/mandos/trunk

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to debian/control

Committer: Teddy Hogeborn
Date: 2024-11-17 18:43:11 UTC
Revision ID: teddy@recompile.se-20241117184311-ox25kvngy62h209g

Debian package: Avoid suggesting a C compiler unnecessarily

The list of suggested packages, meant to enable the "mandos" program
to find the correct value of SO_BINDTODEVICE by using a C compiler,
are not necessary when Python 3.3 or later is used, since it has the
SO_BINDTODEVICE constant defined in the "socket" module. Also, Python
2.6 or older has the same constant in the old "IN" module. Therefore,
we should suggest these Python versions as alternatives to a C
compiler, so that a C compiler is not installed unnecessarily.

debian/control (Package: mandos/Suggests): Add "python3 (>= 3.3)" and
"python (<= 2.6)" as alternatives to "libc6-dev | libc-dev" and
"c-compiler".

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

DBUS-API

INSTALL

NEWS

README

bugs.xml

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.maintscript

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/de.po

debian/po/en_US.po

debian/po/es.po

debian/po/fr.po

debian/po/nl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/sv.po

debian/po/templates.pot

debian/rules

debian/source

debian/source/format

debian/source/lintian-overrides

debian/source/local-options

debian/tests

debian/tests/control

debian/upstream

debian/upstream/metadata

debian/upstream/signing-key.asc

debian/watch

default-mandos

dracut-module

dracut-module/ask-password-mandos.path

dracut-module/ask-password-mandos.service

dracut-module/cmdline-mandos.sh

dracut-module/module-setup.sh

dracut-module/password-agent.c

dracut-module/password-agent.xml

init.d-mandos

initramfs-tools-conf

initramfs-tools-conf-hook

initramfs-tools-script

initramfs-tools-script-stop

initramfs-unpack

intro.xml

legalnotice.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos-to-cryptroot-unlock

mandos.lsm

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

overview.xml

plugin-helpers

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

sysusers.d-mandos.conf

tmpfiles.d-mandos.conf

files removed:
initramfs-tools-hook-conf

network-protocol.txt

files renamed:
mandos-client.c => plugin-runner.c

mandos-client.xml => plugin-runner.xml

plugins.d/password-request.c => plugins.d/mandos-client.c

plugins.d/password-request.xml => plugins.d/mandos-client.xml

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos.conf

mandos.conf.xml

mandos.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

1

Source: mandos

2

Section: admin

3

Priority: optional

4

Maintainer: Mandos Maintainers <mandos@recompile.se>

5

Uploaders: Teddy Hogeborn <teddy@recompile.se>,

6

Björn Påhlsson <belorn@recompile.se>

7

Build-Depends: debhelper (>= 10), docbook-xml, docbook-xsl,

8

libavahi-core-dev, libgpgme-dev | libgpgme11-dev,

9

libglib2.0-dev (>=2.40), libgnutls28-dev (>= 3.3.0),

10

libgnutls28-dev (>= 3.6.6) | libgnutls28-dev (<< 3.6.0),

11

xsltproc, pkgconf | pkg-config, libnl-route-3-dev,

12

systemd-dev | systemd (<< 256~rc2-1)

13

Build-Depends-Indep: python3 (>= 3), python3-dbus, python3-gi,

14

po-debconf

15

Standards-Version: 4.7.0

16

Vcs-Bzr: https://ftp.recompile.se/pub/mandos/trunk

17

Vcs-Browser: https://bzr.recompile.se/loggerhead/mandos/trunk/files

18

Homepage: https://www.recompile.se/mandos

19

Rules-Requires-Root: binary-targets

20

21

Package: mandos

22

Architecture: all

23

Depends: ${misc:Depends}, python3 (>= 3),

24

libgnutls30t64 | libgnutls30 (>= 3.3.0),

25

libgnutls30t64 | libgnutls30 (>= 3.6.6) | libgnutls30 (<< 3.6.0),

26

python3-dbus, python3-gi, avahi-daemon, adduser,

27

python3-urwid, gnupg, systemd-sysv | lsb-base (>= 3.0-6),

28

debconf (>= 1.5.5) | debconf-2.0

29

Recommends: ssh-client | fping

30

Suggests: python3 (>= 3.3) | libc6-dev | libc-dev | python (<= 2.6),

31

python3 (>= 3.3) | c-compiler | python (<= 2.6)

32

Description: server giving encrypted passwords to Mandos clients

33

This is the server part of the Mandos system, which allows

34

computers to have encrypted root file systems and at the

35

same time be capable of remote and/or unattended reboots.

36

.

37

The computers run a small client program in the initial RAM

38

disk environment which will communicate with a server over a

39

network. All network communication is encrypted using TLS.

40

The clients are identified by the server using a TLS public

41

key; each client has one unique to it. The server sends the

42

clients an encrypted password. The encrypted password is

43

decrypted by the clients using an OpenPGP key, and the

44

password is then used to unlock the root file system,

45

whereupon the computers can continue booting normally.

46

47

Package: mandos-client

48

Architecture: linux-any

49

Depends: ${shlibs:Depends}, ${misc:Depends}, adduser,

50

cryptsetup (<< 2:2.0.3-1) | cryptsetup-initramfs,

51

initramfs-tools (>= 0.99) | dracut (>= 044+241-3),

52

dpkg-dev (>=1.16.0),

53

gnutls-bin (>= 3.6.6) | libgnutls30 (<< 3.6.0),

54

debconf (>= 1.5.5) | debconf-2.0

55

Recommends: ssh

56

Breaks: dropbear (<= 0.53.1-1)

57

Enhances: cryptsetup

58

Conflicts: dracut-config-generic

59

Description: do unattended reboots with an encrypted root file system

60

This is the client part of the Mandos system, which allows

61

computers to have encrypted root file systems and at the

62

same time be capable of remote and/or unattended reboots.

63

.

64

The computers run a small client program in the initial RAM

65

disk environment which will communicate with a server over a

66

network. All network communication is encrypted using TLS.

67

The clients are identified by the server using a TLS public

68

key; each client has one unique to it. The server sends the

69

clients an encrypted password. The encrypted password is

70

decrypted by the clients using an OpenPGP key, and the

71

password is then used to unlock the root file system,

72

whereupon the computers can continue booting normally.

Older »