cryptsetup 2:2.4.2-1ubuntu1 source package in Ubuntu
Changelog
cryptsetup (2:2.4.2-1ubuntu1) jammy; urgency=medium
* Merge from Debian unstable. Remaining changes:
- debian/control:
+ Recommend plymouth.
+ Depend on busybox-initramfs instead of busybox | busybox-static.
- Fix cryptroot-unlock for busybox compatibility.
- Fix warning and error when running on ZFS on root: (LP: #1830110)
- d/functions: Return an empty devno for ZFS devices as they don't have
major:minor device numbers.
- d/initramfs/hooks/cryptroot: Ignore and don't print an error message when
devices don't have a devno.
Submitted to debian upstream as bug #902449.
- debian/patches/decrease_memlock_ulimit.patch
Fixed FTBFS due a restrict environment in the new Bionic Builder (LP: #1891473)
tests/luks2-validation.test, tests/compat-test, tests/tcrypt-compat-test.
- Thanks Guilherme G. Piccoli.
- Stop building the udeb on request.
* Dropped change, included in Debian:
- Introduce retry logic for external invocations after mdadm (LP: #1879980)
- Currently, if an encrypted rootfs is configured on top of a MD RAID1
array and such array gets degraded (e.g., a member is removed/failed)
the cryptsetup scripts cannot mount the rootfs, and the boot fails.
We fix that issue here by allowing the cryptroot script to be re-run
by initramfs-tools/local-block stage, as mdadm can activate degraded
arrays at that stage.
There is an initramfs-tools counter-part for this fix, but alone the
cryptsetup portion is harmless.
- d/cryptsetup-initramfs.install: ship the new local-bottom script.
- d/functions: declare variables for local-top|block|bottom scripts
(flag that local-block is running and external invocation counter.)
- d/i/s/local-block/cryptroot: set flag that local-block is running.
- d/i/s/local-bottom/cryptroot: clean up the flag and counter files.
- d/i/s/local-top/cryptroot: change the logic from just waiting 180
seconds to waiting 5 seconds first, then allowing initramfs-tools
to run mdadm (to activate degraded arrays) and call back at least
30 times/seconds more.
-- Michael Hudson-Doyle <email address hidden> Thu, 02 Dec 2021 11:58:05 +1300
Upload details
- Uploaded by:
- Michael Hudson-Doyle
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any all
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| cryptsetup_2.4.2.orig.tar.gz | 10.8 MiB | 4b023868af0a8fd155ba5705ee289489e4ac79808df4d76db82fccb725e43275 |
| cryptsetup_2.4.2-1ubuntu1.debian.tar.xz | 136.4 KiB | 464012fb82b8d42ea0012c2ec75c9d067605bd6266c6ac13f11cdf23cee85c33 |
| cryptsetup_2.4.2-1ubuntu1.dsc | 3.1 KiB | dc2845c49655f6752dacdfa19869eb5026decbc92970797b20d29bf68f016ce1 |
Available diffs
Binary packages built by this source
- cryptsetup: disk encryption support - startup scripts
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
Cryptsetup is backwards compatible with the on-disk format of cryptoloop,
but also supports more secure formats. This package includes support for
automatically configuring encrypted devices at boot time via the config
file /etc/crypttab. Additional features are cryptoroot support through
initramfs-tools and several supported ways to read a passphrase or key.
.
This package provides the cryptdisks_start and _stop wrappers, as well as
luksformat.
- cryptsetup-bin: disk encryption support - command line tools
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
This package provides cryptsetup, cryptsetup-reencrypt, integritysetup
and veritysetup.
- cryptsetup-bin-dbgsym: debug symbols for cryptsetup-bin
- cryptsetup-dbgsym: debug symbols for cryptsetup
- cryptsetup-initramfs: disk encryption support - initramfs integration
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
This package provides initramfs integration for cryptsetup.
- cryptsetup-run: transitional dummy package for cryptsetup
This is a transitional dummy package to get upgrading systems to install the
cryptsetup package. It can safely be removed once no other package depends on
it.
- cryptsetup-suspend: disk encryption support - suspend mode integration
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
This package provides suspend mode integration for cryptsetup. It takes
care of removing LUKS master key from memory before system suspend.
.
Please note that the suspend mode integration is limited to LUKS devices
and requires systemd. Moreover, this is an early implementation and may not
be as mature as the other cryptsetup-* packages yet.
- cryptsetup-suspend-dbgsym: debug symbols for cryptsetup-suspend
- libcryptsetup-dev: disk encryption support - development files
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
This package provides the libcryptsetup development files.
- libcryptsetup12: disk encryption support - shared library
Cryptsetup provides an interface for configuring encryption on block
devices (such as /home or swap partitions), using the Linux kernel
device mapper target dm-crypt. It features integrated Linux Unified Key
Setup (LUKS) support.
.
This package provides the libcryptsetup shared library.
- libcryptsetup12-dbgsym: debug symbols for libcryptsetup12
