eessppeelllloo/cryptsetup
1
0
Fork 0
mirror of https://gitlab.com/cryptsetup/cryptsetup.git synced 2025-12-11 10:50:01 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add keyslot encryption params.

Browse Source 
This patch makes available LUKS2 per-keyslot encryption settings to user.

In LUKS2, keyslot can use different encryption that data.

We can use new crypt_keyslot_get_encryption and crypt_keyslot_set_encryption
API calls to set/get this encryption.

For cryptsetup new --keyslot-cipher and --keyslot-key-size options are added.

The default keyslot encryption algorithm (if cannot be derived from data encryption)
is now available as configure options (default is aes-xts-plain64 with 512-bits key).
NOTE: default was increased from 256-bits.
This commit is contained in:
Milan Broz
2019-01-06 13:37:04 +01:00
committed by Ondrej Kozina
parent 0039834bb9
commit 307a7ad077
14 changed files with 371 additions and 130 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/libcryptsetup.sym
View File

@@ -97,6 +97,8 @@ CRYPTSETUP_2.0 {
crypt_keyslot_area;
crypt_keyslot_status;
crypt_keyslot_get_key_size;
crypt_keyslot_set_encryption;
crypt_keyslot_get_encryption;
crypt_get_dir;
crypt_set_debug_level;
crypt_log;