Accepted cryptsetup 2:2.7.0~rc0-1 (source) into experimental
- To: debian-devel-changes@lists.debian.org, debian-experimental-changes@lists.debian.org
- Subject: Accepted cryptsetup 2:2.7.0~rc0-1 (source) into experimental
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Wed, 29 Nov 2023 18:04:44 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: cryptsetup_2.7.0~rc0-1_source.changes
- Debian-source: cryptsetup
- Debian-suite: experimental
- Debian-version: 2:2.7.0~rc0-1
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=eC0u1FjUGtEHPym5eC+bLdWBb9oKsSECYfZeGiQeLLc=; b=RmgEEJm9rHN3g7zAL+m97q5tJe iJbnXuvpyhGz+VBzPqD4N8VGgYVVrtqoX+hzDj6TX1qzbbaGH7IFMxkQGltURx8nYe+osvApnVQ/W mlc+ekT9R5NLKsHSQ6zRK2lLcvztPap7vd0fYqmmP8ezlSjZS0dypHRYylI7cHDhIA7LYUDyV/XQF m/x0jkia4MKWEYNDuRyrjRNJw8g9rXyxv41l8VmyWCL+ZBQTA8ugn0X0UuzFs3/nUv52A7lk4Ru9i 8uUq/PHyF0Vox72/rjVu6EgGUc3PHpdfrdqWz2ZR32tULP4FhOzZmRpy2khguwxvCjmwE4rYNSDjR WJHrwV8A==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1r8OvU-0033JP-NQ@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 29 Nov 2023 17:19:10 +0100
Source: cryptsetup
Architecture: source
Version: 2:2.7.0~rc0-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Cryptsetup Team <pkg-cryptsetup-devel@alioth-lists.debian.net>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Changes:
cryptsetup (2:2.7.0~rc0-1) experimental; urgency=medium
.
* New upstream release candidate 2.7.0:
+ Add support for (opt-in) hardware OPAL disk encryption.
+ plain mode: Set default cipher to aes-xts-plain64 and password hashing
to sha256. This is a backward incompatible change for plain mode when
relying on the defaults. It doesn't affect LUKS volumes. Defaults for
plain mode should not be relied upon anyway; for many releases the
Debian wrappers found in the ‘cryptsetup’ binary package spew a loud
warning when ‘cipher=’ or ‘hash=’ are not explicitly specified in the
crypttab(5) options of plain devices. The cryptsetup(8) executable now
issue such a warning as well.
+ Allow activation (open), luksResume, and luksAddKey to use the volume
key stored in a keyring.
+ Allow one to store volume key to a user-specified keyring in open and
luksResume commands.
* Update d/libcryptsetup12.symbols.
* Remove d/patches applied upstream.
* Update debian/* to reflect current cipher and hash for plain mode.
* d/tests: Replace `passwd --delete` with `busybox passwd -d`.
Checksums-Sha1:
d1d15655ddb2133d1a2a53b5fa205394ad9346cd 3576 cryptsetup_2.7.0~rc0-1.dsc
57f4613869ade4658cdbe347fff16ee885845102 11710414 cryptsetup_2.7.0~rc0.orig.tar.gz
6bbeb8cc1aa70418ff769fdd97932b090f2ac7d7 155460 cryptsetup_2.7.0~rc0-1.debian.tar.xz
4f71cda39ed1f2862ed364e4f2859602f4ea1321 11563 cryptsetup_2.7.0~rc0-1_amd64.buildinfo
Checksums-Sha256:
04ab802283185424e610512ea37e15ff04c778cbc553f8e11c86b09090ca5624 3576 cryptsetup_2.7.0~rc0-1.dsc
684d5f034aa26b9b7c8bf9bf3fab5aa871779b10075c2eac80747f34900dc2d2 11710414 cryptsetup_2.7.0~rc0.orig.tar.gz
fc440b4a315a3b26dcfb800c4a925df2b8a9c3391d47e63f5fb2490f12b0b19b 155460 cryptsetup_2.7.0~rc0-1.debian.tar.xz
9b4ce3f2de1512f4a07075896971b7e00bb0fdacd27b4b592a377e0733e3d65d 11563 cryptsetup_2.7.0~rc0-1_amd64.buildinfo
Files:
81a7dfe0ae0fcc2eb533b97f9c84145b 3576 admin optional cryptsetup_2.7.0~rc0-1.dsc
1d38441bd06a7c196bdc976aea3286cf 11710414 admin optional cryptsetup_2.7.0~rc0.orig.tar.gz
34bf2bdcae98557249bdeefc3b574cf5 155460 admin optional cryptsetup_2.7.0~rc0-1.debian.tar.xz
14a4f73dc0cc8d5321fc246759db53f6 11563 admin optional cryptsetup_2.7.0~rc0-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=AWnL
-----END PGP SIGNATURE-----