X-Loop: help-debbugs@HIDDEN
Subject: bug#32054: [wishlist] Support LUKS key-files in initramfs
Resent-From: Taylan Kammer <taylanbayirli@HIDDEN>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
Resent-CC: bug-guix@HIDDEN
Resent-Date: Wed, 04 Jul 2018 17:46:01 +0000
Resent-Message-ID: <handler.32054.B.153072633220999 <at> debbugs.gnu.org>
Resent-Sender: help-debbugs@HIDDEN
X-GNU-PR-Message: report 32054
X-GNU-PR-Package: guix
X-GNU-PR-Keywords:
To: 32054 <at> debbugs.gnu.org
X-Debbugs-Original-To: bug-guix@HIDDEN
Received: via spool by submit <at> debbugs.gnu.org id=B.153072633220999
(code B ref -1); Wed, 04 Jul 2018 17:46:01 +0000
Received: (at submit) by debbugs.gnu.org; 4 Jul 2018 17:45:32 +0000
Received: from localhost ([127.0.0.1]:46936 helo=debbugs.gnu.org)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>)
id 1falqO-0005Sc-9a
for submit <at> debbugs.gnu.org; Wed, 04 Jul 2018 13:45:32 -0400
Received: from eggs.gnu.org ([208.118.235.92]:40887)
by debbugs.gnu.org with esmtp (Exim 4.84_2)
(envelope-from <taylanbayirli@HIDDEN>) id 1falqN-0005SR-Al
for submit <at> debbugs.gnu.org; Wed, 04 Jul 2018 13:45:31 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
(envelope-from <taylanbayirli@HIDDEN>) id 1falqH-0003QK-CB
for submit <at> debbugs.gnu.org; Wed, 04 Jul 2018 13:45:26 -0400
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org
X-Spam-Level:
X-Spam-Status: No, score=-0.5 required=5.0 tests=BAYES_05,FREEMAIL_FROM,
T_DKIM_INVALID autolearn=disabled version=3.3.2
Received: from lists.gnu.org ([2001:4830:134:3::11]:54607)
by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32)
(Exim 4.71) (envelope-from <taylanbayirli@HIDDEN>)
id 1falqH-0003Q4-8M
for submit <at> debbugs.gnu.org; Wed, 04 Jul 2018 13:45:25 -0400
Received: from eggs.gnu.org ([2001:4830:134:3::10]:60091)
by lists.gnu.org with esmtp (Exim 4.71)
(envelope-from <taylanbayirli@HIDDEN>) id 1falqG-0008Pf-3N
for bug-guix@HIDDEN; Wed, 04 Jul 2018 13:45:24 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
(envelope-from <taylanbayirli@HIDDEN>) id 1falqF-0003P5-B7
for bug-guix@HIDDEN; Wed, 04 Jul 2018 13:45:24 -0400
Received: from mail-wm0-x234.google.com ([2a00:1450:400c:c09::234]:55963)
by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
(Exim 4.71) (envelope-from <taylanbayirli@HIDDEN>)
id 1falqF-0003Of-3J
for bug-guix@HIDDEN; Wed, 04 Jul 2018 13:45:23 -0400
Received: by mail-wm0-x234.google.com with SMTP id v16-v6so7207808wmv.5
for <bug-guix@HIDDEN>; Wed, 04 Jul 2018 10:45:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
h=from:to:subject:date:message-id:user-agent:mime-version;
bh=GlxGEewDqfthVkwPkx797zfJocU2W30eW2KtZAin6bo=;
b=MToKGYzpVzvyED+A/NrVtaS0kAhb6DmT6vwLing3GB6b8Ml+KMQeo22axmmKaF/Fmf
Ja0W6RSuHmPqJmDlJvjpZqgRokDf2/N1C6U6QjaFZkdDBms3IpAFxsHA74zlFihM+Gzh
bpSWYTTKF6xli+eIDzfJ29ZLdKwLi+bMEdwrkXXhyWX6rMN1vZv/9QNq/iE02jH8Bg09
1/fn5pAJR3jvfSArkkAYlkGbMxGGAwo30X5zXAyo8prC7Lp8tXttquYqpNVVc15FB/vy
s0jWXDwCBzPbHvJaUUruTUMSmbwsZYnAvV6iAOjhSL5pkCcKPEsRAdzsH/SELijiZYiH
O96g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:from:to:subject:date:message-id:user-agent
:mime-version;
bh=GlxGEewDqfthVkwPkx797zfJocU2W30eW2KtZAin6bo=;
