Milan Broz wrote: > * Adds compatible support for loop-AES encryption type in loopaesOpen command. > > Linux dm-crypt in 2.6.38 and above supports loop-AES compatible mapping > (including multi-key and special CBC mode, all three modes are supported). > > If you have raw loop-AES keyfile (text file with uuencoded per-line keys), you can > access loop-AES volume using > cryptsetup loopaesOpen <device> <name> [--key-size 128] --key-file <key-file> Do I gets this right, if multikey is not used loop aes is just equivalent to aes-cbc-plain? Couldn't the existing 'create' action be extended to just handle the loop-AES multikey mode as well? Ie no additional command? Note the IV produced by 'plain' is 32bit while loop-AES uses 64bit IIRC. Ie there's an incompatibility for volumes larger than 2TB. So you probably need to default to 'aes-cbc-plain64'. I guess that's the reason why you introduced plain64 in the first place. :-) cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg) _______________________________________________ dm-crypt mailing list dm-crypt@xxxxxxxx http://www.saout.de/mailman/listinfo/dm-crypt
