headers
Rik van Riel | 15 Dec 2010 01:03
Picon

ADMIN: end of nl.linux.org, lists will move

The university IT department which has graciously hosted
nl.linux.org for the last several years is about to stop
existing.

I will be moving many of the nl.linux.org services to
my own systems and will preserve the four mailing lists
that still see occasional traffic.

Those mailing lists will be hosted on the kernelnewbies.org
mailman instance starting this Friday. The only thing you
may need to change are your mail filters.

--

-- 
All rights reversed.

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 0 comments |
headers
Fog_Watch | 10 Dec 2010 01:07
Picon

Re: Loop-AES on LVM2 logical volumes

On Thu, 9 Dec 2010 21:48:49 +1100
Fog_Watch <db5 <at> exemail.com.au> wrote:

> Yes, step 17 of Example 5 says, "you need to check that your root
> partition has /dev/console".  Well it does:
> # ls -la /dev/console
> crw------- 1 root root 5, 1 Dec  9 16:26 /dev/console
Red face.

Step 14, which is before 17:
14) Reboot your computer from rescue floppy/CD-ROM or other partition,
so that the partition you are about to encrypt is *not* mounted.

Then step 17.

Then, of course, /dev/console is found.  No problem.

Regards

Fog_Watch.

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 0 comments |
headers
Jari Ruusu | 11 Nov 2010 10:20
Picon

Announce loop-AES-v3.5b file/swap crypto package

loop-AES changes since previous release:
- Fixed a race that could temporarily occour between two (or more) loop
  helper threads for same loop device. Two threads could interact with each
  other an not go to sleep when they should. This race wasted CPU cycles,
  but had no other ill effects.

bzip2 compressed tarball is here:

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.5b.tar.bz2
    md5sum f5efb1dea4cd7cd5b7ae7522ff8e7959

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.5b.tar.bz2.sign

--

-- 
Jari Ruusu  1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9  DB 1D EB E3 24 0E A9 DD
Permalink | Reply | 0 comments |
headers
Jari Ruusu | 10 Nov 2010 20:40
Picon

Announce loop-AES-v3.5a file/swap crypto package

loop-AES changes since previous release:
- Fixed device open/close reference count race, again. The fix in previous
  version was not complete enough. Thanks to John Fitzgerald for
  reporting/testing this problem.
- Worked around block layer interface breakage on linux-2.6.37-rc kernels
  (FLUSH/FUA changes).
- Cleaned up lots of #ifdef spaghetti code for 2.6.37 and later kernels.
- Added "lo_threads" option for 2.6.37 and later kernels. This can be used
  to configure the number of helper threads for device backed loops.

bzip2 compressed tarball is here:

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.5a.tar.bz2
    md5sum 9477960fb543938cec4f63a0eb365b12

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.5a.tar.bz2.sign

--

-- 
Jari Ruusu  1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9  DB 1D EB E3 24 0E A9 DD
Permalink | Reply | 0 comments |
headers
Felix Blanke | 4 Nov 2010 22:48
Picon

loop-aes and 2.6.37

Hi,

is there a working version of loop-aes for the new 2.6.37 kernel? :)

Regards,
Felix

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 1 comment |
headers
netguru | 7 Oct 2010 21:34
Picon
Favicon

SSE2 optimizations for Serpent in XTS mode.

Hello everyone,

Recently i was looking at libbotan's changelog, and i found that using
SSE2 parallell processing for serpent was quite a speed improvement.

Same  in  the neat little DiskCryptor program, wich uses the same kind
of optimization for serpent in XTS mode.

There  is  no  point in using SSE2 in CBC and other modes wich require
sequential  processing, but in XTS's (and a few other modes) case this
really makes a big difference.

Is  there anyone capable and or willing to implement this in the linux
kernel  ?  Maybe  in  the  form of a patch or a module ? Dont have the
sources  from  the  diskcryptor implementation, but libbotan does sure
have one as well.

Regards...

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 0 comments |
headers
markus reichelt | 6 Oct 2010 22:06

September 2010 Review

Well, I'm going to give it some more months. Let's see where this
goes. (Needless to say, feel free to chime in, anything linux crypto
related is welcome. Just go for it.)

 - loop-AES-v3.4b file/swap crypto package was released on 2010-09-23:
   http://www.spinics.net/lists/crypto/msg04992.html

   quoting its release log:
    - Worked around block layer interface breakage on linux-2.6.36-rc
      kernels.
    - Added workaround for device open/close reference count race.
      This race caused random loop-AES "make tests" failures with
      "ioctl: LOOP_CLR_FD: Device or resource busy" error message.
      The workaround is in util-linux patch (new mount/umount/losetup/
      swapon binaries). Thanks to Julien Moutinho for reporting/testing
      this problem. 

