On Friday 30 May 2008, Max Vozeler wrote: > I wonder how we should best handle this difference. We > could try to offer the valid key sizes only after the user > has chosen the iv-algorithm, but that is more involved > because users may currently change parameters in any order.
The best solution here is probably to just always display a key size dialog when the key type is changed, with the default for the new key type selected (i.e. disregarding any previous value). This could be skipped if the current value is equal to the default for the new key. Reason I suggest this is that I've understood from you that for partman-crypto having good defaults and making users only deviate from those with good reason is important. But silently changing current values of other fields than you are actually changing does not make for a really nice user interface. An alternative could be to only do this if the currently selected key length is not supported by the new key type and else just keep it. Displaying the dialog should be possible by just reusing the existing one, so the only cost would be a few extra lines of code. > Perhaps we should just offer the regular key sizes (128, > 192, 256 bits) and adjust them (adding 128 or doubling it) > depending on the iv-algorithm selected. That seems very counter-intuitive. Cheers, FJP
signature.asc
Description: This is a digitally signed message part.