Entropy is cheap. We should reject keyfiles smaller than 256 bits at initialization time. At attach, we should clearly continue allowing people to access their existing volumes, but maybe a warning would be appropriate? Today, GELI allows initialization with small and empty keyfiles (init -K, attach -k). These should be rejected.