Pawel Jakub Dawidek wrote: > BTW. Do you plan do add integrity verification without encryption? > OpenSolaris source on your laptop may be open-source, but you don't want > someone to mess with them and then you commit some evil change to the > main source tree:) Beeing able to setup HMAC as checksum algorithm, but > without encryption might be useful sometimes.
Since using an CBC mode for encryption requires we add an hmac-sha256 variant yes. I just didn't make it explicit that hmac-sha256 will be available as a dataset checksum algorithm even when encryption=off. Thanks for noticing that. -- Darren J Moffat
