Date: Mon, 17 Nov 2014 09:32:09 +0000 (UTC) From: Anderson Souza via LinkedIn <convites@linkedin.com> To: <freebsd-geom@freebsd.org> Subject: =?UTF-8?Q?O_convite_de_Anderson_Souza_est=C3=A1_aguardando_sua_resposta?= Message-ID: <1340146255.2314930.1416216729091.JavaMail.app@lva1-app1733.prod>
next in thread | raw e-mail | index | archive | help
Anderson Souza quer fazer parte da sua rede no LinkedIn. Como deseja respon= der? Aceitar: http://www.linkedin.com/blink?simpleRedirect=3Dd3cSd3oRcPwTcj4Zh4B= KrSBQonhFtCVF9CpIokMTcBdqfnBBiShBsC5EsOoVclZMu6lvtCVFfmJB9D9Bp6VFrmlObnhMpm= dzoiRybmtSrCBvrmRLoORIrmkZpSVFqSdxsDgCpnhFtCV9pSlipn9Mfm4CdzoJt6ETtCRIcCAJu= 7tNenhDbjRBfP9SbSkLrmZzbCVFp6lHrCBIbDtTtOYLeDdMt7hE&msgID=3DI8282559111_1&m= arkAsRead=3D Visualizar o perfil de Anderson Souza: http://www.linkedin.com/blink?simple= Redirect=3Dej5vs7xBnTpKqjRHpipOpmhKqmRBsyRQs6lzoS4JoyRDtCVFnSRJrScJr6RBfmtK= qmJzon9Q9DpMrzRQ9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLoOVKqmhBqSVFr2VTtTs= LbPFMt7hE&msgID=3DI8282559111_1&markAsRead=3D Voc=C3=AA est=C3=A1 recebendo e-mails de lembretes sobre convites pendentes= . Cancele sua inscri=C3=A7=C3=A3o aqui: http://www.linkedin.com/blink?simpl= eRedirect=3D6tOrQkO9mhPoClBsCoMd2lJrSlDbmhPoClBsCoZr6BxrmkCc3oMc38Zp6ACd3cS= d3oRcPwTcj4Zp6BD9zANnT1UplZSrCAZqSkCoDlPrDkJpyRzoClJnSRJrScJr6RBfmtKqmJzon9= Q9CZLpPRQ9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLoOVKqmhBqSVFr2VTtTsLbPFMt7= hE&msgID=3DI8282559111_1&markAsRead=3D Voc=C3=AA recebeu um convite de conex=C3=A3o. O LinkedIn utiliza seu endere= =C3=A7o de e-mail para fazer sugest=C3=B5es a nossos usu=C3=A1rios em recur= sos como Pessoas que talvez voc=C3=AA conhe=C3=A7a. Clique aqui para cancel= ar a inscri=C3=A7=C3=A3o: http://www.linkedin.com/blink?simpleRedirect=3D0S= dyRQqztSrmMOqiRUtT4Vt6sJfmhFpip1rRdhkBlCcSRisT94hSRLgQdlr6RVcRxBpkQQt6VBqRZ= plT5ilTdmp7kQtQxesjtlllASiRBqtjxyk69gi79ohAsVrll1gk5Dt69Stjllc4FejQthgjRAqm= ZI9zANnT1UplZSrCAZqSkCkjoPp4l7q5p6sCR6kk4ZrClHrRhAqmQCrDlIfngCdzoJt6ETtCRIc= CAJu7tNenhDbjRBfP9SbSkLrmZzbCVFp6lHrCBIbDtTtOYLeDdMt7hE&msgID=3DI828255= 9111_1&markAsRead=3D Saiba por que inclu=C3=ADmos isso neste link: http= ://www.linkedin.com/blink?simpleRedirect=3D0Ue3sQfmh9pmNzqnhOoioVclZMu6lvtC= VFfmJB9CNOlmlzqnpOpldOpmRLt7dRoPRx9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLo= OVKqmhBqSVFr2VTtTsLbPFMt7hE&msgID=3DI8282559111_1&markAsRead=3D © 2014, LinkedIn Corporation. 2029 Stierlin Ct. Mountain View, CA 9404= 3, EUA From owner-freebsd-geom@FreeBSD.ORG Mon Nov 17 23:25:38 2014 Return-Path: <owner-freebsd-geom@FreeBSD.ORG> Delivered-To: freebsd-geom@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 49700F79; Mon, 17 Nov 2014 23:25:38 +0000 (UTC) Received: from mail.cyberleo.net (paka.cyberleo.net [216.226.128.180]) by mx1.freebsd.org (Postfix) with ESMTP id 274CB850; Mon, 17 Nov 2014 23:25:37 +0000 (UTC) Received: from [172.16.44.4] (vitani.den.cyberleo.net [216.80.73.130]) by mail.cyberleo.net (Postfix) with ESMTPSA id 154731996E; Mon, 17 Nov 2014 18:25:29 -0500 (EST) Message-ID: <546A83E8.9050409@cyberleo.net> Date: Mon, 17 Nov 2014 17:25:28 -0600 From: CyberLeo Kitsana <cyberleo@cyberleo.net> User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.8.0 MIME-Version: 1.0 To: Pawel Jakub Dawidek <pjd@FreeBSD.org> Subject: Re: [patch] GELI Boot-time unlock failure References: <5467F826.3070208@cyberleo.net> <20141117052910.GE1771@garage.freebsd.pl> In-Reply-To: <20141117052910.GE1771@garage.freebsd.pl> X-Enigmail-Version: 1.6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: FreeBSD Geom <freebsd-geom@freebsd.org> X-BeenThere: freebsd-geom@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: GEOM-specific discussions and implementations <freebsd-geom.freebsd.org> List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-geom>, <mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom/> List-Post: <mailto:freebsd-geom@freebsd.org> List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help> List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>, <mailto:freebsd-geom-request@freebsd.org?subject=subscribe> X-List-Received-Date: Mon, 17 Nov 2014 23:25:38 -0000 On 11/16/2014 11:29 PM, Pawel Jakub Dawidek wrote: > On Sat, Nov 15, 2014 at 07:04:38PM -0600, CyberLeo Kitsana wrote: >> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193624 >> >> I've reworked the patch to apply to 10.1-RELEASE, and am now using it >> successfully. >> >> The proper fix for this issue is most likely a new metadata version to >> set the md_iterations per-keyslot instead of per-container, but I didn't >> want to introduce incompatibility without input from the current GELI >> maintainers; this patch works with the layout as-is. >> >> If a GELI container has a keyfile in one slot and a passphrase in the >> other (to implement automatic boot-time unlock with offline key escrow, >> for example), the boot-time unlock code will get confused and assume the >> key and passphrase are to be combined, resulting in a container that >> cannot be unlocked during boot when its keyfile is preloaded. The >> included patch attempts to unlock using only the keyfile first. > > Hi, > > thanks for the patch, but I'd prefer to fix it properly, ie. allow for > each key slot to have its dedicated iterations counter. Do you think > this is something you could work on? I think so. I'll see what I can do. It might take a bit, though, as, for that, I must familiarize myself with the userland portions as well. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net <CyberLeo@CyberLeo.Net> Furry Peace! - http://www.fur.com/peace/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1340146255.2314930.1416216729091.JavaMail.app>