Debian Bug report logs -
#203538
cryptoloop-source: Please supply an init script to mount encrypted fs and to activate encrypted swap
Reported by: Vincent Bernat <bernat@free.fr>
Date: Wed, 30 Jul 2003 19:03:01 UTC
Severity: wishlist
Found in version 0.0.0+0.0.1-pre1-8
Done: Frank Lichtenheld <djpig@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Ivo Timmermans <ivo@debian.org>:
Bug#203538; Package cryptoloop-source.
(full text, mbox, link).
Acknowledgement sent to Vincent Bernat <bernat@free.fr>:
New Bug report received and forwarded. Copy sent to Ivo Timmermans <ivo@debian.org>.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: cryptoloop-source
Version: 0.0.0+0.0.1-pre1-8
Severity: wishlist
Hello,
Since cryptoloop enables the use of encrypted filesystems and encrypted
swap, it would be nice to add some scripts to mount at boot time encrypted
filesystems and activate encrypted swap.
You could either take Mandrake scripts (which simply reads /etc/fstab which
contains special keywords when fs are encrypted) or use an ad-hoc script
like cryptofs-init http://cvs.pld.org.pl/cryptofs-init/
If you like one of these solutions but don't have time to implement them, I
can do it.
-- System Information:
Debian Release: testing/unstable
Architecture: powerpc
Kernel: Linux guybrush 2.4.21-ben2-guybrush.44 #1 sam jui 26 19:33:14 CEST 2003 ppc
Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro
Versions of packages cryptoloop-source depends on:
ii bash 2.05b-8.1 The GNU Bourne Again SHell
ii build-essential 9.4 informational list of build-essent
ii cryptoapi-core-source 0.1.0-3 CryptoAPI core kernel module
ii grep-dctrl 1.11 Grep Debian package information
ii kernel-patch-scripts 0.99.27 Scripts to help dealing with packa
ii patch 2.5.9-1 Apply a diff file to an original
-- no debconf information
Information forwarded to debian-bugs-dist@lists.debian.org, Ivo Timmermans <ivo@debian.org>:
Bug#203538; Package cryptoloop-source.
(full text, mbox, link).
Acknowledgement sent to Vincent Bernat <bernat@free.fr>:
Extra info received and forwarded to list. Copy sent to Ivo Timmermans <ivo@debian.org>.
(full text, mbox, link).
Message #10 received at 203538@bugs.debian.org (full text, mbox, reply):
Package: cryptoloop-source
Version: 0.0.0+0.0.1-pre1-8
Followup-For: Bug #203538
Hello,
Here is an init script which aims at providing encrypted swap support
via cryptoloop. It is largely inspired by current Mandrake scripts (so
credits need to be added). It assumes that aes support is in the kernel
(or loaded), it may be launched only as a start script. It could be
extended to support encrypted partition as well, but this needs to
modify /etc/init.d/mountall.sh.
I suggest to put it as S36 in /etc/rcS.d
#! /bin/sh
# Emacs ! This is a -*- sh -*- file
encrypted_swap=$(awk '($0 !~ /^#/ && $3 == "swap" && $4 == "encrypted") {print $1}' /etc/fstab)
if [[ -n $encrypted_swap ]];then
loop=NONE
modprobe loop
if [ $? == 0 ]; then
for (( s = 1; s <= 10; s++ )); do
if [ -b /dev/loop0 ]; then
loop=OK
s=11
else
sleep 1
fi
done
fi
if [ $loop == OK ]; then
for swdev in ${encrypted_swap}; do
loop=NONE
for l in $(echo /dev/loop[0-9]); do
if [ $loop == NONE ] && ! grep -q $l /proc/mounts && ! { losetup $l &> /dev/null; }; then
loop=$l
fi
done
if [ $loop != NONE ]; then
# echo "Found available loop device" $loop
swapoff $swdev > /dev/null 2>&1
dd if=$swdev bs=1024 count=40 2>/dev/null |\
mcookie -f /dev/stdin | losetup -p 0 -e aes -k 128 $loop $swdev
if [ $? == 0 ]; then
echo "Mounting" $swdev "on encrypted" $loop "with random key"
dd if=/dev/zero of=$loop bs=1024 count=40 > /dev/null 2>&1
if [ $? == 0 ]; then
echo "Activating encrypted swap on" $swdev "using" $loop
mkswap $loop
swapon -p 0 $loop
fi
else
echo "Failed to mount" $swdev "on encrypted" $loop "with random key"
fi
else
echo "Could not find any available loop device for encrypted swap!"
