lp:ubuntu/gutsy-proposed/cryptsetup
- Get this branch:
- bzr branch lp:ubuntu/gutsy-proposed/cryptsetup
Branch merges
Branch information
Recent revisions
- 28. By Reinhard Tartler
-
RELIABILITY FIX: lib/libdevmapper.c: Ensure that pending device creation
events are being processed by calling /sbin/udevsettle. Patch based on
OpenSUSE bug #285478, LP: #132373. - 27. By Martin Pitt
-
* debian/
initramfs/ cryptroot- script:
- If the supplied password worked, remove the prompt from usplash again,
so that the user has some visual feedback that everything is alright.
(LP: #151305)
- Do not show the UUID device node of the outer physical device. It is
scary ("/dev/disk/by- uuid/1234yadaya da") and displaying it does not
improve security at all: If attackers can tamper with your initramfs,
they can also change the prompt, and if the UUID of the physical device
changes, then booting will not even get that far. Now it is a much more
friendly "Enter passphrase for sda5_crypt:" which is still technical,
but it's necessary to point out which device will be unlocked in case
there are several. - 26. By Reinhard Tartler
-
* Merge new debian version. Remaining changes:
- cryptsetup is linked dynamically against libgcrypt and libgpg-error.
This will break systems where /usr is a separate encrypted filesystem
but not have other bad consequences (in particular, systems with
encrypted root are still fine). The upsides include better
security supportability and smaller packages.
- libcryptsetup.so et al removed from the binary packages. They have
no stable ABI and are not suitable for use by other packages, and
were in violation of library policies etc. They're not needed since
the cryptsetup executable statically contains the relevant parts of
libcryptsetup.
- cryptdisks.functions: remove #!/bin/bash as it isn't a script
by itself; it's only sourced by other scripts. This gets rid
of the lintian warning `script-not-executable' for this file.
- stop usplash on user input. LP #62751
- Always output and read from the console. LP #58794.
- Add XSBC-Vcs-Bzr tag to indicate that this package is managed using
bzr on launchpad.
- Bump libgcrypt11 build-dependency again to 1.2.4-2ubuntu2 to eliminate
libnsl linkage;
- debian/initramfs/ cryptroot- hook: (LP: #73862)
Added patch to install aes optimized cypher module
- try to load optimized cypher module in cryptsetup.functions as well,
because cryptroot-hook is only executed when we really have a
cryptoroot.
- apply patch from pitti for allowing UUIDs in /etc/crypttab.
This allowes crypted PVs! LP: #144390.
- remove README.ubuntu, since it contains old and obsolete information. - 25. By Reinhard Tartler
-
[ Stephan Hermann ]
* debian/initramfs/ cryptroot- hook: (LP: #73862)
- Added patch to install aes optimized cypher module[ Reinhard Tartler ]
* re-applying old patch to new package version
* try to load optimized cypher module in cryptsetup.functions as well,
because cryptroot-hook is only executed when we really have a
cryptoroot. - 24. By Colin Watson
-
Bump libgcrypt11 build-dependency again to 1.2.4-2ubuntu2 to eliminate
libnsl linkage; should finally produce a usable cryptsetup binary for
the udeb. - 23. By Colin Watson
-
Bump libgcrypt11 build-dependency to 1.2.4-2ubuntu1 and rebuild for
proper udeb dependencies. - 22. By Reinhard Tartler
-
* Merge new debian version. Remaining changes:
- cryptsetup is linked dynamically against libgcrypt and libgpg-error.
This will break systems where /usr is a separate encrypted filesystem
but not have other bad consequences (in particular, systems with
encrypted root are still fine). The upsides include better
security supportability and smaller packages.
- libcryptsetup.so et al removed from the binary packages. They have
no stable ABI and are not suitable for use by other packages, and
were in violation of library policies etc. They're not needed since
the cryptsetup executable statically contains the relevant parts of
libcryptsetup.
- cryptdisks.functions: remove #!/bin/bash as it isn't a script
by itself; it's only sourced by other scripts. This gets rid
of the lintian warning `script-not-executable' for this file.
- stop usplash on user input. LP #62751
- Always output and read from the console. LP #58794.
* Add XSBC-Vcs-Bzr tag to indicate that this package is managed using
bzr on launchpad.
* UVF exception request granted by Scott Kitterman and Chuck Short
LP: #138295 - 20. By Ian Jackson
-
* cryptsetup is linked dynamically against libgcrypt and libgpg-error.
This will break systems where /usr is a separate encrypted filesystem
but not have other bad consequences (in particular, systems with
encrypted root are still fine). The upsides include better
security supportability and smaller packages.
* libcryptsetup.so et al removed from the binary packages. They have
no stable ABI and are not suitable for use by other packages, and
were in violation of library policies etc. They're not needed since
the cryptsetup executable statically contains the relevant parts of
libcryptsetup.
* cryptdisks.functions: remove #!/bin/bash as it isn't a script
by itself; it's only sourced by other scripts. This gets rid
of the lintian warning `script-not-executable' for this file.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/cryptsetup