Package: cryptsetup / 2:2.1.0-5+deb10u2
Metadata
Package | Version | Patches format |
---|---|---|
cryptsetup | 2:2.1.0-5+deb10u2 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
Fix getting default LUKS2 keyslot encryption paramet.patch | (download) |
lib/setup.c |
3 2 + 1 - 0 ! |
fix getting default luks2 keyslot encryption parameters. When information about original keyslot size is missing (no active keyslot assigned to default segment) we have to fallback to default luks2 encryption parameters even though we know default segment cipher and mode. Fixes: #442. |
Mention limitation of crypt_get_volume_key_size.patch | (download) |
lib/libcryptsetup.h |
2 2 + 0 - 0 ! |
mention limitation of crypt_get_volume_key_size(). |
Fix volume key file if no LUKS2 keyslots are present.patch | (download) |
src/cryptsetup.c |
18 16 + 2 - 0 ! |
fix volume key file if no luks2 keyslots are present. If all keyslots are removed, LUKS2 has no longer information about the volume key size (there is only key digest present). If user wants to open or add new keyslot, it must get information about key size externally. We do not want to guess key size from the file size (it does not work for block devices for example), so require explicit --keyfil option in these cases. Fixes #470. |
Fix mapped segments overflow on 32bit architectures.patch | (download) |
lib/libdevmapper.c |
12 6 + 6 - 0 ! |
fix mapped segments overflow on 32bit architectures. All set_segment functions must use uin64_t everywhere, not size_t that is platform dependent. The code later uses it correctly, it is just wrong function prototype definitions. Reported in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=935702 (TODO: add a test for other segment types.) |