[dm-devel] [PATCH] dm-crypt: disable block encryption with arc4
Herbert Xu
herbert at gondor.apana.org.au
Tue Feb 9 07:37:18 UTC 2010
Mikulas Patocka <mpatocka at redhat.com> wrote:
>
> You should rather add a flag CRYPTO_ALG_CHANGES_STATE to determine that a
> cipher can't be used to encrypt disks.
No, please see my reply in the previous thread. What we should
do is fix arc4. I just haven't got around to doing it yet.
As to blacklisting algorithms not suitable for disk encryption,
that is up to the dm-crypt maintainers to decide.
Cheers,
--
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert at gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
More information about the dm-devel
mailing list