Add crypt_resume_by_volume_key() function.

If user has volume key available, LUKS device can be resumed directly using provided volume key. No keyslot derivation is needed, only key digest is checked. Fixes: #502.
2025-12-11 10:50:01 +01:00 · 2019-11-24 18:04:41 +01:00
parent 2746fd708f
commit 48b203a134
5 changed files with 98 additions and 1 deletions
--- a/lib/libcryptsetup.h
+++ b/lib/libcryptsetup.h
@@ -828,6 +828,20 @@ int crypt_resume_by_keyfile(struct crypt_device *cd,
 	int keyslot,
 	const char *keyfile,
 	size_t keyfile_size);
+/**
+ * Resume crypt device using provided volume key.
+ *
+ * @param cd crypt device handle
+ * @param name name of device to resume
+ * @param volume_key provided volume key
+ * @param volume_key_size size of volume_key
+ *
+ * @return @e 0 on success or negative errno value otherwise.
+ */
+int crypt_resume_by_volume_key(struct crypt_device *cd,
+	const char *name,
+	const char *volume_key,
+	size_t volume_key_size);
 /** @} */

 /**