|
From: | Krzysztof Leszczyński |
Subject: | [bug #45641] cryptomount with dmsetup-like arguments |
Date: | Mon, 27 Jul 2015 20:58:29 +0000 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/43.0.2357.130 Safari/537.36 |
URL: <http://savannah.gnu.org/bugs/?45641> Summary: cryptomount with dmsetup-like arguments Project: GNU GRUB Submitted by: chewbaccakl Submitted on: Mon 27 Jul 2015 08:58:28 PM GMT Category: Security Severity: Major Priority: 5 - Normal Item Group: Feature Request Status: None Privacy: Public Assigned to: None Originator Name: Krzusi Originator Email: Open/Closed: Open Discussion Lock: Any Release: Release: Git master Reproducibility: Every Time Planned Release: None _______________________________________________________ Details: We know grub can open encrypted volumes with luks or geli headers. Is it possible to specify AES-XTS encrypted volume without luks/geli? For instance: my main lvm's pv volume is defined with dmsetup as: sda_crypt: 0 12345678 crypt aes-xts-plain 0000000000000000000000000000000000000000000000000000000000000000 0 8:0 409600 and I would love to map is with something similar to (nonexistend) command: cryptomap (sda_crypt) 0 12345678 --cipher=aes-xts-plain --key=0000000000000000000000000000000000000000000000000000000000000000 --dev=(hd0) --offset=409600 I think it should be possible by making an easy patch to grub-core/disk/cryptodisk.c but perhaps it is not necessary, is it? _______________________________________________________ Reply to this item at: <http://savannah.gnu.org/bugs/?45641> _______________________________________________ Message sent via/by Savannah http://savannah.gnu.org/
[Prev in Thread] | Current Thread | [Next in Thread] |