File tree Expand file tree Collapse file tree 1 file changed +9
-2
lines changed Expand file tree Collapse file tree 1 file changed +9
-2
lines changed Original file line number Diff line number Diff line change @@ -26,9 +26,16 @@ case $? in
2626 NULL_CIPHERS=$( echo " $LUKS_DUMP " | jq ' [.keyslots.[].area.encryption] | select(any(contains("null")))' )
2727
2828 if [ -n " $NULL_CIPHERS " ; then
29- echo " cipher_null is not allowed in LUKS header"
29+ echo " cipher_null in keyslots is not allowed in LUKS header"
3030 exit 3
31- fi
31+ fi
32+
33+ NULL_CIPHERS=$( echo " $LUKS_DUMP " | jq ' [.segments.[].encryption] | select(any(contains("null")))' )
34+
35+ if [ -n " $NULL_CIPHERS " ; then
36+ echo " cipher_null in segments is not allowed in LUKS header"
37+ exit 4
38+ fi
3239
3340 # unlock the partition
3441 /lib/systemd/systemd-cryptsetup attach cosmian_vm_container /var/lib/cosmian_vm/container - tpm2-device=auto,headless=true,header=/var/lib/cosmian_vm/header || exit 1
You can’t perform that action at this time.
0 commit comments