LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 09-03-2003, 04:01 PM   #1
black_man
LQ Newbie
 
Registered: May 2003
Location: Iasi, Romania
Distribution: debian
Posts: 27

Rep: Reputation: 15
encrypted file system


Hello!
I want to make an encrypted file system.I have compiled the cryptography in the 2.4.22 kernel with all algorithms as modules.
I made a file of 100 MB:
dd if=/dev/urandom of=test bs=512 count=204800
Now I want to associate it with a loop device:
losetup /dev/loop0 /root/test -e blowfish
It sais:Zice: Unsupported encryption type blowfish (...but blowfish module was loaded!!)
Without encryption, it works!
Any ideas?
 
Old 09-03-2003, 05:18 PM   #2
yocompia
Member
 
Registered: Apr 2003
Location: Chicago, IL
Distribution: openbsd 3.6, slackware 10.0
Posts: 244

Rep: Reputation: 30
are you sure you compiled the loopback support for the ciphers into the kernel? i tried to set up an encrypted file system a couple months ago, but i encountered the same problem.

my problem was getting the kernel to patch correctly, but i think i could do it now. did you set the kernel options for additional loopback encryption support?

i'll try to patch the stuff and setup an encrypted file system tonight and i'll get back to you.

it's good to know that the roman empire hasn't died .

cheers,
y-p
 
Old 09-05-2003, 02:59 PM   #3
black_man
LQ Newbie
 
Registered: May 2003
Location: Iasi, Romania
Distribution: debian
Posts: 27

Original Poster
Rep: Reputation: 15
hello, again!
let's go through the whole process to see if i did some mistake:
i took the 2.4.22 kernel from kernel.org and i've compiled it.
diferent from the other kernels, it had the "cryptographic options" tab from the begining, without any patch. i said yes to "cryptographic api" and "hmac support" and module to all tle algorithms.
in the "block devices" tab i said yes to "loopback support". that's all regarding cryptographic support, isn't it?
with the new kernel loaded i tried the things described in my previous post and it didn't work.
from the man page of losetup i've read that it supports only none,xor and des encryption. with des, something else happens (and it did happen even before the new kernel):
losetup -e des /dev/loop0 test
Password: (anything)
Init (up to 16 hex digits): (123) -- i don't really know what this does...
ioctl: LOOP_SET_STATUS: Invalid argument
any other ideas?
 
Old 09-05-2003, 03:18 PM   #4
kev82
Senior Member
 
Registered: Apr 2003
Location: Lancaster, England
Distribution: Debian Etch, OS X 10.4
Posts: 1,263

Rep: Reputation: 50
i cant see cryptoloop in your list of modules, i think its next to loopback filesystem support in block devices. you have to enable experimental features to select it though.
 
Old 09-05-2003, 03:24 PM   #5
black_man
LQ Newbie
 
Registered: May 2003
Location: Iasi, Romania
Distribution: debian
Posts: 27

Original Poster
Rep: Reputation: 15
i dont see anything that sounds like cryptoloop. can you tell me exactly where you've found it?
 
Old 09-05-2003, 04:39 PM   #6
kev82
Senior Member
 
Registered: Apr 2003
Location: Lancaster, England
Distribution: Debian Etch, OS X 10.4
Posts: 1,263

Rep: Reputation: 50
sorry, it doesnt come as standard with the 2.4 series kernels, grab yourself a patch from here and it should appear next to loopback filesystem support. check out some of the howto's at tldp.org for which patches to download for what.
 
Old 02-23-2004, 09:59 AM   #7
synx13
LQ Newbie
 
Registered: Feb 2004
Posts: 4

Rep: Reputation: 0
Angry losetup is the problem

Quote:
losetup /dev/loop0 /root/test -e blowfish
It sais:Zice: Unsupported encryption type blowfish (...but blowfish module was loaded!!)
I had the same problem, and it hasn't been fixed yet. (I checked a few minutes ago.) The latest losetup (2.11z util-linux) only supports by means of a nasty cludge, 3 hardcoded encryption types, none (and that means none), XOR (oh joy), and DES (which doesn't work). Anything else lacks the necessary code to convert password to encryption key. It's just not there.


Starling
Who would give you a patch, but doesn't know enough about making keys for each cipher... shouldn't there be a kernel interface or something for doing that?
 
Old 02-23-2004, 05:24 PM   #8
kev82
Senior Member
 
Registered: Apr 2003
Location: Lancaster, England
Distribution: Debian Etch, OS X 10.4
Posts: 1,263

Rep: Reputation: 50
this might be wrong cos i did the quite a while ago but if i remember you need to patch util-linux to support the kernel crypto stuff, if you fancy it the patch is here your distribution should release a patched losetup binary though
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
encrypted file system 212121 Linux - Newbie 4 08-27-2005 05:18 PM
The Best Encrypted File System for Linux spurgeonb Linux - Security 8 12-19-2003 08:39 AM
encrypted file system deNiro Slackware 2 11-30-2003 12:39 PM
Encrypted File System for 9.2? scottdwright Mandriva 3 11-24-2003 03:53 AM
Encrypted File System? scottdwright Linux - Newbie 2 11-22-2003 04:24 PM


All times are GMT -5. The time now is 10:24 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration