[Pkg-cryptsetup-devel] Bug#418450: cryptsetup: --key-file=- does
not work as advertised
Marc Haber
mh+debian-bugs at zugschlus.de
Mon Apr 9 19:45:42 UTC 2007
Package: cryptsetup
Version: 2:1.0.4+svn26-1
Severity: normal
Hi,
--key-file=- does not take a key from standard input:
root at grml /mnt/hda1 # ./keyscript | cryptsetup -d - luksOpen /dev/hda5 hda5_crypt
Command failed.
root at grml /mnt/hda1 # ./keyscript | cryptsetup --key-file=- luksOpen /dev/hda5 hda5_crypt
Command failed.
root at grml /mnt/hda1 # ./keyscript | cryptsetup --key-file - luksOpen /dev/hda5 hda5_crypt
Command failed.
root at grml /mnt/hda1 # ./keyscript | cryptsetup luksOpen /dev/hda5 hda5_crypt
key slot 0 unlocked.
Command successful.
root at grml /mnt/hda1 #
As --key-file=- is used in
/usr/share/initramfs-tools/scripts/local-top/cryptroot, this bug
breaks initrds which obtain their key from a script. Removing
--key-file=- from the script allows booting with a keyscript.
Greetings
Marc
-- System Information:
Debian Release: lenny/sid
APT prefers oldstable
APT policy: (500, 'oldstable'), (500, 'unstable'), (500, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.20.4-scyw00225
Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Versions of packages cryptsetup depends on:
ii dmsetup 2:1.02.12-1 The Linux Kernel Device Mapper use
ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries
ii libdevma 2:1.02.12-1 The Linux Kernel Device Mapper use
ii libgcryp 1.2.3-2 LGPL Crypto library - runtime libr
ii libgpg-e 1.4-2 library for common error values an
ii libpopt0 1.10-3 lib for parsing cmdline parameters
ii libuuid1 1.39+1.40-WIP-2006.11.14+dfsg-2 universally unique id library
cryptsetup recommends no packages.
-- no debconf information
More information about the Pkg-cryptsetup-devel
mailing list