https://bugzilla.novell.com/show_bug.cgi?id=805427 https://bugzilla.novell.com/show_bug.cgi?id=805427#c0 Summary: cryptsetup cannot remove LUKS keys for devices with a blocksize of 4096 bytes Classification: openSUSE Product: openSUSE 12.2 Version: Final Platform: All OS/Version: openSUSE 12.2 Status: NEW Severity: Major Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: f+novell@congenio.de QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:19.0) Gecko/20100101 Firefox/19.0 Whenever I try to luksRemoveKey or luksWipeKey with a device of blocksize 4K, i get errors. This works with devices of blocksize 512bytes. #cryptsetup luksKillSlot /dev/volume/anything 1 Enter any remaining LUKS passphrase: Cannot wipe device /dev/volume/anything. This is a critical error, because known-to-be-compromised passphrases cannot be removed. Reproducible: Always Steps to Reproduce: cryptsetup luksKillSlot /dev/volume/anything 1 Actual Results: LUKS key still present. Expected Results: Removed LUKS key. This looks like it is an already reported and allegedly fixed upstream issue (cf. http://code.google.com/p/cryptsetup/source/detail?r=490c17b3cd406f5c5f7650b7...). However, even cryptsetup 1.5.1 from openSUSE factory exhibits the same behaviour. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.