geli AES-XTS provider attachment broken after r285336 (was: svn commit: r285336 - in head/sys: netipsec opencrypto)
Fabian Keil
freebsd-listen at fabiankeil.de
Sat Jul 11 17:11:01 UTC 2015
"Matthew D. Fuller" <fullermd at over-yonder.net> wrote:
> On Thu, Jul 09, 2015 at 06:16:36PM +0000 I heard the voice of
> George V. Neville-Neil, and lo! it spake thus:
> > New Revision: 285336
> > URL: https://svnweb.freebsd.org/changeset/base/285336
> >
> > Log:
> > Add support for AES modes to IPSec. These modes work both in software only
> > mode and with hardware support on systems that have AESNI instructions.
>
> With (apparently) this change, I can trigger a panic at will by
> running
>
> % geli onetime -e AES-XTS -d /dev/ada0s1
Thanks for the heads-up.
As it wasn't obvious to me: the commit broke attachment
of AES-XTS providers in general.
Reverting it lets my test system boot again.
Fabian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-current/attachments/20150711/e6b18fcb/attachment.bin>
More information about the freebsd-current
mailing list