On 01/25/2018 08:40 PM, inderaue23@xxxxxxxx wrote: >> Milan Broz <gmazyland@xxxxxxxxx> hat am 25. Januar 2018 um 20:32 geschrieben: >> On 01/25/2018 08:05 PM, inderaue23@xxxxxxxx wrote: >>> Hej there! Just want to ask if/or when it will be available for Fedora workstation. >> >> Fedora usually has build of all cryptsetup/LUKS tools as the first distro. >> >> So, for now, rawhide has all recent builds, so Fedora 28 should get all builds of LUKS2 as well. > > But it isn't in Fedora 27 already, is it? No, and it will not be in F27 because part of the update to new libcryptsetup is soname library bump that requires several rebuilds. > Is it possible to choose it using the Anaconda install GUI? Some discussion about using new format for installer is already ongoing but for now I would definitely wait with this. LUKS1 format gives you compatibility with all distros and if you do not need any new features, it works well. > And does LUKS2 provides advantages for normal desktop/latop users as well? It depends. Support for new authenticated modes is experimental and definitely should be used only for testing for now. The new on-disk format provides some new features (use of kernel keyring, new KDF etc) but these are not probably so important for a regular user yet. LUKS2 allows us to add new things easily in future, this was the main reason for the change. (For more info see release notes available on project page https://gitlab.com/cryptsetup/cryptsetup/blob/master/README.md) So the plan for LUKS2 is (from upstream point of view) - prepare all infrastructure for new format (soname change, support in systemd, liblkid, storage libraries and tools etc; this is current state in rawhide) and then sometime later enable it in installer, if needed. (If used from commandline, you can add --type luks2 for luksFormat already in rawhide.) Milan _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
