You could do an equivalent thing with AES-CBC or AES-XTS
plus HMAC-SHA256 (the original ZFS crypto prototype was AES-CBC with
HMAC-SHA256 but I switched to AES-CCM/GCM).
--
Darren J Moffat
___
Grub-devel mailing list
Grub-devel@gnu.org
https://lists.
- not least of which because it is root's
login shell.
--
Darren J Moffat
___
Grub-devel mailing list
Grub-devel@gnu.org
https://lists.gnu.org/mailman/listinfo/grub-devel
ainly use them.
3) GRUB may have some keys without knowing which pool/fs it's used for.
They should be marked as such.
I must be missing something here, how could that happen in the ZFS case?
Or do you mean in general ?
--
Darren J Moffat
__
d the same key.
Is this something that would be of interest for GRUB2 ? If so I'll look
at developing the spec update and a patch for GRUB2 to support it for
the zfs crypto support.
--
Darren J Moffat
___
Grub-devel mailing list
Grub-devel@gnu.org