=== modified file 'Makefile'
--- Makefile	2024-09-11 22:44:07 +0000
+++ Makefile	2024-09-12 17:10:51 +0000
@@ -44,7 +44,7 @@
 LANGUAGE:=-std=gnu11
 CPPFLAGS+=-D_FILE_OFFSET_BITS=64 -D_TIME_BITS=64
 htmldir:=man
-version:=1.8.16
+version:=1.8.17
 SED:=sed
 PKG_CONFIG?=pkg-config
 

=== modified file 'NEWS'
--- NEWS	2023-02-08 01:38:30 +0000
+++ NEWS	2024-09-12 17:10:51 +0000
@@ -1,6 +1,24 @@
 This NEWS file records noteworthy changes, very tersely.
 See the manual for detailed information.
 
+Version 1.8.17 (2024-09-12)
+* Improve documentation slightly, especially how to add extra options
+  to mandos-client when using dracut with systemd.
+* Make life easier for distribution packagers by making sure that
+  "make install" creates all required directories.
+* Server
+** When seeing clients.conf entries lacking both fingerprint and
+   key_id, show a warning and ignore them instead of crashing,
+* Client
+** Suppress most spurious compiler warnings.
+** Use 64-bit time.
+** In initramfs-tools-hook, be aware of new name of GPGME library,
+   libgpgme11t64.
+** In password-agent(8mandos), look for a Plymouth process in
+   alphabetical order, not in reverse alphabetical order.  This is
+   technically a user-visible change, but should never matter in
+   practice.
+
 Version 1.8.16 (2023-02-08)
 * Server
 ** Bug fix: Start client checkers after a random delay

=== modified file 'common.ent'
--- common.ent	2023-02-08 00:05:18 +0000
+++ common.ent	2024-09-12 17:10:51 +0000
@@ -1,3 +1,3 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!-- Edited by Makefile -->
-<!ENTITY version "1.8.16">
+<!ENTITY version "1.8.17">

=== modified file 'debian/changelog'
--- debian/changelog	2024-09-09 03:16:17 +0000
+++ debian/changelog	2024-09-12 17:10:51 +0000
@@ -1,3 +1,61 @@
+mandos (1.8.17-1) unstable; urgency=medium
+
+  * New upstream release.
+  * debian/control (Package: mandos/Depends): Fix "mandos: Depends on
+    transition package gnupg2" by removing "gnupg2 |".  (Closes: #1055402)
+  * debian/control (Source: mandos/Build-Depends): Fix "Please switch
+    Build-Depends to systemd-dev" by preferring systemd-dev to older
+    systemd (Closes: #1060546)
+  * Fix "reportbug: mandos-client does not include gpg-agent in initramfs"
+    by first trying the new library name, libgpgme11t64 (Closes: #1077927)
+  * Fix "mandos-client postrm purge can mysteriously fail" by making sure
+    that the maintainer scripts do not output anything to standard output
+    (Closes: #1079588)
+  * debian/mandos-client.postinst (update_initramfs): Add "1>&2" to
+    invocations of update-initramfs and /etc/kernel/postinst.d/dracut.
+    (add_mandos_user): Add "1>&2" to invocations of usermod, groupmod, and
+    adduser.
+    (create_keys): Add "1>&2" to invocations of mandos-keygen,
+    gpg-connect-agent, certtool, and openssl.
+    (create_dh_params): Add "1>&2" to invocations of certtool and openssl.
+    Add "--force" option to "rm".
+  * debian/mandos-client.postrm (update_initramfs): Add "1>&2" to
+    invocations of update-initramfs and /etc/kernel/postinst.d/dracut.
+  * Fix "mandos lost mandos.service systemd unit" by getting the correct
+    directory names from pkg-config (Closes: #1069689)
+  * debian/mandos-client.dirs (usr/lib/sysusers.d): Removed.
+  * debian/mandos.dirs (lib/systemd/system, usr/lib/tmpfiles.d,
+    usr/lib/sysusers.d): Removed.
+  * debian/rules (PKG_CONFIG): New; copied from Makefile.
+  * (override_dh_installdirs-indep): New; run dh_installdirs twice:  first
+    normally, and again for the systemd unit file directory and the
+    directories for the "tmpfilesdir" and "sysusersdir" variables from
+    pkg-config.
+    (override_dh_installdirs-arch): New; create directory for the
+    "sysusersdir" variable from pkg-config.
+  * debian/mandos.dirs: Change D-Bus policy directory
+    "/etc/dbus-1/session.d" to "/usr/share/dbus-1/session.d".
+  * debian/mandos.maintscript: New; remove the old D-Bus policy file.
+  * debian/mandos-client.README.Debian: Fix spelling.
+  * debian/mandos-client.README.Debian: Remove unnecessary word "simply".
+    Also add instructions on how to add the --connect= options to
+    mandos-client when using dracut.
+  * debian/mandos-client.postrm: Also shred(1) tls-privkkey.pem, just like
+    with seckey.txt.
+  * debian/mandos-client.postinst (update_initramfs): When using dracut,
+    but the initramfs image file does not yet exist (due to the kernel
+    package not having been configured), create a new empty file with the
+    correct permissions, so that dracut will use the correct permissions
+    when creating the initramfs image file.
+  * debian/control (Package: mandos/Depends): Add "libgnutls30t64" as an
+    alternative to libgnutls30.
+  * debian/mandos-client.lintian-overrides: Change to new lintian "pointed
+    hints" syntax.
+  * debian/mandos.lintian-overrides: - '' -
+  * debian/control (Standards-Version): Change to "4.7.0".
+
+ -- Teddy Hogeborn <teddy@recompile.se>  Thu, 12 Sep 2024 18:59:04 +0200
+
 mandos (1.8.16-1.2) unstable; urgency=medium
 
