Hi Alex! There are currently many mails reaching me that claim that AES is not supported and that there is no -p option in losetup, like I said in the howto. The latter stems from the fact that aeb has not included the correspondig patch I sent to him. A reason he did not give to me. The former is just a slip in the util-linux.patch: The obvious line for AES is missing from the list of known ciphers in lomount.c. I think, it would be a good idea to add that line and make a 17.11, even if that remains the only change. If you like, you can include the patch I sent to you some time ago that adds support for a -p option to losetup (for reading the passphrase from a given file descriptor). You then said that this does not belong to the realm of the international util-linux patch, but I think aeb waits for that patch to be submitted for inclusion in the mainstream util-linux, or so I understood him, though he didn't say it openly. So we may as well collect the changes to util-linux in the patch and then submit it together to aeb. I don't think we should do that at this point, because we would still need to release a patch along with any changes (e.g. addition of a new cipher) to the ioctls. It would be best if we'd make losetup/mount completely independent of the details of the cryptoapi, e.g. using the information from the /proc files to determine available ciphers and their key parameters. Marc Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
