From: Sven Eschenberg <sven@whgl.uni-frankfurt.de>
To: dm-crypt@saout.de
Subject: Re: [dm-crypt] Some questions/clarifications around the LUKS spec
Date: Mon, 14 Mar 2016 22:24:25 +0100 [thread overview]
Message-ID: <56E72C09.9000903@whgl.uni-frankfurt.de> (raw)
In-Reply-To: <56E716EF.2080709@gmail.com>
Am 14.03.2016 um 20:54 schrieb Milan Broz:
> On 03/14/2016 07:58 PM, Sven Eschenberg wrote:
>
> ...
>> On a sidenote: When cryptsetup switched it's defaults to aes-xts it
>> stopped being compliant to the (original) LUKS specs. No doubt.
> ...
>> Again cryptsetup gave up on the specs, as there was a severe need for
>> these changes. It really had been wise to ditch the original on disk
>> format at that time and create a new revised (sub)version of the on disk
>> format. It did not happen though and currently the reference
>> implementation is the 'de facto' specification, while the original spec
>> is only the 'de jure' specification. But then again, 'industry' and
>> 'practice' define standards, don't they? *SCNR*
>
> Sorry? Spec is updated, it mentions XTS mode, and disk format remains still the same,
> despite I did last update in 2011. (Simply because there was no need to update
> it.) I'll mention more in another reply.
Updating a spec needs more than just mentioning something. Esp. changes
may not be incompatible to previous revisions. If changes are
incompatible, a new version is needed (instead of a simple revision). A
change to the list of valid values as well as the change in offset
calculation to meet alignment requirements are indeed incompatible to
the original specification for the v1 header, like it or not. Thus, by
introducing these changes, a new version of the on disk format was
introduced and this should have been reflected by reversioning the
header as well. Having multiple possible specs for the same
magic+version is something one really should not go for.
>
> Cryptsetup never gave up specs, it is still compatible to the document.
>
> Milan
Interesting *raising eyebrow*
-Sven
next prev parent reply other threads:[~2016-03-14 21:24 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-03-14 15:21 [dm-crypt] Some questions/clarifications around the LUKS spec Daniel P. Berrange
2016-03-14 18:58 ` Sven Eschenberg
2016-03-14 19:54 ` Milan Broz
2016-03-14 21:24 ` Sven Eschenberg [this message]
2016-03-14 22:27 ` Milan Broz
2016-03-15 14:21 ` Sven Eschenberg
2016-04-27 12:56 ` [dm-crypt] Cryptesetup and dm-crypt levent demir
2016-04-27 16:35 ` Arno Wagner
2016-03-14 20:31 ` [dm-crypt] Some questions/clarifications around the LUKS spec Milan Broz
2016-03-15 10:23 ` Daniel P. Berrange
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=56E72C09.9000903@whgl.uni-frankfurt.de \
--to=sven@whgl.uni-frankfurt.de \
--cc=dm-crypt@saout.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.