Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 17 Nov 2014 09:32:09 +0000 (UTC)
From:      Anderson Souza via LinkedIn <convites@linkedin.com>
To:        <freebsd-geom@freebsd.org>
Subject:   =?UTF-8?Q?O_convite_de_Anderson_Souza_est=C3=A1_aguardando_sua_resposta?=
Message-ID:  <1340146255.2314930.1416216729091.JavaMail.app@lva1-app1733.prod>

next in thread | raw e-mail | index | archive | help
Anderson Souza quer fazer parte da sua rede no LinkedIn. Como deseja respon=
der?

Aceitar: http://www.linkedin.com/blink?simpleRedirect=3Dd3cSd3oRcPwTcj4Zh4B=
KrSBQonhFtCVF9CpIokMTcBdqfnBBiShBsC5EsOoVclZMu6lvtCVFfmJB9D9Bp6VFrmlObnhMpm=
dzoiRybmtSrCBvrmRLoORIrmkZpSVFqSdxsDgCpnhFtCV9pSlipn9Mfm4CdzoJt6ETtCRIcCAJu=
7tNenhDbjRBfP9SbSkLrmZzbCVFp6lHrCBIbDtTtOYLeDdMt7hE&msgID=3DI8282559111_1&m=
arkAsRead=3D

Visualizar o perfil de Anderson Souza: http://www.linkedin.com/blink?simple=
Redirect=3Dej5vs7xBnTpKqjRHpipOpmhKqmRBsyRQs6lzoS4JoyRDtCVFnSRJrScJr6RBfmtK=
qmJzon9Q9DpMrzRQ9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLoOVKqmhBqSVFr2VTtTs=
LbPFMt7hE&msgID=3DI8282559111_1&markAsRead=3D

Voc=C3=AA est=C3=A1 recebendo e-mails de lembretes sobre convites pendentes=
. Cancele sua inscri=C3=A7=C3=A3o aqui: http://www.linkedin.com/blink?simpl=
eRedirect=3D6tOrQkO9mhPoClBsCoMd2lJrSlDbmhPoClBsCoZr6BxrmkCc3oMc38Zp6ACd3cS=
d3oRcPwTcj4Zp6BD9zANnT1UplZSrCAZqSkCoDlPrDkJpyRzoClJnSRJrScJr6RBfmtKqmJzon9=
Q9CZLpPRQ9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLoOVKqmhBqSVFr2VTtTsLbPFMt7=
hE&msgID=3DI8282559111_1&markAsRead=3D

