[ubuntu/eoan-proposed] cryptsetup 2:2.2.0-1ubuntu1 (Accepted)

Gianfranco Costamagna locutusofborg at debian.org
Tue Aug 20 12:24:12 UTC 2019 

cryptsetup (2:2.2.0-1ubuntu1) eoan; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/control:
      + Recommend plymouth.
      + Depend on busybox-initramfs instead of busybox | busybox-static.
    - Apply patch from Trent Nelson to fix cryptroot-unlock for busybox
      compatibility.

cryptsetup (2:2.2.0-1) unstable; urgency=medium

  * New upstream release 2.2.0.  Highlights include:
    + New LUKS2 online reencryption extension, allowing reencryption of
      mounted LUKS2 devices.
    + Optional global serialization lock for memory hard PBKDF, to workaround
      situations when multiple devices are unlocked in parallel, possibly
      exhausting memory and triggering the OOM killer.  (Cf. #924560.)
    + Add integritysetup support for bitmap mode (Linux >=5.2).
    + Reduce keyslots area size in luksFormat when the header device is too
      small.
  * Remove d/patches, applied upstream.

cryptsetup (2:2.1.0-8) unstable; urgency=medium

  * encrypted-boot.md:
    + Clarify partition layout.
    + encrypted-boot.md: New section 'Using a custom keyboard layout'.
  * d/gbp.conf: New section [export-orig] mirroring [buildpackage].
  * d/gitlab-ci.yml: Add 'publish' stage and make yamllint(1) happy.
  * d/patches: Backport upstream commit c03e3fe8 so libcryptsetup's
    crypt_keyslot_add_by_volume_key() also works a on LUKS2 header where all
    bound key slots were deleted, like it does for LUKS1. (Closes: #934715)

cryptsetup (2:2.1.0-7) unstable; urgency=low

  * debian/cryptsetup.NEWS: Mention the 'cryptsetup' and 'cryptsetup-run'
    package swap.
  * debian/control: Add 'cryptsetup-initramfs' to 'cryptsetup's Recommends:,
    so upgrading systems pull it automatically on upgrade.  (cryptsetup
    <2:2.1.0-6 was a dummy transitional package depending on cryptsetup-run
    and cryptsetup-initramfs.)  Closes: #932643.
  * debian/control: Add 'cryptsetup-run' to 'cryptsetup's Recommends.  This
    avoids it being removed by `apt upgrade --autoremove` from <2:2.1.0-6,
    thus avoids the old cryptsetup-run's prerm script showing a scary (but
    moot) warning.  After upgrading the prerm script is gone and the package
    can be removed without troubles, so we can get rid of it after Bullseye.
    (Closes: #932625.)
  * cryptsetup-initramfs: Add loud warning upon "prerm remove" if there are
    mapped crypt devices (like for cryptsetup.prerm).
  * Thanks to David Prévot for helping with the upgrade path!

cryptsetup (2:2.1.0-6) unstable; urgency=low

  * debian/control:
    + Add 'Multi-Arch: foreign' tags to 'cryptsetup-bin' and 'crytsetup-run',
      as binaries from these packages are architecture independent.
      (Closes: #930115)
    + Add 'Build-Depends: jq, xxd' as the jq(1) and xxd(1) executables are
      required for some upstream tests (skipped if the executables are not
      found in $PATH).
    + Swap 'cryptsetup' and 'cryptsetup-run' packages: the former now contains
      init scripts, libraries, keyscripts, etc. while the latter is now a
      transitional dummy package.
    + Remove obsolete cryptsetup.maintscript.
    + Bump Standards-Version to 4.4.0 (no changes necessary).
  * debian/*:
    + Fix path names for /usr/share/doc/cryptsetup*/**. (Closes: #904916).
    + Remove compatibility warnings regarding setting 'CRYPTSETUP' in
      the initramfs hook configuration.  The variable is no longer honored,
      and cryptsetup is always integrated to the initramfs when the
      'cryptsetup-initramfs' package is installed.
  * debian/doc/pandoc/encrypted-boot.md: Minor refactoring.
  * debian/gitlab-ci.yml: Adapt pandoc flags to Debian 9 (pass '-S').
  * debian/initramfs/conf-hook: Clarify that KEYFILE_PATTERN isn't expanded
    for crypttab(5) entries with a 'keyscript=' option. (Closes: #930696)
  * debian/doc/crypttab.xml: Point to README.initramfs in the "See Also"
    section. (Closes: #913233)

