[dm-devel] [PATCH] dm-crypt: disable block encryption with arc4

Herbert Xu herbert at gondor.apana.org.au
Tue Feb 9 07:37:18 UTC 2010


Mikulas Patocka <mpatocka at redhat.com> wrote:
> 
> You should rather add a flag CRYPTO_ALG_CHANGES_STATE to determine that a 
> cipher can't be used to encrypt disks.

No, please see my reply in the previous thread.  What we should
do is fix arc4.  I just haven't got around to doing it yet.

As to blacklisting algorithms not suitable for disk encryption,
that is up to the dm-crypt maintainers to decide.

Cheers,
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert at gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt




More information about the dm-devel mailing list