b=qZX2zq5EJ9rc7itOailrG0jukwxpaKsekQWG1SkLEfdHvooMrRrc1d6k6PUIeAcbuY
hX2uxX339EaCh+g5CpaD4m3axR8hDCoDmnxgZeYUL5M7WUWjKx8iwho7zcWh20NNwpFL
2Cq5gMpBZ6KN0CIOVlq1pHOBr24PbB+2l3ds1WA0nsev8X85hSPe4/qR7hl8QxZVDVnN
E5ExAXIBW7NFT7SbfCz6VVs4d59tOsn/onSUvZ13Fk0E8XTGnDnFdG6Pz/RxsWG+tckf
PcQahBwC6QIXLf3YMor7tY82JUy53ZOeN+4EJagesne9eqmWdGKpqk3Y5aA+EGEpUEGs
Vwrw==
X-Gm-Message-State: APt69E27Bf7jhtFEtCKnZpdZ4Mk/X5QJSQI9IEq22AfOWGgpJlmeCUfG
mnnieRShHVrryJYTRZpXRN1Vzw==
X-Google-Smtp-Source: AAOMgpcg/O/P9h3pu30b5b1+/gTq5Mz9oRgQaUuA3BHXCb4ejPH/ylIobt6qMOnncyTRDAmjNe/blg==
X-Received: by 2002:a1c:7908:: with SMTP id l8-v6mr2107294wme.80.1530726321527;
Wed, 04 Jul 2018 10:45:21 -0700 (PDT)
Received: from guixsd ([2a02:908:c35:b420:7fc7:951d:d3f1:148f])
by smtp.gmail.com with ESMTPSA id l6-v6sm2981693wmh.41.2018.07.04.10.45.20
for <bug-guix@HIDDEN>
(version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256);
Wed, 04 Jul 2018 10:45:20 -0700 (PDT)
From: Taylan Kammer <taylanbayirli@HIDDEN>
Date: Wed, 04 Jul 2018 21:45:19 +0200
Message-ID: <87wouayecw.fsf@HIDDEN>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
recognized.
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x
X-Received-From: 2001:4830:134:3::11
X-Spam-Score: -4.0 (----)
X-BeenThere: debbugs-submit <at> debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: <debbugs-submit.debbugs.gnu.org>
List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe>
List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/>
List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org>
List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help>
List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>,
<mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe>
Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org
Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org>
X-Spam-Score: -5.0 (-----)
It would be neat if guix supported creating an initramfs that contains
LUKS key-files and decrypts partitions with those.
Consider the following simple drive and partition setup:
/dev/sda: Has GRUB installed
/dev/sda1: Contains LUKS partition, meant to be mounted on / (root)
/dev/sda2: Contains LUKS partition, meant to be mounted on /home
Without key-files, the boot process goes like this:
1. GRUB asks for the key for /dev/sda1 (key prompt 1)
2. The GRUB menu appears and lets you select the system to boot
3. The initramfs is loaded and starts doing its job
4. The initramfs asks for the key for /dev/sda1 (key prompt 2)
5. The initramfs(?) asks for the key for /dev/sda2 (key prompt 3)
6. The system continues and finishes booting
(I'm not sure if in step #5 it's still the initramfs that asks for the
key for sda2, or whether the initramfs is done after mounting sda1 and
switching root to it.)
This means the user has to enter a password three times, and two of the
times it's the same password.
If the initramfs contained key-files for the two partitions and were
able to use them instead of prompting the user, then the user would only
need to enter a key for GRUB, and further decryptions would happen
automatically. (The initramfs itself resides on sda1, so the key-files
are safe.)
