Re: dm-crypt, new IV and standards

From: Carl-Daniel Hailfinger
Date: Fri Feb 20 2004 - 19:34:58 EST

Next message: David S. Miller: "Re: Fix silly thinko in sungem network driver."
Previous message: Benjamin Herrenschmidt: "Re: Fix silly thinko in sungem network driver."
In reply to: David Lang: "2.6.3 adaptec I2O will not compile"
Next in thread: Jean-Luc Cooke: "Re: dm-crypt, new IV and standards"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jari,

since mainline cryptoloop/dm-crypt implementation is being changed right
now and you were complaining about it in the past, can you participate in
the discussions (there's also a parallel thread titled "[PATCH/proposal]
dm-crypt: add digest-based iv generation mode") so you don't have to
complain afterwards?

James Morris wrote:
> On Fri, 20 Feb 2004, Jean-Luc Cooke wrote:
>
>
>>If others on the list care to do this, I'll give recommendation on how to
>>implement the security (hmac, salt, iteration counts, etc). But I think
>>this may break backward compatibility. Can anyone speak to this?
>
>
> Please focus your recommendations on security, not backward compatibility
> with something that is new to the kernel tree, broken and maintainerless.

Thanks,
Carl-Daniel

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David S. Miller: "Re: Fix silly thinko in sungem network driver."
Previous message: Benjamin Herrenschmidt: "Re: Fix silly thinko in sungem network driver."
In reply to: David Lang: "2.6.3 adaptec I2O will not compile"
Next in thread: Jean-Luc Cooke: "Re: dm-crypt, new IV and standards"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]