[Bug 423372] Re: Use luksSuspend/luksResume in hibernation scripts
pberndt
423372 at bugs.launchpad.net
Wed Jun 8 18:27:17 UTC 2011
Indeed.
** Changed in: cryptsetup (Ubuntu)
Status: Fix Released => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to cryptsetup in Ubuntu.
https://bugs.launchpad.net/bugs/423372
Title:
Use luksSuspend/luksResume in hibernation scripts
Status in “cryptsetup” package in Ubuntu:
Confirmed
Bug description:
The latest trunk version of cryptsetup introduces support for luksSuspend/luksResume:
http://code.google.com/p/cryptsetup/source/detail?r=104
Excerpt from manpage:
-------
luksSuspend <name>
suspends active device (all IO operations are frozen) and wipes encryption key from kernel. Kernel version 2.6.19 or later is required.
After that operation you have to use \fIluksResume\fR to reinstate
encryption key (and resume device) or \fIluksClose\fR to remove mapped
device.
WARNING: never try to suspend device where is the cryptsetup binary
itself.
luksResume <name>
Resumes suspended device and reinstates encryption key. You will need provide passphrase identical to luksOpen command (using prompting or key file).
-------
This feature provides a way to implement secure hibernation without
having to use an encrypted swap partition. It should be used in
ubuntu's hibernation scripts as soon as a new stable version of
cryptsetup is released.
More information about the foundations-bugs
mailing list