[pkg-cryptsetup-devel] Bug#759588: release-notes: Disk encrypted with cryptsetup LUKS whirlpool needs to be migrated manually
Frank Lin PIAT
fpiat at klabs.be
Thu Aug 28 19:23:19 UTC 2014
Package: release-notes
Severity: normal
Quoting cryptsetup's NEWS file:
I must tell that I don't know if whirlpool is the default crypo or not.
> cryptsetup (2:1.6.4-5) unstable; urgency=medium
>
> The whirlpool hash implemenation has been broken in gcrypt until version
> 1.5.3. This has been fixed in subsequent gcrypt releases. In particular,
> the gcrypt version that is used by cryptsetup starting with this release,
> has the bug fixed. Consequently, LUKS containers created with broken
> whirlpool will fail to open from now on.
>
> In the case that you're affected by the whirlpool bug, please read section
> '8.3 Gcrypt after 1.5.3 breaks Whirlpool' of the cryptsetup FAQ at
> https://code.google.com/p/cryptsetup/wiki/FrequentlyAskedQuestions carefully.
> It explains how to open your LUKS container and reencrypt it afterwards.
>
> -- Jonas Meurer <mejo at debian.org> Tue, 04 Mar 2014 23:17:37 +0100
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (800, 'testing'), (700, 'unstable'), (500, 'testing-updates')
Architecture: amd64 (x86_64)
Kernel: Linux 3.14-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
More information about the pkg-cryptsetup-devel
mailing list