cryptsetup: default to no hash when keyfile is specified

For plain dm-crypt devices, the behavior of cryptsetup package is to ignore the hash algorithm when a key file is provided. It seems wrong to ignore a hash when it is explicitly specified, but we should default to no hash if the keyfile is specified. https://bugs.freedesktop.org/show_bug.cgi?id=52630
author: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2014-11-24 09:11:12 -0500
committer: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2014-11-24 09:14:18 -0500
commit: 8a52210c9392887a31fdb2845f65b4c5869e8e66 (patch)
tree: 5e03dbbb05f8c2b5fecbc66f2990ee6325c93a38
parent: 056edeb9102c5ba455e1a54af70f282b6138ca33 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/src/cryptsetup/cryptsetup.c b/src/cryptsetup/cryptsetup.c
index 94570eb82d..b9e67fa63b 100644
--- a/src/cryptsetup/cryptsetup.c
+++ b/src/cryptsetup/cryptsetup.c
@@ -400,7 +400,9 @@ static int attach_luks_or_plain(struct crypt_device *cd,
                         /* plain isn't a real hash type. it just means "use no hash" */
                         if (!streq(arg_hash, "plain"))
                                 params.hash = arg_hash;
-                } else
+                } else if (!key_file)
+                        /* for CRYPT_PLAIN, the behaviour of cryptsetup
+                         * package is to not hash when a key file is provided */
                         params.hash = "ripemd160";
 
                 if (arg_cipher) {
author	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2014-11-24 09:11:12 -0500
committer	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2014-11-24 09:14:18 -0500
commit	8a52210c9392887a31fdb2845f65b4c5869e8e66 (patch)
tree	5e03dbbb05f8c2b5fecbc66f2990ee6325c93a38
parent	056edeb9102c5ba455e1a54af70f282b6138ca33 (diff)