[systemd-devel] homed, LUKS2 passphrase encoding, and recovery key

Mantas Mikulėnas grawity at gmail.com
Fri Jan 24 10:13:14 UTC 2020


On Fri, Jan 24, 2020 at 11:42 AM Pascal <patatetom at gmail.com> wrote:

> could cryptsetup be "insensitive" to the configured keyboard layout and
> adopt/toggle the US/ASCII layout ?
> as the physical keys on the keyboard do not move ;-), the end user would
> enter the password he wants and cryptsetup would only receive ASCII
> characters...
>

The CLI tool cannot do that, as it only receives text and not actual
keypresses.

So while this would be possible in the initramfs unlocker (just delay
loadkeys until after unlocking), it wouldn't be possible when creating
volumes or changing passphrases via Xterm or SSH.

X11 programs *might* be able to do that, but I have a feeling it'd be a bit
kludgy and unreliable... And either way, it would mean a passphrase entered
via X11 couldn't be used via CLI and vice versa.

-- 
Mantas Mikulėnas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/systemd-devel/attachments/20200124/38244a8d/attachment.htm>


More information about the systemd-devel mailing list