Voc=C3=AA recebeu um convite de conex=C3=A3o. O LinkedIn utiliza seu endere=
=C3=A7o de e-mail para fazer sugest=C3=B5es a nossos usu=C3=A1rios em recur=
sos como Pessoas que talvez voc=C3=AA conhe=C3=A7a. Clique aqui para cancel=
ar a inscri=C3=A7=C3=A3o: http://www.linkedin.com/blink?simpleRedirect=3D0S=
dyRQqztSrmMOqiRUtT4Vt6sJfmhFpip1rRdhkBlCcSRisT94hSRLgQdlr6RVcRxBpkQQt6VBqRZ=
plT5ilTdmp7kQtQxesjtlllASiRBqtjxyk69gi79ohAsVrll1gk5Dt69Stjllc4FejQthgjRAqm=
ZI9zANnT1UplZSrCAZqSkCkjoPp4l7q5p6sCR6kk4ZrClHrRhAqmQCrDlIfngCdzoJt6ETtCRIc=
CAJu7tNenhDbjRBfP9SbSkLrmZzbCVFp6lHrCBIbDtTtOYLeDdMt7hE&amp;msgID=3DI828255=
9111_1&amp;markAsRead=3D Saiba por que inclu=C3=ADmos isso neste link: http=
://www.linkedin.com/blink?simpleRedirect=3D0Ue3sQfmh9pmNzqnhOoioVclZMu6lvtC=
VFfmJB9CNOlmlzqnpOpldOpmRLt7dRoPRx9zoSbnhGdTpJr39FbnxTsjBQpOQZpjYOtyZBbSRLo=
OVKqmhBqSVFr2VTtTsLbPFMt7hE&msgID=3DI8282559111_1&markAsRead=3D
&copy; 2014, LinkedIn Corporation. 2029 Stierlin Ct. Mountain View, CA 9404=
3, EUA
From owner-freebsd-geom@FreeBSD.ORG  Mon Nov 17 23:25:38 2014
Return-Path: <owner-freebsd-geom@FreeBSD.ORG>
Delivered-To: freebsd-geom@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 49700F79;
 Mon, 17 Nov 2014 23:25:38 +0000 (UTC)
Received: from mail.cyberleo.net (paka.cyberleo.net [216.226.128.180])
 by mx1.freebsd.org (Postfix) with ESMTP id 274CB850;
 Mon, 17 Nov 2014 23:25:37 +0000 (UTC)
Received: from [172.16.44.4] (vitani.den.cyberleo.net [216.80.73.130])
 by mail.cyberleo.net (Postfix) with ESMTPSA id 154731996E;
 Mon, 17 Nov 2014 18:25:29 -0500 (EST)
Message-ID: <546A83E8.9050409@cyberleo.net>
Date: Mon, 17 Nov 2014 17:25:28 -0600
From: CyberLeo Kitsana <cyberleo@cyberleo.net>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
 rv:24.0) Gecko/20100101 Thunderbird/24.8.0
MIME-Version: 1.0
To: Pawel Jakub Dawidek <pjd@FreeBSD.org>
Subject: Re: [patch] GELI Boot-time unlock failure
References: <5467F826.3070208@cyberleo.net>
 <20141117052910.GE1771@garage.freebsd.pl>
In-Reply-To: <20141117052910.GE1771@garage.freebsd.pl>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Cc: FreeBSD Geom <freebsd-geom@freebsd.org>
X-BeenThere: freebsd-geom@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: GEOM-specific discussions and implementations
 <freebsd-geom.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-geom>,
 <mailto:freebsd-geom-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-geom/>;
List-Post: <mailto:freebsd-geom@freebsd.org>
List-Help: <mailto:freebsd-geom-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-geom>,
 <mailto:freebsd-geom-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Nov 2014 23:25:38 -0000

On 11/16/2014 11:29 PM, Pawel Jakub Dawidek wrote:
> On Sat, Nov 15, 2014 at 07:04:38PM -0600, CyberLeo Kitsana wrote:
>> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=193624
>>
>> I've reworked the patch to apply to 10.1-RELEASE, and am now using it
>> successfully.
>>
>> The proper fix for this issue is most likely a new metadata version to
>> set the md_iterations per-keyslot instead of per-container, but I didn't
>> want to introduce incompatibility without input from the current GELI
>> maintainers; this patch works with the layout as-is.
>>
>> If a GELI container has a keyfile in one slot and a passphrase in the
>> other (to implement automatic boot-time unlock with offline key escrow,
>> for example), the boot-time unlock code will get confused and assume the
>> key and passphrase are to be combined, resulting in a container that
>> cannot be unlocked during boot when its keyfile is preloaded. The
>> included patch attempts to unlock using only the keyfile first.
> 
> Hi,
> 
> thanks for the patch, but I'd prefer to fix it properly, ie. allow for
> each key slot to have its dedicated iterations counter. Do you think
> this is something you could work on?

I think so. I'll see what I can do.

It might take a bit, though, as, for that, I must familiarize myself
with the userland portions as well.

-- 
Fuzzy love,
-CyberLeo
Technical Administrator
CyberLeo.Net Webhosting
http://www.CyberLeo.Net
<CyberLeo@CyberLeo.Net>

Furry Peace! - http://www.fur.com/peace/



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1340146255.2314930.1416216729091.JavaMail.app>