The problem with no zeroing is that this wasn't done just for fun, there *was* a rationale for it initially. To quote Evan Dandrea (who introduced this 6 years ago):
"The installer is writing over any swap partitions to be used by Ubuntu with zeros, to prevent leaking of data that could enter swap before the encrypted swap was set up. The solution, as mentioned, is to provide a progress message for this operation." https://bugs.launchpad.net/ubuntu/+source/ubiquity/+bug/432422/comments/7 Removing the zeroing could possibly get us to leak some data, and zeroing makes it "easier" to figure out the crypto key for the swap partition. This will need further guidance from the security team. ** Changed in: ubiquity (Ubuntu) Assignee: Mathieu Trudel-Lapierre (mathieu-tl) => Ubuntu Security Team (ubuntu-security) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1506995 Title: Ubiquity facilitate attack on crypto LUKS To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ubiquity/+bug/1506995/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
