From owner-freebsd-current@FreeBSD.ORG Tue Aug 26 21:24:02 2014 Return-Path: Delivered-To: current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id BBAB1F53 for ; Tue, 26 Aug 2014 21:24:02 +0000 (UTC) Received: from bigwig.baldwin.cx (bigwig.baldwin.cx [IPv6:2001:470:1f11:75::1]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8CC973FDB for ; Tue, 26 Aug 2014 21:24:02 +0000 (UTC) Received: from jhbbsd.localnet (unknown [209.249.190.124]) by bigwig.baldwin.cx (Postfix) with ESMTPSA id 73BD7B94C; Tue, 26 Aug 2014 17:24:01 -0400 (EDT) From: John Baldwin To: "Poul-Henning Kamp" Subject: Re: gbde destroy doesn't match man page? Date: Tue, 26 Aug 2014 17:23:53 -0400 User-Agent: KMail/1.13.5 (FreeBSD/8.4-CBSD-20140415; KDE/4.5.5; amd64; ; ) References: <20140820215522.GA92455@bewilderbeast.blackhelicopters.org> <2945485.ZemF81RAkB@ralph.baldwin.cx> <98222.1409034192@critter.freebsd.dk> In-Reply-To: <98222.1409034192@critter.freebsd.dk> MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201408261723.53428.jhb@freebsd.org> X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.7 (bigwig.baldwin.cx); Tue, 26 Aug 2014 17:24:01 -0400 (EDT) Cc: current@freebsd.org, "Michael W. Lucas" X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Aug 2014 21:24:02 -0000 On Tuesday, August 26, 2014 2:23:12 am Poul-Henning Kamp wrote: > -------- > In message <2945485.ZemF81RAkB@ralph.baldwin.cx>, John Baldwin writes: > >On Saturday, August 23, 2014 10:16:42 AM Poul-Henning Kamp wrote: > >> -------- > >> In message <20140820215522.GA92455@bewilderbeast.blackhelicopters.org>, > >> "Michae > >> l W. Lucas" writes: > >> >Playing with GBDE for my FreeBSD disk book, on: > >> > > >> ># uname -a > >> >FreeBSD storm 11.0-CURRENT FreeBSD 11.0-CURRENT #6 r269010: Wed Jul 23 > >> >11:13:17 EDT 2014 mwlucas@storm:/usr/obj/usr/src/sys/GENERIC amd64 > >> > > >> >According to the man page, I should be able to destroy all copies of > >> >the key with gbde destroy -n -1. It's in the examples. When I > >> > >> >try it I get: > >> I think that is an oversight in the code. > > > >Can you expand on this? I.e. what should the code do if it is fixed? > > Hmm, now that I think about it, -n doesn't make sense because any > one of the four keys can open the volume as needed to blow away the > masterkey. > > The manual page should just be fixed. Should the '-n -1' just be removed? I.e., is 'gbde destroy' sufficient to destroy all copies of the key? -- John Baldwin