Also Andries has said that he's opposed to more "-o" type options
I don't recall saying that. Anyway, one is forced tohave things -o-style if the options are to be read from fstab.
If I understand correctly, then it is exactly this use case -- specification of options in fstab -- that is the primary motivation for Ben Slusky's patches.
Otherwise, an external hash program can be performed with a pipe using file-decriptor zero, I do this myself:
# gpg -d password-foo | losetup -p 0 -e encryption-algorithm...
I think that being able to specify options in fstab can offer more-simple system configuration (as opposed to scripts such as the crypto-swap script). People can still rely upon such scripts, of course, if they prefer.
Sorry if I'm stating the obvious here...
-- boyd
- Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
