27 Jul 2015 20:58:29 +0000 |
| User-agent: | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2357.130 Safari/537.36 |
URL:
<http://savannah.gnu.org/bugs/?45641>
Summary: cryptomount with dmsetup-like arguments
Project: GNU GRUB
Submitted by: chewbaccakl
Submitted on: Mon 27 Jul 2015 08:58:28 PM GMT
Category: Security
Severity: Major
Priority: 5 - Normal
Item Group: Feature Request
Status: None
Privacy: Public
Assigned to: None
Originator Name: Krzusi
Originator Email:
Open/Closed: Open
Discussion Lock: Any
Release:
Release: Git master
Reproducibility: Every Time
Planned Release: None
_______________________________________________________
Details:
We know grub can open encrypted volumes with luks or geli headers.
Is it possible to specify AES-XTS encrypted volume without luks/geli?
For instance: my main lvm's pv volume is defined with dmsetup as:
sda_crypt: 0 12345678 crypt aes-xts-plain
0000000000000000000000000000000000000000000000000000000000000000 0 8:0 409600
and I would love to map is with something similar to (nonexistend) command:
cryptomap (sda_crypt) 0 12345678 --cipher=aes-xts-plain
--key=0000000000000000000000000000000000000000000000000000000000000000
--dev=(hd0) --offset=409600
I think it should be possible by making an easy patch to
grub-core/disk/cryptodisk.c but perhaps it is not necessary, is it?
_______________________________________________________
Reply to this item at:
<http://savannah.gnu.org/bugs/?45641>
_______________________________________________
Message sent via/by Savannah
http://savannah.gnu.org/
| [Prev in Thread] | Current Thread | [Next in Thread] |