ecryptfs-setup-private gets signature size from the wrong place

Thanks, Eric. The issue you brought up with $KEYBYTES seems to be valid. We're wanting to grab the key signature, not the key contents, so it would be a good idea to use another variable. It just so happens that $KEYBYTES and ECRYPTFS_SIG_SIZE_HEX work out to be the same value right now...

Dustin will have to address the second request of making the encryption alg and key size configurable.

Assigning this one to Dustin, since this is typically his area.

Thanks for the bug report. I think you're correct on the ECRYPTFS_SIG_SIZE_HEX / KEYBYTES inconsistency. I'll get that fixed.

As for making the cipher and key size configurable, I won't be doing this for mount.ecryptfs_private. If you have a strong opinion and a need to modify these, then you should use mount -t ecryptfs -o options, and not the ecryptfs-setup-private helpers. The goal of the private helpers is to assist less technical Ubuntu users setup encryption in a way that they don't need to care about the defaults and in a manner that we can support them consistently. Sorry.

Thanks!
Dustin

This bug is not fixed. Please don't close bugs without a stating the reason you're closing the bug, such as a reference to a released fix.

Yesterday, I checked these two files as follows:
1) Macro "ECRYPTFS_SIG_SIZE_HEX" in ecryptfs.h (see http://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/view/head:/src/include/ecryptfs.h#L81)
2) Definition "KEYBYTES" in src/utils/ecryptfs-setup-private (see http://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/view/head:/src/utils/ecryptfs-setup-private#L16)

They are the same value 16. So I thought it has been fixed...

What do you say? I'm not sure if I get the right point.