On Wed, Feb 08, 2023 at 05:41:12PM +0100, Trond Endrest??l wrote:
> On Wed, 8 Feb 2023 08:35-0700, The Doctor wrote:
>
> > On Wed, Feb 08, 2023 at 02:32:24PM -, Christian Weisgerber wrote:
> > > On 2023-02-08, The Doctor wrote:
> > >
> > > > Any concerns vis-a-vis FreeBSD?
> > >
> > > Yes,
When I was working on the patch, I analyzed this situation.
The issue with key files is that they can be arbitrary in size, and I think
this caused this issue.
The passfile/passwords are limited in size.
Because they are limited, they are cached in the memory of geli and reused.
My conclusion was
Did anyone check if -j/-J might have similar edge cases?
No, each disk is encrypted/initialized separately:
https://cgit.freebsd.org/src/tree/usr.sbin/bsdinstall/scripts/zfsboot#n1275
On Wed, 8 Feb 2023 at 20:42, Shawn Webb wrote:
> On Wed, Feb 08, 2023 at 07:08:33PM +, FreeBSD Security Advisories
> wrote:
> > -BEGIN PGP SIGNED MESSAGE-
>
On Wed, Feb 08, 2023 at 07:08:33PM +, FreeBSD Security Advisories wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA512
>
> =
> FreeBSD-SA-23:01.geli Security Advisory
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
=
FreeBSD-SA-23:01.geli Security Advisory
The FreeBSD Project
Topic:
On Wed, Feb 08, 2023 at 02:32:24PM -, Christian Weisgerber wrote:
> On 2023-02-08, The Doctor wrote:
>
> > Any concerns vis-a-vis FreeBSD?
>
> Yes, OpenSSL in base needs to be updated to 1.1.1t... *checks git*
> ... which has already happened in main, stable/13 and stable/12.
>
> I assume a
On 2023-02-08, The Doctor wrote:
> Any concerns vis-a-vis FreeBSD?
Yes, OpenSSL in base needs to be updated to 1.1.1t... *checks git*
... which has already happened in main, stable/13 and stable/12.
I assume advisories will be forthcoming.
--
Christian "naddy" Weisgerber