Taylan
Content-Disposition: inline Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) Content-Type: text/plain; charset=utf-8 X-Loop: help-debbugs@HIDDEN From: help-debbugs@HIDDEN (GNU bug Tracking System) To: Taylan Kammer <taylanbayirli@HIDDEN> Subject: bug#32054: Acknowledgement ([wishlist] Support LUKS key-files in initramfs) Message-ID: <handler.32054.B.153072633220999.ack <at> debbugs.gnu.org> References: <87wouayecw.fsf@HIDDEN> X-Gnu-PR-Message: ack 32054 X-Gnu-PR-Package: guix Reply-To: 32054 <at> debbugs.gnu.org Date: Wed, 04 Jul 2018 17:46:02 +0000 Thank you for filing a new bug report with debbugs.gnu.org. This is an automatically generated reply to let you know your message has been received. Your message is being forwarded to the package maintainers and other interested parties for their attention; they will reply in due course. Your message has been sent to the package maintainer(s): bug-guix@HIDDEN If you wish to submit further information on this problem, please send it to 32054 <at> debbugs.gnu.org. Please do not send mail to help-debbugs@HIDDEN unless you wish to report a problem with the Bug-tracking system. --=20 32054: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=3D32054 GNU Bug Tracking System Contact help-debbugs@HIDDEN with problems
Received: (at control) by debbugs.gnu.org; 4 Jan 2020 20:01:04 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Sat Jan 04 15:01:04 2020 Received: from localhost ([127.0.0.1]:43434 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1inpbc-0004uj-KG for submit <at> debbugs.gnu.org; Sat, 04 Jan 2020 15:01:04 -0500 Received: from tobias.gr ([80.241.217.52]:38100) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <me@HIDDEN>) id 1inpbb-0004sp-29 for control <at> debbugs.gnu.org; Sat, 04 Jan 2020 15:01:03 -0500 Received: by tobias.gr (OpenSMTPD) with ESMTP id 5beb2df9 for <control <at> debbugs.gnu.org>; Sat, 4 Jan 2020 20:01:02 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=tobias.gr; h=from:to :date:message-id:mime-version:content-type; s=2018; i= me@HIDDEN; bh=vW2UrwVwoYPPEZKhiW5DsjEfoeZrPHlSFWc4KPCBh0g=; b= B3agftmHsZDk/yNYRaZQIwlAibhyFBUPH1w9GPlzEeX8ApWOY9F+25qLKQfvV5xR MAmWC2U9TUTxwyciYZV3j/R/MY4GHcC0fPx7BS5mohhDdZFj7/3w9KwvfpYtah/a LAeG0PvcqMT10cVv790NsW5Sx7mKL870CbqW0Yi1TV/cY0DQNrfA7utIa+oycKSS raSCN2okntCu/I7QRWtmUcm/5Llyi0Euw99wT8k9yXRSlY9QJbgpcPut+g0mumSB u5zBxpKe8V6VoHrVsdO3uTMHjP1ch39DXjqWrPvcXpTl2CsfOcQmAOpX2IahR9qW dcKHpnOBkxH1D9/h0VQOcw== Received: by submission.tobias.gr (OpenSMTPD) with ESMTPSA id ea6d2524 (TLSv1.3:TLS_AES_256_GCM_SHA384:256:NO) for <control <at> debbugs.gnu.org>; Sat, 4 Jan 2020 20:01:02 +0000 (UTC) From: Tobias Geerinckx-Rice <me@HIDDEN> To: GNU bug tracker automated control server <control <at> debbugs.gnu.org> Date: Sat, 04 Jan 2020 21:01:01 +0100 Message-ID: <87tv5b3saq.fsf@nckx> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Spam-Score: -0.3 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.3 (-) --=-=-= Content-Type: text/plain; format=flowed severity 38924 wishlist merge 32054 38924 --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEfo+u0AlEeO9y5k0W2Imw8BjFSTwFAl4Q7v0ACgkQ2Imw8BjF