Bug#335604: marked as done (cryptsetup: document that -d option disables hashing)

Debian Bug Tracking System Mon, 14 Nov 2005 15:48:27 -0800

Your message dated Mon, 14 Nov 2005 15:32:05 -0800
with message-id <[EMAIL PROTECTED]>
and subject line Bug#335604: fixed in cryptsetup 20050111-4
has caused the attached Bug report to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 24 Oct 2005 22:24:24 +0000
>From [EMAIL PROTECTED] Mon Oct 24 15:24:24 2005
Return-path: <[EMAIL PROTECTED]>
Received: from mx02.qsc.de [213.148.130.14] 
        by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
        id 1EUAjw-0008HR-00; Mon, 24 Oct 2005 15:24:24 -0700
Received: from port-212-202-70-127.dynamic.qsc.de ([212.202.70.127] 
helo=treasure.calvinsplayground.de)
        by mx02.qsc.de with smtp (Exim 3.35 #1)
        id 1EUAjR-0000XS-00
        for [EMAIL PROTECTED]; Tue, 25 Oct 2005 00:23:53 +0200
Received: (qmail 16200 invoked by uid 1000); 24 Oct 2005 22:24:58 -0000
Message-ID: <[EMAIL PROTECTED]>
Content-Type: multipart/mixed; boundary="===============1775413075=="
MIME-Version: 1.0
From: Bastian Kleineidam <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: cryptsetup: document that -d option disables hashing
X-Mailer: reportbug 3.17
Date: Tue, 25 Oct 2005 00:24:58 +0200
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-5.5 required=4.0 tests=BAYES_00,HAS_PACKAGE,
        HTML_10_20,HTML_MESSAGE autolearn=no 
        version=2.60-bugs.debian.org_2005_01_02

This is a multi-part MIME message sent by reportbug.

--===============1775413075==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Package: cryptsetup
Version: 20050111-3
Severity: normal
Tags: patch

Hi,

this patch documents the fact that the "-d" option disables password
hashing.
I stumbled across this since I thought using "-d /dev/stdin" is the
same as using cryptsetup without -d. But this is only true if
"-h plain" is used (ie. hashing is disabled).


Regards,
  Bastian

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (900, 'unstable'), (800, 'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.13-treasure2
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)

Versions of packages cryptsetup depends on:
ii  dmsetup                      2:1.01.05-1 The Linux Kernel Device Mapper use
ii  libc6                        2.3.5-7     GNU C Library: Shared libraries an
ii  libdevmapper1.01             2:1.01.05-1 The Linux Kernel Device Mapper use
ii  libgcrypt11                  1.2.2-1     LGPL Crypto library - runtime libr
ii  libgpg-error0                1.1-4       library for common error values an
ii  libpopt0                     1.7-5       lib for parsing cmdline parameters

cryptsetup recommends no packages.

-- no debconf information

--===============1775413075==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename="cryptsetup_8_stdin.diff"

--- cryptsetup.sgml     2005-10-25 00:19:14.994887815 +0200
+++ /home/calvin/cryptsetup.sgml_fixed  2005-10-25 00:18:55.226877595 +0200
@@ -100,8 +100,13 @@
         <term><option>-d</option> <replaceable>STRING</replaceable>, 
<option>--key-file=</option><replaceable>STRING</replaceable>
         </term>
         <listitem>
-          <para>Read the key from a file (can be
-                <filename>/dev/random</filename>).</para>
+          <para>Read the raw key data from a file (can be
+<filename>/dev/random</filename>). The key data will not
+be hashed, ie. the <option>-h</option> option will be ignored.
+This implies that <option>-d</option>
+ <literal>/dev/stdin</literal> is only the same as running
+<literal>cryptsetup</literal> without the <option>-d</option> option when
+<option>-h</option> <literal>plain</literal> is used.</para>
         </listitem>
       </varlistentry>
       <varlistentry>
@@ -186,8 +191,8 @@
   <refsect1>
     <title>EXAMPLES</title>
     <programlisting>cryptsetup create crypted\-hda1 /dev/hda1</>
-    <programlisting>openssl enc -d -aes-256-ecb -in crypt.key | \\
-       cryptsetup -c twofish -d /dev/stdin create _dev_hda1 /dev/hda1</>
+    <programlisting>openssl enc \-d \-aes\-256\-ecb \-in crypt.key | \\
+       cryptsetup \-c twofish \-h sha512 create _dev_hda1 /dev/hda1</>
     <programlisting>cryptsetup remove crypted\-hda1</>
   </refsect1>
   <refsect1>