Date: Tue, 20 Aug 2019 14:21:34 +0200
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/cryptsetup/2:2.2.0-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 20 Aug 2019 14:21:34 +0200
Source: cryptsetup
Binary: cryptsetup cryptsetup-bin cryptsetup-initramfs cryptsetup-run libcryptsetup12 libcryptsetup-dev cryptsetup-udeb libcryptsetup12-udeb
Architecture: source
Version: 2:2.2.0-1ubuntu1
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Description:
 cryptsetup - disk encryption support - startup scripts
 cryptsetup-bin - disk encryption support - command line tools
 cryptsetup-initramfs - disk encryption support - initramfs integration
 cryptsetup-run - transitional dummy package for cryptsetup
 cryptsetup-udeb - disk encryption support - commandline tools (udeb) (udeb)
 libcryptsetup-dev - disk encryption support - development files
 libcryptsetup12 - disk encryption support - shared library
 libcryptsetup12-udeb - disk encryption support - shared library (udeb) (udeb)
Closes: 904916 913233 930115 930696 932625 932643 934715
Changes:
 cryptsetup (2:2.2.0-1ubuntu1) eoan; urgency=low
 .
   * Merge from Debian unstable.  Remaining changes:
     - debian/control:
       + Recommend plymouth.
       + Depend on busybox-initramfs instead of busybox | busybox-static.
     - Apply patch from Trent Nelson to fix cryptroot-unlock for busybox
       compatibility.
 .
 cryptsetup (2:2.2.0-1) unstable; urgency=medium
 .
   * New upstream release 2.2.0.  Highlights include:
     + New LUKS2 online reencryption extension, allowing reencryption of
       mounted LUKS2 devices.
     + Optional global serialization lock for memory hard PBKDF, to workaround
       situations when multiple devices are unlocked in parallel, possibly
       exhausting memory and triggering the OOM killer.  (Cf. #924560.)
     + Add integritysetup support for bitmap mode (Linux >=5.2).
     + Reduce keyslots area size in luksFormat when the header device is too
       small.
   * Remove d/patches, applied upstream.
 .
 cryptsetup (2:2.1.0-8) unstable; urgency=medium
 .
   * encrypted-boot.md:
     + Clarify partition layout.
     + encrypted-boot.md: New section 'Using a custom keyboard layout'.
   * d/gbp.conf: New section [export-orig] mirroring [buildpackage].
   * d/gitlab-ci.yml: Add 'publish' stage and make yamllint(1) happy.
   * d/patches: Backport upstream commit c03e3fe8 so libcryptsetup's
     crypt_keyslot_add_by_volume_key() also works a on LUKS2 header where all
     bound key slots were deleted, like it does for LUKS1. (Closes: #934715)
 .
 cryptsetup (2:2.1.0-7) unstable; urgency=low
 .
   * debian/cryptsetup.NEWS: Mention the 'cryptsetup' and 'cryptsetup-run'
     package swap.
   * debian/control: Add 'cryptsetup-initramfs' to 'cryptsetup's Recommends:,
     so upgrading systems pull it automatically on upgrade.  (cryptsetup
     <2:2.1.0-6 was a dummy transitional package depending on cryptsetup-run
     and cryptsetup-initramfs.)  Closes: #932643.
   * debian/control: Add 'cryptsetup-run' to 'cryptsetup's Recommends.  This
     avoids it being removed by `apt upgrade --autoremove` from <2:2.1.0-6,
     thus avoids the old cryptsetup-run's prerm script showing a scary (but
     moot) warning.  After upgrading the prerm script is gone and the package
     can be removed without troubles, so we can get rid of it after Bullseye.
     (Closes: #932625.)
   * cryptsetup-initramfs: Add loud warning upon "prerm remove" if there are
     mapped crypt devices (like for cryptsetup.prerm).
   * Thanks to David Prévot for helping with the upgrade path!
 .
 cryptsetup (2:2.1.0-6) unstable; urgency=low
 .
   * debian/control:
     + Add 'Multi-Arch: foreign' tags to 'cryptsetup-bin' and 'crytsetup-run',
       as binaries from these packages are architecture independent.
       (Closes: #930115)
     + Add 'Build-Depends: jq, xxd' as the jq(1) and xxd(1) executables are
       required for some upstream tests (skipped if the executables are not
       found in $PATH).
     + Swap 'cryptsetup' and 'cryptsetup-run' packages: the former now contains
       init scripts, libraries, keyscripts, etc. while the latter is now a
       transitional dummy package.
     + Remove obsolete cryptsetup.maintscript.
     + Bump Standards-Version to 4.4.0 (no changes necessary).
   * debian/*:
     + Fix path names for /usr/share/doc/cryptsetup*/**. (Closes: #904916).
     + Remove compatibility warnings regarding setting 'CRYPTSETUP' in
       the initramfs hook configuration.  The variable is no longer honored,
       and cryptsetup is always integrated to the initramfs when the
       'cryptsetup-initramfs' package is installed.
   * debian/doc/pandoc/encrypted-boot.md: Minor refactoring.
   * debian/gitlab-ci.yml: Adapt pandoc flags to Debian 9 (pass '-S').
   * debian/initramfs/conf-hook: Clarify that KEYFILE_PATTERN isn't expanded
     for crypttab(5) entries with a 'keyscript=' option. (Closes: #930696)
   * debian/doc/crypttab.xml: Point to README.initramfs in the "See Also"
     section. (Closes: #913233)
Checksums-Sha1:
 2cc79fd2b2f0788cef9db018f9e361b6856c9862 2926 cryptsetup_2.2.0-1ubuntu1.dsc
 4bb918d14cb589cd0800528c4b48a2db97612567 10846893 cryptsetup_2.2.0.orig.tar.gz
 ae1458f93f4ce8272eed1949ef036ba5d1b72efa 121660 cryptsetup_2.2.0-1ubuntu1.debian.tar.xz
 04e2c59e38521a7d825631d852deb1a09c02ba21 8073 cryptsetup_2.2.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
 8acabf41c797d26bfa368731d84062c771064416d087836dcce0ba49b944ca0a 2926 cryptsetup_2.2.0-1ubuntu1.dsc
 bf7588de7d5f8fe29f52a8ce47aaa92aef6a92b6e8fcc73032417d39dbfbd523 10846893 cryptsetup_2.2.0.orig.tar.gz
 9225ba79e6340ea1da94838b47dc763dcbd712fb20fd0bde9fa6b925a45551dd 121660 cryptsetup_2.2.0-1ubuntu1.debian.tar.xz
 19691a90195b27fb1585ef9db70129369a643687660b16ee6a38e48a8b15381b 8073 cryptsetup_2.2.0-1ubuntu1_source.buildinfo
Files:
 ddef68d318cebf254022add0b32669d2 2926 admin optional cryptsetup_2.2.0-1ubuntu1.dsc
 ef1b2d851c9360d377d13f37b95edcf4 10846893 admin optional cryptsetup_2.2.0.orig.tar.gz
 b0fe85e0402bd0fb7bcb4fcaa1c74144 121660 admin optional cryptsetup_2.2.0-1ubuntu1.debian.tar.xz
 6a9299027a20e7a01c9754e47e421f98 8073 admin optional cryptsetup_2.2.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Cryptsetup Team <pkg-cryptsetup-devel at alioth-lists.debian.net>

