[pkg-cryptsetup-devel] Bug#494584: #494584 [cryptsetup] luksFormat does not know --cipher aes-xts-plain
C. Dominik Bodi
dominik.bodi at gmx.de
Mon Aug 11 18:03:33 UTC 2008
After doing some more of try-and-error, I discovered the problem is not as bad
as expected.
The cause for the luksFormat command not working lies with the luks extension
using a default key size of 128bits, whereas plain cryptsetup uses a default
key size of 256 bits. As aes-xts-plain is not available with a size of 128
bits, the command fails.
Specifying an explicit keysize of 256 or 512 bits ( using the option -s
256/512 ) makes it work.
Either way, it would be desirable to make the error message point out this
fact. Alternatively, cryptsetup could be changed to choose a default key size
of either 256 or 512 bits in case aes-xts-plain has been selected as cipher.
Regards,
C. Dominik Bódi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
Url : http://lists.alioth.debian.org/pipermail/pkg-cryptsetup-devel/attachments/20080811/ec2c7a2c/attachment.pgp
More information about the pkg-cryptsetup-devel
mailing list