Bug#420105: [Pkg-cryptsetup-devel] Bug#420105: --tries does not work with --key-file (and thus --key-script)

David Härdeman david at hardeman.nu
Fri Apr 20 13:50:00 UTC 2007


On Fri, April 20, 2007 7:39, Alexander Zangerl said:
> Line 262 in setup.c makes get_key() return false if the
> input is not a tty. This is used on line 634 to abort any
> further tries at getting a passphrase.
>
> This means that any --key-file is tried once only, which is a
> reasonable shortcut for reading static files no more than once.
> However, if --key-file=- there's a script feeding
> data to cryptsetup and this script most definitely can produce different
> output. So please allow it to do so!

Hmmm...as far as I can remember without checking the code: if you use a
hash, cryptsetup will read from stdin until the pipe is closed, so
multiple attemps do not make much sense then...

-- 
David Härdeman





More information about the Pkg-cryptsetup-devel mailing list