Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

[Solved] Kernel not loading AES module
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware
View previous topic :: View next topic  
Author Message
rip_her_APART
n00b
n00b


Joined: 27 Mar 2016
Posts: 3
PostPosted: Sun Mar 27, 2016 2:03 pm    Post subject: [Solved] Kernel not loading AES module Reply with quote
Hey all my gentoo friends!

I am currently struggling with AES :(
note: my CPU supports AES-NI.

When I am trying to
Code:
cryptsetup luksFormat /dev/sdb /root/key

output:
Code:
device-mapper: reload ioctl on temporary-cryptsetup-8758 failed: No such file or directory
Failed to setup dm-crypt key mapping for device /dev/sdb.
Check that kernel supports aes-xts-plain64 cipher (check syslog for more info).


modprobe aes:
Code:
modprobe:_FATAL: Module aes not found.


My first kernel conf was:
Code:
Device Drivers  --->
  [*] Multiple devices driver support (RAID and LVM)  --->
    <*>   Device mapper support
    <*>     Crypt target support

-*- Cryptographic API  --->
  <*>   AES cipher algorithms (x86_64)


from there I tried to enable almost all options, then I tried to enable AES NI and so on, nothing works.

I went from 4.1.15-gentoo-r1 kernel to 4.4.2-hardened, still same result.


What did I miss? Shouldn't be that hard to get AES modules to load?


PS: Thanks in advance!

Last edited by rip_her_APART on Wed Mar 30, 2016 5:43 pm; edited 1 time in total
Back to top
View user's profile Send private message
Ant P.
Watchman
Watchman


Joined: 18 Apr 2009
Posts: 6920
PostPosted: Sun Mar 27, 2016 3:56 pm    Post subject: Reply with quote
What does
Code:
sed -n '/aes/,/^$/p' /proc/crypto

print?
Back to top
View user's profile Send private message
frostschutz
Advocate
Advocate


Joined: 22 Feb 2005
Posts: 2977
Location: Germany
PostPosted: Sun Mar 27, 2016 5:14 pm    Post subject: Reply with quote
You also need block ciphers and hashing algorithms (sha-whatnots), it's used to initialize some of the other things (should be a dependency but for some reason it is not), if in doubt just enable everything crypto in the kernel and then experiment later what you can remove and what not...

I prefer AES-NI to be built-in because if it's a module and not loaded early enough, you get AES and cryptsetup opens the LUKS device fine but it's not accelerated even if you load aesni module later on... :!:

I'm actually not using any modules at all in my kernel, damn buggers never loaded when you need them
Back to top
View user's profile Send private message
rip_her_APART
n00b
n00b


Joined: 27 Mar 2016
Posts: 3
PostPosted: Tue Mar 29, 2016 8:51 pm    Post subject: Reply with quote
first of all, sorry for the late response!

It took me so long to respond since I decided to re-do everything from scratch (again 8O) for several reasons. Now everything works fine, encrypted drives with my desired options/parameters and zfs pools. AES-NI is also enabled in kernel and print shows that it is working :lol: 8)

Ant P. wrote:
What does
Code:
sed -n '/aes/,/^$/p' /proc/crypto

print?


I already tried that, but it didn't print aes-xts. Thanks though.


frostschutz wrote:
You also need block ciphers and hashing algorithms (sha-whatnots), it's used to initialize some of the other things (should be a dependency but for some reason it is not), if in doubt just enable everything crypto in the kernel and then experiment later what you can remove and what not...

I prefer AES-NI to be built-in because if it's a module and not loaded early enough, you get AES and cryptsetup opens the LUKS device fine but it's not accelerated even if you load aesni module later on... :!:

I'm actually not using any modules at all in my kernel, damn buggers never loaded when you need them


I did define cipher, hash, keysize and so on:
Code:
cryptsetup --cipher aes-xts-plain64 --key-size 512 --hash sha512 --iter-time 5000 --use-random --verify-passphrase luksFormat /dev/sda4


Enabling everything in crypto didn't work and I already tried to experiment with different options :cry:

Didn't know that there was another person who is also not using modules :D :D :D :D :D
I am also preferring "built-in" over "modules" especially for important things like AES and so on. The idea behind modules is nice but for my use-case not beneficial, although I like when it's "all about choices!" :D


Thank you for your help, guys :D
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Kernel & Hardware All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy