[dm-devel] [PATCH v2 0/3] dm-crypt: Adds support for wiping key when doing suspend/hibernation
Pali Rohár
pali.rohar at gmail.com
Tue Jul 7 07:59:41 UTC 2015
On Sunday 21 June 2015 13:20:31 Pali Rohár wrote:
> This patch series increase security of suspend and hibernate actions. It allows
> user to safely wipe crypto keys before suspend and hibernate actions starts
> without race conditions on userspace process with heavy I/O.
>
> To automatically wipe cryto key for <device> before hibernate action call:
> $ dmsetup message <device> 0 key wipe_on_hibernation
>
> To automatically wipe cryto key for <device> before suspend action call:
> $ dmsetup message <device> 0 key wipe_on_suspend
>
> To disable automatic wipe call retain_on_suspend/retain_on_hibernation.
>
> Pali Rohár (3):
> PM suspend/hibernate: Call notifier after freezing processes
> dm: Export function dm_suspend_md()
> dm-crypt: Adds support for wiping key when doing suspend/hibernation
>
> drivers/md/dm-crypt.c | 126 +++++++++++++++++++++++++++++++++++++++++++---
> drivers/md/dm.c | 6 +++
> drivers/md/dm.h | 5 ++
> include/linux/suspend.h | 2 +
> kernel/power/hibernate.c | 2 +
> kernel/power/suspend.c | 4 +-
> 6 files changed, 136 insertions(+), 9 deletions(-)
>
Hello, can somebody look and review this (v2) patch series?
--
Pali Rohár
pali.rohar at gmail.com
More information about the dm-devel
mailing list