/mandos/trunk

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to debian/control

Committer: Teddy Hogeborn
Date: 2019-02-10 08:41:14 UTC
Revision ID: teddy@recompile.se-20190210084114-u91mijrxtifvzra5

Bug fix: Only create TLS key with certtool, and read correct key file

* debian/mandos-client.postinst (create_keys): Remove any bad keys
                                               created by 1.8.0-1.
                                               Only create TLS keys if
                                               certtool succeeds.
* debian/mandos.postinst (configure): Remove any bad keys from
                                      clients.conf, and inform the
                                      user if any were found.
* debian/mandos.templates (mandos/removed_bad_key_ids): New message.
* mandos (MandosServer.handle_ipc): Do not trust a key_id with a known
                                    bad key ID.
* mandos-keygen (keygen): Only create TLS keys if certtool succeeds.
  (password): Bug fix: Generate key_id correctly, and only output
              key_id if TLS key exists.

files removed:
debian/mandos.maintscript

debian/po/POTFILES.in

debian/po/de.po

debian/po/en_US.po

debian/po/es.po

debian/po/fr.po

debian/po/nl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/sv.po

debian/po/templates.pot

debian/source/lintian-overrides

debian/tests

debian/tests/control

debian/upstream/metadata

dracut-module

dracut-module/ask-password-mandos.path

dracut-module/ask-password-mandos.service

dracut-module/cmdline-mandos.sh

dracut-module/module-setup.sh

dracut-module/password-agent.c

dracut-module/password-agent.xml

initramfs-tools-conf-hook

sysusers.d-mandos.conf

files modified:
.bzrignore

DBUS-API

INSTALL

Makefile

NEWS

TODO

clients.conf

common.ent

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.dirs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.templates

debian/rules

debian/watch

initramfs-tools-hook

initramfs-tools-script

initramfs-unpack

intro.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-options.xml

mandos-to-cryptroot-unlock

mandos.conf.xml

mandos.lsm

mandos.service

mandos.xml

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

6

6

Björn Påhlsson <belorn@recompile.se>

7

7

Build-Depends: debhelper (>= 10), docbook-xml, docbook-xsl,

8

8

libavahi-core-dev, libgpgme-dev | libgpgme11-dev,

9

libglib2.0-dev (>=2.40), libgnutls28-dev (>= 3.3.0),

10

libgnutls28-dev (>= 3.6.6) | libgnutls28-dev (<< 3.6.0),

11

xsltproc, pkgconf | pkg-config, libnl-route-3-dev,

12

systemd-dev | systemd (<< 256~rc2-1)

13

Build-Depends-Indep: python3 (>= 3), python3-dbus, python3-gi,

14

po-debconf

15

Standards-Version: 4.7.0

9

libgnutls28-dev (>= 3.3.0) | gnutls-dev (>= 3.3.0),

10

libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0)

11

| libgnutls30 (>= 3.6.6),

12

xsltproc, pkg-config, libnl-route-3-dev

13

Build-Depends-Indep: systemd, python (>= 2.7), python (<< 3),

14

python-dbus, python-gi

15

Standards-Version: 4.3.0

16

16

Vcs-Bzr: https://ftp.recompile.se/pub/mandos/trunk

17

17

Vcs-Browser: https://bzr.recompile.se/loggerhead/mandos/trunk/files

18

18

Homepage: https://www.recompile.se/mandos

20

20

21

21

Package: mandos

22

22

Architecture: all

23

Depends: ${misc:Depends}, python3 (>= 3),

24

libgnutls30t64 | libgnutls30 (>= 3.3.0),

25

libgnutls30t64 | libgnutls30 (>= 3.6.6) | libgnutls30 (<< 3.6.0),

26

python3-dbus, python3-gi, avahi-daemon, adduser,

27

python3-urwid, gnupg, systemd-sysv | lsb-base (>= 3.0-6),

23

Depends: ${misc:Depends}, python (>= 2.7), python (<< 3),

24

libgnutls28-dev (>= 3.3.0) | libgnutls30 (>= 3.3.0),

25

libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0)

26

| libgnutls30 (>= 3.6.6),

27

python-dbus, python-gi, avahi-daemon, adduser, python-urwid,

28

gnupg2 | gnupg, systemd-sysv | lsb-base (>= 3.0-6),

28

29

debconf (>= 1.5.5) | debconf-2.0

29

30

Recommends: ssh-client | fping

30

Suggests: python3 (>= 3.3) | libc6-dev | libc-dev | python (<= 2.6),

31

python3 (>= 3.3) | c-compiler | python (<= 2.6)

32

31

Description: server giving encrypted passwords to Mandos clients

33

32

This is the server part of the Mandos system, which allows

34

33

computers to have encrypted root file systems and at the

48

47

Architecture: linux-any

49

48

Depends: ${shlibs:Depends}, ${misc:Depends}, adduser,

50

49

cryptsetup (<< 2:2.0.3-1) | cryptsetup-initramfs,

51

initramfs-tools (>= 0.99) | dracut (>= 044+241-3),

52

dpkg-dev (>=1.16.0),

53

gnutls-bin (>= 3.6.6) | libgnutls30 (<< 3.6.0),

50

initramfs-tools (>= 0.99), dpkg-dev (>=1.16.0),

51

gnutls-bin (>= 3.6.6) | openssl (>= 1.1.0),

54

52

debconf (>= 1.5.5) | debconf-2.0

55

53

Recommends: ssh

56

54

Breaks: dropbear (<= 0.53.1-1)

57

55

Enhances: cryptsetup

58

Conflicts: dracut-config-generic

59

56

Description: do unattended reboots with an encrypted root file system

60

57

This is the client part of the Mandos system, which allows

61

58

computers to have encrypted root file systems and at the

Older »