[pkg-cryptsetup-devel] Bug#759588: Bug#759588: release-notes: Disk encrypted with cryptsetup LUKS whirlpool needs to be migrated manually

Jonas Meurer jonas at freesources.org
Thu Sep 11 21:15:00 UTC 2014


Am 11.09.2014 um 16:43 schrieb Osamu Aoki:
> Hi,
> 
> On Mon, Sep 08, 2014 at 04:10:46PM +0200, Jonas Meurer wrote:
>> Am 2014-08-28 21:23, schrieb Frank Lin PIAT:
>>> Quoting cryptsetup's NEWS file:
>>>
>>> I must tell that I don't know if whirlpool is the default crypo or not.
>>
>> Whirlpool is not the default cryptographic hash function used, and has never
>> been. Nevertheless it's a good idea to add a short hint regarding the
>> whirlpool bug to release notes.
> 
> If whirlpool was not the one used by d-i and if we are going to mention
> it in release note, we should mention "Use of whirlpool is unusual setup
> only generated by the manual user action".  Otherwise, the documentation
> causes unnecessary worry to many.

Agreed. Though I'm not sure whether the change should be mentioned in
release notes at all. My impression is that few people use whirlpool
with cryptsetup. And for users skilled enough chose a different hash
function the warning in NEWS.Debian might be enough, no?

I have to admit that I don't know much about the scope of Debian release
notes, so I don't want to argue over whether the cryptsetup whirlpool
issues should be mentioned there ;)

Kind regards,
 jonas




More information about the pkg-cryptsetup-devel mailing list