   * Non-maintainer upload.

=== modified file 'mandos'
--- mandos	2024-09-08 02:18:57 +0000
+++ mandos	2024-09-12 17:10:51 +0000
@@ -143,7 +143,7 @@
 if sys.version_info < (3, 2):
     configparser.Configparser = configparser.SafeConfigParser
 
-version = "1.8.16"
+version = "1.8.17"
 stored_state_file = "clients.pickle"
 
 log = logging.getLogger(os.path.basename(sys.argv[0]))

=== modified file 'mandos-ctl'
--- mandos-ctl	2024-09-07 23:55:04 +0000
+++ mandos-ctl	2024-09-12 17:10:51 +0000
@@ -92,7 +92,7 @@
 
 locale.setlocale(locale.LC_ALL, "")
 
-version = "1.8.16"
+version = "1.8.17"
 
 
 def main():

=== modified file 'mandos-keygen'
--- mandos-keygen	2023-02-08 00:05:18 +0000
+++ mandos-keygen	2024-09-12 17:10:51 +0000
@@ -23,7 +23,7 @@
 # Contact the authors at <mandos@recompile.se>.
 # 
 
-VERSION="1.8.16"
+VERSION="1.8.17"
 
 KEYDIR="/etc/keys/mandos"
 KEYTYPE=RSA

=== modified file 'mandos-monitor'
--- mandos-monitor	2023-02-08 00:05:18 +0000
+++ mandos-monitor	2024-09-12 17:10:51 +0000
@@ -69,7 +69,7 @@
 domain = "se.recompile"
 server_interface = domain + ".Mandos"
 client_interface = domain + ".Mandos.Client"
-version = "1.8.16"
+version = "1.8.17"
 
 try:
     dbus.OBJECT_MANAGER_IFACE

=== modified file 'mandos.lsm'
--- mandos.lsm	2023-02-08 00:05:18 +0000
+++ mandos.lsm	2024-09-12 17:10:51 +0000
@@ -1,7 +1,7 @@
 Begin4
 Title:		Mandos
-Version:	1.8.16
-Entered-date:	2023-02-08
+Version:	1.8.17
+Entered-date:	2024-09-12
 Description:	The Mandos system allows computers to have encrypted
 		root file systems and at the same time be capable of
 		remote and/or unattended reboots.
@@ -12,9 +12,9 @@
 Maintained-by:	teddy@recompile.se (Teddy Hogeborn),
 		belorn@recompile.se (Björn Påhlsson)
 Primary-site:	https://www.recompile.se/mandos
-		240K mandos_1.8.16.orig.tar.gz
+		241K mandos_1.8.17.orig.tar.gz
 Alternate-site:	ftp://ftp.recompile.se/pub/mandos
-		240K mandos_1.8.16.orig.tar.gz
+		241K mandos_1.8.17.orig.tar.gz
 Platforms:	Requires GCC, GNU libC, Avahi, GnuPG, Python 2.7, and
 		various other libraries.  While made for Debian
 		GNU/Linux, it is probably portable to other