From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from duke.felloff.net ([216.126.196.34]) by ur; Sat Nov 12 08:27:32 EST 2016
Message-ID: <befb98db5c4df3427caade7072af99fb@felloff.net>
Date: Sat, 12 Nov 2016 14:27:25 +0100
From: cinap_lenrek@felloff.net
To: 9front@9front.org
Subject: Re: [9front] first 24B in /adm/keys
In-Reply-To: <A89C5B72-4CDE-42D3-A236-56FB04C813C1@ar.aichi-u.ac.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
List-ID: <9front.9front.org>
List-Help: <http://lists.9front.org>
X-Glyph: ➈
X-Bullshit: patented flexible rails XML STM package general-purpose-oriented solution 

keyfs writes a new file when you add/change users. when theres
no previous des format keydb, then it will always create a new
file in aes format as long as it has the aes key which it gets
from nvram or calculates itself from the password (-p flag) on
startup.

so, unless you use -p flag, make sure you have the aes key
stored in your nvram. you can do that with auth/wrkey.

whenever you change users in keyfs, it will reencrypt everything
and write a new file. it will also generate a new random iv
each time so the value you put there doesnt matter.

--
cinap