Commit 307a7ad0 authored by Committed by Ondrej Kozina
Add keyslot encryption params.
This patch makes available LUKS2 per-keyslot encryption settings to user. In LUKS2, keyslot can use different encryption that data. We can use new crypt_keyslot_get_encryption and crypt_keyslot_set_encryption API calls to set/get this encryption. For cryptsetup new --keyslot-cipher and --keyslot-key-size options are added. The default keyslot encryption algorithm (if cannot be derived from data encryption) is now available as configure options (default is aes-xts-plain64 with 512-bits key). NOTE: default was increased from 256-bits.
Showing with 368 additions and 127 deletions