[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: LUKS multiple passphrase retries
From: |
Maxim Fomin |
Subject: |
Re: LUKS multiple passphrase retries |
Date: |
Sun, 09 Apr 2023 08:17:37 +0000 |
------- Original Message -------
On Saturday, April 8th, 2023 at 2:59 AM, Simon Perry via Grub-devel
<grub-devel@gnu.org> wrote:
>
> Hi there,
>
> I've recently moved to using a LUKS2 encrypted boot and it's working
> great, however one of the frustrating things is that you get dropped to
> grub rescue after a single failed passphrase attempt.
>
> I see there was a patch proposed back in 2019, but it didn't seem to
> progress any further (and the guy's git repo has since disappeared).
>
> https://lists.gnu.org/archive/html/grub-devel/2019-08/msg00015.html
>
> Anyway, I was wondering if any future consideration would be given to
> adding a feature allowing multiple retries when entering a passphrase?
>
> Appreciate your time.
>
> Cheers.
>
> --
> Simon Perry (aka Pezz)
>
> _______________________________________________
> Grub-devel mailing list
> Grub-devel@gnu.org
> https://lists.gnu.org/mailman/listinfo/grub-devel
AFAIK this patch[1] allows to have several passphrase attempts. It was
originally proposed by John Lane as a part of crypto enhancement patch set[2].
Several versions of this patch set were sent to grub-devel mailing list in
2015-2018, but nothing was directly included into git. The patch was written
for LUKS1 version because support for LUKS2 in grub was included later.
However, it seems it would be trivial to add support for LUKS2.
[1] https://lists.gnu.org/archive/html/grub-devel/2015-06/msg00113.html
[2] https://grub.johnlane.ie/