--===============1775413075==--

---------------------------------------
Received: (at 335604-close) by bugs.debian.org; 14 Nov 2005 23:42:35 +0000
>From [EMAIL PROTECTED] Mon Nov 14 15:42:35 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 4.50)
        id 1Ebnnx-0002fO-7u; Mon, 14 Nov 2005 15:32:05 -0800
From: Jonas Meurer <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#335604: fixed in cryptsetup 20050111-4
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Mon, 14 Nov 2005 15:32:05 -0800
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02

Source: cryptsetup
Source-Version: 20050111-4

We believe that the bug you reported is fixed in the latest version of
cryptsetup, which is due to be installed in the Debian FTP archive:

cryptsetup_20050111-4.diff.gz
  to pool/main/c/cryptsetup/cryptsetup_20050111-4.diff.gz
cryptsetup_20050111-4.dsc
  to pool/main/c/cryptsetup/cryptsetup_20050111-4.dsc
cryptsetup_20050111-4_i386.deb
  to pool/main/c/cryptsetup/cryptsetup_20050111-4_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jonas Meurer <[EMAIL PROTECTED]> (supplier of updated cryptsetup package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon, 14 Nov 2005 23:24:43 +0100
Source: cryptsetup
Binary: cryptsetup
Architecture: source i386
Version: 20050111-4
Distribution: unstable
Urgency: low
Maintainer: Debian Cryptsetup Team <[EMAIL PROTECTED]>
Changed-By: Jonas Meurer <[EMAIL PROTECTED]>
Description: 
 cryptsetup - configures encrypted block devices
Closes: 298944 303484 306021 310295 330370 334485 334490 335359 335604
Changes: 
 cryptsetup (20050111-4) unstable; urgency=low
 .
   * Change Maintainer field to the Debian Cryptsetup Team, add wesley and
     myself to Uploaders
   * Bump standards-version to 3.6.2.1, no changes needed
   * Document that -d option disables hashing (closes: #335604, #298944)
     Thanks to Bastian Kleineidam <[EMAIL PROTECTED]> for the patch
   * Document -r and --readonly options in the manpage (closes: #306021)
   * Split documentation of --help and --usage in manpage
   * Remove /etc/keys and /etc/crypttab on purge (closes: #330370)
   * Update README.html (closes: #334485)
   * Document how to prevent a watermark attack weakness in CryptoRoot.HowTo
     (closes: #334490)
   * Document shortness of /dev/random in CryptoSwap.HowTo (closes: #310295)
   * Fix the first line of usbcrypto.initrd, fixes half of #324353
   * Set permissions for /tmp in cryptdisks script (closes: #303484)
     Thanks to Stefan Reuter <[EMAIL PROTECTED]> for the patch
   * Added LSB initscript headers to cryptdisks script (closes: #335359)
   * renamed cryptsetup.{preinst,postinst,postrm} to preinst, postinst and
     postrm
   * Fix use of update-rc.d in postinst, cryptdisks should be stopped at
     runlevel 0 and 6, and be started at runlevel S. Instead it has been
     started in all tree runlevels up to now.
Files: 
 a39fe7c2609060864ea40b70d624b461 838 admin optional cryptsetup_20050111-4.dsc
 b2f2b2cd6646936297328db2f8ccd255 23269 admin optional 
cryptsetup_20050111-4.diff.gz
 ade422c32985301050f5cfece49ee791 196972 admin optional 
cryptsetup_20050111-4_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDeRn4d6lUs+JfIQIRAnHXAJ9XcytK7UrbwYDTU+us6DSATjY6wgCcCtI2
cf7gO0lzbtKMfAXekmUeWAo=
=FcJr
-----END PGP SIGNATURE-----


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#335604: marked as done (cryptsetup: document that -d option disables hashing)

Reply via email to