File tree Expand file tree Collapse file tree 1 file changed +2
-3
lines changed
Expand file tree Collapse file tree 1 file changed +2
-3
lines changed Original file line number Diff line number Diff line change @@ -180,13 +180,12 @@ install_dom0()
180180 # Dealing with encrypted partitions
181181 # config
182182 # Generate random config key.
183- openssl rand -out ${CONFIG_KEY} 128 2> /dev/null
183+ openssl rand -out ${CONFIG_KEY} 512 2> /dev/null
184184 # Initialize config's luks header with previous key.
185- cryptsetup -q -S 7 -i 1 luksFormat /dev/xenclient/config ${CONFIG_KEY} >&2 || return 1
185+ cryptsetup -q -S 7 -i 1 --cipher=aes-xts-plain64 luksFormat /dev/xenclient/config ${CONFIG_KEY} >&2 || return 1
186186 # Adds get-config-key result to keys in config's luks header.
187187 local GCK=` mktemp -t`
188188 get-config-key > ${GCK}
189- # FIXME: iteration time will have to be different between kent and non-kent
190189 cryptsetup -q -i 100 -d ${CONFIG_KEY} luksAddKey /dev/xenclient/config ${GCK} || {
191190 rm -f ${GCK}
192191 set +x
You can’t perform that action at this time.
0 commit comments