Re: Keyfile Support for GRUBs LUKS

2013-11-25 Thread Darren J Moffat
You could do an equivalent thing with AES-CBC or AES-XTS plus HMAC-SHA256 (the original ZFS crypto prototype was AES-CBC with HMAC-SHA256 but I switched to AES-CCM/GCM). -- Darren J Moffat ___ Grub-devel mailing list Grub-devel@gnu.org https://lists.

Re: [RFC] grub-install C rewrite

2013-09-26 Thread Darren J Moffat
- not least of which because it is root's login shell. -- Darren J Moffat ___ Grub-devel mailing list Grub-devel@gnu.org https://lists.gnu.org/mailman/listinfo/grub-devel

Re: ZFS Crypto key hand off to kernel

2012-01-13 Thread Darren J Moffat
ainly use them. 3) GRUB may have some keys without knowing which pool/fs it's used for. They should be marked as such. I must be missing something here, how could that happen in the ZFS case? Or do you mean in general ? -- Darren J Moffat __

ZFS Crypto key hand off to kernel

2012-01-10 Thread Darren J Moffat
d the same key. Is this something that would be of interest for GRUB2 ? If so I'll look at developing the spec update and a patch for GRUB2 to support it for the zfs crypto support. -- Darren J Moffat ___ Grub-devel mailing list Grub-devel@gnu.org