[Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id

• Previous message (by thread): [Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id
• Next message (by thread): [Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Ondrej Kozina:
> On 09/13/2018 04:13 PM, procmem wrote:
>>
>>
>> Appending break=premount to the line starting with "linux" worked for
>> converting the header to v2. However changing it to argon2id still
>> failed with a -1 error code.
> 
> Well, this sounds like a bug. Could you please provide us with debug
> output for failing command trying to luksConvertKey that particular
> keyslot?
> 

Sure thing but I don't know how to access initramfs command history.
Unlike a booted-up environment there is no opportunity to scroll and
select entire output for saving.

>>
>> So I ended up bypassing this process by creating a new keyslot with the
>> same passphrase - which happens to use the best parameters by default
>> (argon2id in this case) and then going back and deleting the legacy
>> keyslot:
> 
> Actually luksConvertKey command works similar to process you just
> described. With only exception that it replaces the keyslot in-place.
> 

Cool. Good to know :)

• Previous message (by thread): [Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id
• Next message (by thread): [Whonix-devel] [dm-crypt] Troubleshooting: Header Conversion to argon2id
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]