[pkg-cryptsetup-devel] Bug#759588: release-notes: Disk encrypted with cryptsetup LUKS whirlpool needs to be migrated manually

Frank Lin PIAT fpiat at klabs.be
Thu Aug 28 19:23:19 UTC 2014


Package: release-notes
Severity: normal

Quoting cryptsetup's NEWS file:

I must tell that I don't know if whirlpool is the default crypo or not.

> cryptsetup (2:1.6.4-5) unstable; urgency=medium
> 
>  The whirlpool hash implemenation has been broken in gcrypt until version
>  1.5.3. This has been fixed in subsequent gcrypt releases. In particular,
>  the gcrypt version that is used by cryptsetup starting with this release,
>  has the bug fixed. Consequently, LUKS containers created with broken
>  whirlpool will fail to open from now on.
>
>  In the case that you're affected by the whirlpool bug, please read section
>  '8.3 Gcrypt after 1.5.3 breaks Whirlpool' of the cryptsetup FAQ at
>  https://code.google.com/p/cryptsetup/wiki/FrequentlyAskedQuestions carefully.
>  It explains how to open your LUKS container and reencrypt it afterwards.
>
> -- Jonas Meurer <mejo at debian.org>  Tue, 04 Mar 2014 23:17:37 +0100


-- System Information:
Debian Release: jessie/sid
  APT prefers testing
  APT policy: (800, 'testing'), (700, 'unstable'), (500, 'testing-updates')
Architecture: amd64 (x86_64)

Kernel: Linux 3.14-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash



More information about the pkg-cryptsetup-devel mailing list