fi
done
fi
fi
-- System Information:
Debian Release: testing/unstable
Architecture: powerpc
Kernel: Linux guybrush 2.4.21-ben2-guybrush.45 #1 mer jui 30 19:55:47 CEST 2003 ppc
Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro
Versions of packages cryptoloop-source depends on:
ii bash 2.05b-8.1 The GNU Bourne Again SHell
ii build-essential 9.4 informational list of build-essent
ii cryptoapi-core-source 0.1.0-3 CryptoAPI core kernel module
ii grep-dctrl 1.100 Grep Debian package information
ii kernel-patch-scripts 0.99.27 Scripts to help dealing with packa
ii patch 2.5.9-1 Apply a diff file to an original
-- no debconf information
Information forwarded to debian-bugs-dist@lists.debian.org, Ivo Timmermans <ivo@debian.org>:
Bug#203538; Package cryptoloop-source.
(full text, mbox, link).
Acknowledgement sent to Lionel Elie Mamane <lionel@mamane.lu>:
Extra info received and forwarded to list. Copy sent to Ivo Timmermans <ivo@debian.org>.
(full text, mbox, link).
Message #15 received at 203538@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
On Fri, Aug 15, 2003 at 11:17:57AM +0200, Vincent Bernat wrote:
> Mandrake features encrypted swap and encrypted partition since at
> least 8.2. Putting support of such a thing in Debian is relatively
> easy. I have filled a bug against cryptoloop-source for this
> (#203538).
Another source of inspiration for implementing this would be Knoppix
MiB, a Debian derivative that already does this (yes, it is a
derivative of Knoppix, not it isn't done by Klaus Knopper).
http://www.bouissou.net/knoppix-mib/doc-html/Knoppix-Mib.html)
--
Lionel
[Message part 2 (application/pgp-signature, inline)]
Information forwarded to debian-bugs-dist@lists.debian.org, Ivo Timmermans <ivo@debian.org>:
Bug#203538; Package cryptoloop-source.
(full text, mbox, link).
Acknowledgement sent to fleny68 <fleny68@free.fr>:
Extra info received and forwarded to list. Copy sent to Ivo Timmermans <ivo@debian.org>.
(full text, mbox, link).
Message #20 received at 203538@bugs.debian.org (full text, mbox, reply):
Le Dimanche 17 Août 2003 23:45, Lionel Elie Mamane a écrit :
> On Fri, Aug 15, 2003 at 11:17:57AM +0200, Vincent Bernat wrote:
> > Mandrake features encrypted swap and encrypted partition since at
> > least 8.2. Putting support of such a thing in Debian is relatively
> > easy. I have filled a bug against cryptoloop-source for this
> > (#203538).
>
> Another source of inspiration for implementing this would be Knoppix
> MiB, a Debian derivative that already does this (yes, it is a
> derivative of Knoppix, not it isn't done by Klaus Knopper).
>
> http://www.bouissou.net/knoppix-mib/doc-html/Knoppix-Mib.html)
Source is the same. AFAIK Michel Bouissou make the Mandrake's swap encryption
patch and the knoppix-MiB.
There is a "losetup -o 4096 -e AES256 ..." in the swap script in the
knoppix-MiB.
I have seen in the unified util-linux patch such a feature for swap directly
implemented. This feature is not in util-linux 2.12 ?
regards
--
Fleny68
Information forwarded to debian-bugs-dist@lists.debian.org, Ivo Timmermans <ivo@debian.org>:
Bug#203538; Package cryptoloop-source.
(full text, mbox, link).
Acknowledgement sent to fleny68 <fleny68@free.fr>:
Extra info received and forwarded to list. Copy sent to Ivo Timmermans <ivo@debian.org>.
(full text, mbox, link).
Reply sent to Frank Lichtenheld <djpig@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Vincent Bernat <bernat@free.fr>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #30 received at 203538-done@bugs.debian.org (full text, mbox, reply):
The cryptoapi-core-source and cryptoloop-source packages were
removed from Debian unstable yesterday so I close their remaining bugs.
[Date: Wed, 21 Apr 2004 18:37:55 -0400] [ftpmaster: James Troup]
Removed the following packages from unstable:
cryptoapi-core-source | 0.1.0-5 | source, all
cryptoloop-source | 0.0.0+0.0.1-pre1-10 | source, all
Closed bugs: 242245
------------------- Reason -------------------
ROM; unmaintained, don't apply to modern kernel.
----------------------------------------------
Gruesse,
--
Frank Lichtenheld <djpig@debian.org>
www: http://www.djpig.de/
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sat Apr 15 21:21:45 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.