cryptsetup (2:1.0.5-2ubuntu1) gutsy; urgency=low * Merge new debian version. Remaining changes: - cryptsetup is linked dynamically against libgcrypt and libgpg-error. This will break systems where /usr is a separate encrypted filesystem but not have other bad consequences (in particular, systems with encrypted root are still fine). The upsides include better security supportability and smaller packages. - libcryptsetup.so et al removed from the binary packages. They have no stable ABI and are not suitable for use by other packages, and were in violation of library policies etc. They're not needed since the cryptsetup executable statically contains the relevant parts of libcryptsetup. - cryptdisks.functions: remove #!/bin/bash as it isn't a script by itself; it's only sourced by other scripts. This gets rid of the lintian warning `script-not-executable' for this file. - stop usplash on user input. LP #62751 - Always output and read from the console. LP #58794. - Add XSBC-Vcs-Bzr tag to indicate that this package is managed using bzr on launchpad. - Bump libgcrypt11 build-dependency again to 1.2.4-2ubuntu2 to eliminate libnsl linkage; - debian/initramfs/cryptroot-hook: (LP: #73862) Added patch to install aes optimized cypher module - try to load optimized cypher module in cryptsetup.functions as well, because cryptroot-hook is only executed when we really have a cryptoroot. - apply patch from pitti for allowing UUIDs in /etc/crypttab. This allowes crypted PVs! LP: #144390. - remove README.ubuntu, since it contains old and obsolete information. cryptsetup (2:1.0.5-2) unstable; urgency=low [ Jonas Meurer ] * Add libselinux1-dev and libsepol1-dev to build-depends. Detected by the build daemon from hell by Steinar H. Gunderson. Thanks to Manoj Srivastava for advice. * Fix the watchfile * Fix cryptopensc-hook to honor key=none. Thanks to Daniel Baumann (closes: #436434) * Remove outdated README.html and example usbcrypto.* scripts from documentation. Add example usbcrypto.udev script. Thanks to Volker Sauer for the update. (closes: #409775) * Document that stdin is read different with '--key-file=-' than without. Thanks to Marc Haber. (closes: #418450) * Document that --timeout is useless in conjunction with --key-file. Thanks Alexander Zangerl. (closes: #421693) * [03_check_for_root.dpatch] Check for UID == 0 before actually doing something. Thanks to Benjamin Seidenberg. (closes: #401766) * [04_fix_unused_or_unitialized_variables.dpatch] Fix some gcc warnings about unused or unitialized variables. Thanks to Ludwig Nussel for the patch. * [05_segfault_at_nonexisting_device.dpatch] Fix segfault when trying to open a non existing device. Thanks to Ludwig Nussel for the patch. (closes: #438198) * Add CFLAGS="$(CFLAGS)" before ./configure invocation in debian/rules. This way CFLAGS are passed to the configure script. Thanks to Gordon Farquharson for the patch. (closes: #438450) * Add a warning about missing hash option in crypttab to initramfs cryptoroot hook. Thanks to Sebastian Leske for the patch. (closes: #438169) * Add support for openct using data objects on a smartcard as key. Thanks to Daniel Baumann