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEkpeKbhleSSGCX3/w808JdE6fXdkFAl1b5fYACgkQ808JdE6f
XdmcZRAAr6i0D07CVUDGtudN0seVRt9920Jd6bRmxXjBUKKPIjCQ1R7mRVF5OEnR
XSO3LMJVYo7Bft9ekhN8hYNFeAuQaMtwJKvPuYqhxkEs4hZJqs/jzMAO+m65czhb
3N/mg/Lt293U7qwV5AC+HCptED7hLb3ubrX3ezRJLDsT9aQY5B8CV6J5/3iGsd8e
WV6xWO7rTRrGoQMSav/GuY19bn45Z7EZmVxmmIHFnKcgXUZwE4T8xSG47NA03NQ4
WKBAzVDvAJCZ4FNL4kwiKtOv0xJHZWvWs2VK2Vs8RZZftrgx7zfYoRN1w92Q/Ueq
HmjzI1Z4/qzUGScouBkxM248ACh0iqysdymc4OGBfY+onMpHSeVmLQy62k6vMbIK
fRphj9NQijCKbZrdSB6yO7havVK1hjiCdEbh8+cDslyuLPojxOMAY0eSaasweeB0
Ba8ZDYEBPu+Nr6t3fvksRZ4kXbX5TUGetNGCP7ycfMXF2X0104tuBzq6O6EEFBBi
TuUBZc/0PheGFcpe/QhctbsNVe8ius/zjPAx3QXW73BhNW6RWEh+dhN37XyWO7do
toE5vvRbViJNHYF6ffxmm/plB+JE2/SeNun6xnjVU1mYzWPUqFuqTejEHuqIKxOc
LioaJY+LsTi63YBgnpuwcfGUpEfk9fWI/KpNKI+uH8c4FDKq4r4=
=dosm
-----END PGP SIGNATURE-----

More information about the Eoan-changes mailing list