[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [dm-devel] dm-crypt userland key patch

From: Bjorn Andersson <bjorn andersson silversmedjan se>
To: Molle Bestefich <molle bestefich gmail com>, device-mapper development <dm-devel redhat com>
Cc:
Subject: Re: [dm-devel] dm-crypt userland key patch
Date: Thu, 14 Apr 2005 14:14:59 +0200

> Bjorn Andersson wrote:
> > Patch to the dm-crypt module so that it hides the crypto-key from
> > userland. (dmsetup table)
> 
> Does it also overwrite the key in memory when unloading dm-crypt, make
> sure that the memory is pinned so the key doesn't leak to swap, unload
> the key before a 'hibernate', and that sort of stuff?
> 
> --
> dm-devel mailing list
> dm-devel redhat com
> https://www.redhat.com/mailman/listinfo/dm-devel

No, this does only report a key of zeros when the status is requested.

The unloading thing is no problem to fix, but how should the
'hibernate' thing work? When you resume after a 'hibernate' you probably
expect that the device is there, especially if it's on the root
partition. But I clearly see your point.

// Bjorn

Follow-Ups:
- Re: [dm-devel] dm-crypt userland key patch
  - From: Molle Bestefich

References:
- [dm-devel] Multipath Statistics
  - From: Lan
- [dm-devel] dm-crypt userland key patch
  - From: Bjorn Andersson
- Re: [dm-devel] dm-crypt userland key patch
  - From: Molle Bestefich

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]