STz5yA/+L8+1vl2u7U6RLL1rzX3box8t4NI8Hu9r6vjx0iJmHy7j8mfd2cHWBxPH ZIiP6sGDU77QFtbWkFJY6iRdzNRbn2I5zIw1l75shIp2fdrYkwWHq859zYVop3N2 xa2f+oY1/HVZH7vSs5g4tha6J2zyIBTtP8czg4n/4xTlQLAD1CQzxbqKM3afHMQ6 6xc3Z1MhYumC5SSuBvqM5hFKNlOSl3OlpKkfxLdFQjG472y6ISMOaCqKtd21C3KT 0wn1X8/UzxBC7gTflYCz8nx2OglzSkSmZsiYRmydWIcxa0iLBBzDiT4/z9KlFmN1 lpQvx+m8V6wZMh06hVsHiA+v/EUvdbA8vJP7NSAgyx3QyZRgE2IuYezfYcS16wA7 89Gisml0loqU5Ry0OOuwahHfYFikjhtnzAEwEjsjTk9HIuMHEEszWQpKKJ84p60d yHsiW+NAMJmGTrHFUq3vzXenO9W7W4ahCrtoHXtZyhNUXPEYDfv0bzxdXjGeHAlj L0jP77ZavafrcISVTprwvXtvSrMbMjqIG98w7UkaxJBKZwB2r9q48xlHL0U+GuOb QKX8SInxiUAGRqjy0bbaSHlh52fUcT9Zw1mwZok9oeLMWzoD+m6wPIhrbo/ke8Ay 3fR/zoNzk6rsd1YqJXPxJz8bXBDpKknLtd6yLXGyp+7vn7lEEio= =Shsz -----END PGP SIGNATURE----- --=-=-=--
Received: (at control) by debbugs.gnu.org; 14 Jan 2020 00:02:51 +0000 From debbugs-submit-bounces <at> debbugs.gnu.org Mon Jan 13 19:02:51 2020 Received: from localhost ([127.0.0.1]:60414 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <debbugs-submit-bounces <at> debbugs.gnu.org>) id 1ir9fW-0000GN-Sz for submit <at> debbugs.gnu.org; Mon, 13 Jan 2020 19:02:51 -0500 Received: from pat.zlotemysli.pl ([37.59.186.212]:34952) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from <kuba@HIDDEN>) id 1ir9fV-0000GF-6i for control <at> debbugs.gnu.org; Mon, 13 Jan 2020 19:02:49 -0500 Received: (qmail 15526 invoked by uid 1009); 14 Jan 2020 01:02:47 +0100 Received: from 188.123.215.55 (kuba@HIDDEN@188.123.215.55) by pat (envelope-from <kuba@HIDDEN>, uid 1002) with qmail-scanner-2.08st (clamdscan: 0.98.6/25693. spamassassin: 3.4.0. perlscan: 2.08st. Clear:RC:1(188.123.215.55):. Processed in 0.008591 secs); 14 Jan 2020 00:02:47 -0000 Received: from unknown (HELO zdrowyportier.kadziolka.net) (kuba@HIDDEN@188.123.215.55) by pat.zlotemysli.pl with SMTP; 14 Jan 2020 01:02:47 +0100 Date: Tue, 14 Jan 2020 01:02:45 +0100 From: Jakub =?utf-8?B?S8SFZHppb8WCa2E=?= <kuba@HIDDEN> To: control <at> debbugs.gnu.org Subject: Assigning bugs I will soon send patches for to myself (where soon = a few days) Message-ID: <20200114000245.4q7mv7y6mqgpbxz4@HIDDEN> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline X-Spam-Score: 0.0 (/) X-Debbugs-Envelope-To: control X-BeenThere: debbugs-submit <at> debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: <debbugs-submit.debbugs.gnu.org> List-Unsubscribe: <https://debbugs.gnu.org/cgi-bin/mailman/options/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=unsubscribe> List-Archive: <https://debbugs.gnu.org/cgi-bin/mailman/private/debbugs-submit/> List-Post: <mailto:debbugs-submit <at> debbugs.gnu.org> List-Help: <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=help> List-Subscribe: <https://debbugs.gnu.org/cgi-bin/mailman/listinfo/debbugs-submit>, <mailto:debbugs-submit-request <at> debbugs.gnu.org?subject=subscribe> Errors-To: debbugs-submit-bounces <at> debbugs.gnu.org Sender: "Debbugs-submit" <debbugs-submit-bounces <at> debbugs.gnu.org> X-Spam-Score: -1.0 (-) owner 38884 ! owner 32054 ! thanks
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997 nCipher Corporation Ltd,
1994-97 Ian Jackson.