[dm-crypt] Two questions about LUKS2 format
geokozey at mailfence.com
Fri Dec 29 17:41:11 CET 2017
1. When creating new container with experimental ciphers, i.e. chacha20, the output of luksDump shows:
offset: 4194304 [bytes]
length: (whole device)
sector: 512 [bytes]
Key: 256 bits
Time cost: 4
Why "Cipher: aes-xts-plain64" is shown under Keyslots metadata and is different than "cipher: chacha20-random" from Data segments?
2. What happens when we create new luks container with argon2 as PBKDF under system with huge amount of RAM then try opening it under system with much lower amount (so memory cost will be higher than physical memory available)? Will it open but slower or will it fail?
Thanks in advance for any answers.
More information about the dm-crypt