On Tue, 12 Jul 2005, Stefan Ohletz wrote:
> Reading the manual pages of vnconfig(8) and blowfish(3), I was asking myself
> how many characters are used for the encryption key of virtual disk devices at
> all. Looking at the source code of vnconfig, it looks to me as if the maximum
> number of characters which can be entered at the password prompt is 128, but
> examining the source code of sys/crypto/blf.{h,c} more closely, I'm getting
> the impression that only 56 bytes (the maximum key length of the blowfish
> algorithm) are really utilized. Please, is my observation correct?
right, the key provided via vnd(4) is used as is, and vnconfig(8) doesn't
perform any transformation. this cuts the possible key space down quite a
bit if you're using a keyboard to perform the entry.
--
And that's why it's so good.