 - Version 0.4.2 of loop-AES FAQ was released on 2010-10-06:
   #43 added, #17 adapted, #33 adapted to loop-AES-v3.4b, new patches added
   - FAQ 43: make tests fails: Device busy
     - solution given via release of loop-AES-v3.4b
   - FAQ 33: Why does loop-AES still ask for a password instead of a
     passphrase?
     - new patches for loop-AES-v3.4b
   - FAQ 17: Which distros include loop-AES?
     - Gentoo [version unclear - contributed info, thanks]

Better late than never - Vidalia - August 2010 catch-up:

 - Vidalia 0.2.10 released on Aug 26 2010
(Continue reading)

Permalink | Reply | 0 comments |
headers
Jari Ruusu | 23 Sep 2010 16:43
Picon

Announce loop-AES-v3.4b file/swap crypto package

loop-AES changes since previous release:
- Worked around block layer interface breakage on linux-2.6.36-rc kernels.
- Added workaround for device open/close reference count race. This race
  caused random loop-AES "make tests" failures with "ioctl: LOOP_CLR_FD:
  Device or resource busy" error message. The workaround is in util-linux
  patch (new mount/umount/losetup/swapon binaries). Thanks to Julien
  Moutinho for reporting/testing this problem.

bzip2 compressed tarball is here:

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.4b.tar.bz2
    md5sum 5552e8a2572c5fa416a28493f9e0ec8f

    http://loop-aes.sourceforge.net/loop-AES/loop-AES-v3.4b.tar.bz2.sign

Workaround for device open/close reference count race, for older util-linux
versions:

    http://loop-aes.sourceforge.net/updates/util-linux-sync_fix-20100920.diff.bz2
    http://loop-aes.sourceforge.net/updates/util-linux-sync_fix-20100920.diff.bz2.sign

--

-- 
Jari Ruusu  1024R/3A220F51 5B 4B F9 BB D3 3F 52 E9  DB 1D EB E3 24 0E A9 DD

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 0 comments |
headers
Felix Blanke | 23 Sep 2010 11:21
Picon

loop-aes doesn't compile with 2.6.36

Hi,

I didn't find any bugtracker for loop-aes that's why I'm posting here.

loop-aes-3.4a doesn't compile with 2.6.36-r5 (didn't tried other 2.6.36 versions).

Build log is attached which comes from the command:

    make LINUX_SOURCE=/usr/src/linux-2.6.36-rc5

Thanks for your help!

Regards,
Felix

rm -r -f *.ko tmp-d-kbuild 
mkdir tmp-d-kbuild
echo 'obj-m:=' >>tmp-d-kbuild/Makefile
cd tmp-d-kbuild && ln -s ../loop.c-2.6.patched patched-loop.c && ln -s ../glue.c ../aes.h ../md5.h .
echo 'obj-m += loop.o' >>tmp-d-kbuild/Makefile
cd tmp-d-kbuild && ln -s ../aes-amd64.S ../md5-amd64.S ../md5-2x-amd64.S .
echo 'loop-y:=patched-loop.o glue.o aes-amd64.o md5-amd64.o md5-2x-amd64.o' >>tmp-d-kbuild/Makefile
echo 'EXTRA_CFLAGS:=      -DAMD64_ASM' >>tmp-d-kbuild/Makefile
cd /usr/src/linux-2.6.36-rc5 && make SUBDIRS=/root/tmp/loop-AES-v3.4a/tmp-d-kbuild modules 
make[1]: Entering directory `/usr/src/linux-2.6.36-rc5'
  CC [M]  /root/tmp/loop-AES-v3.4a/tmp-d-kbuild/patched-loop.o
/root/tmp/loop-AES-v3.4a/tmp-d-kbuild/patched-loop.c: In function ‘loop_get_buffer’:
/root/tmp/loop-AES-v3.4a/tmp-d-kbuild/patched-loop.c:588: error: ‘BIO_RW_BARRIER’
undeclared (first use in this function)
(Continue reading)

Permalink | Reply | 1 comment |
headers
markus reichelt | 4 Sep 2010 17:48

August 2010 Review

Ok, to hopefully bring a bit of life to this list again, here's what
happened in August 2010:

 - Botan 1.8.10 (stable) was released on 2010-08-31:
   http://botan.randombit.net/download.html

   quoting its release log:
   - Switch default PKCS #8 encryption algorithm from 3DES to AES-256
   - Increase default hash iterations from 2048 to 10000 in PBES1 and
     PBES2
   - Use small tables in the first round of AES
   - Add PBKDF typedef and get_pbkdf for better compatability with 1.9
   - Add version of S2K::derive_key taking salt and iteration count
   - Enable the /proc-walking entropy source on NetBSD
   - Fix the doxygen makefile target

   prebuilt packages for Slackware 13.1 are available at
   http://mareichelt.de/pub/mine/slackware/builds/Botan/pkg/13.1/

 - Version 0.4.1 of loop-AES FAQ was released on 2010-08-14:
   (link in footer), #42 added:
   Temporary system freezes while writing to crypto partitions. What about it?

--

-- 
left blank, right bald
loop-AES FAQ: http://mareichelt.de/pub/texts.loop-aes.php#faq
Permalink | Reply | 0 comments |
headers
netguru | 5 Jul 2010 20:23
Picon
Favicon

Util-linux 2.18 loop-aes patch ?

Any chance this one can be done ? 2.17.2 fails on 2.18...

Regards...

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/
Permalink | Reply | 4 comments |

Gmane