Commit - rpms/cryptsetup - 82b9cf05943f2f62d5a2cbf09a6f2a3ed4e3609a

@@ -1,5 +0,0 @@
-The master branch has no content
-Look at the c7 branch if you are working with CentOS-7, or the c4/c5/c6 branch for CentOS-4, 5 or 6
-If you find this file in a distro specific branch, it means that no content has been checked in yet

SOURCES/cryptsetup-1.7.5-fix-luksformat-in-fips-mode.patch

file added

+35

SOURCES/cryptsetup-1.7.5-fix-luksformat-in-fips-mode.patch ADDED

@@ -0,0 +1,35 @@
+From 3c2135b36bbc52d052e4ced7c94dc4981eb07a53 Mon Sep 17 00:00:00 2001
+From: Milan Broz <gmazyland@gmail.com>
+Date: Fri, 21 Apr 2017 08:16:14 +0200
+Subject: [PATCH] Fix luksFormat if running in FIPS mode on recent kernel.
+            +
+Recently introduced check for weak keys for XTS mode makes
+zeroed key for algorithm check unusable.
+            +
+Use random key for the test instead.
+---
+ lib/luks1/keymanage.c | 8 +++++---
+ 1 file changed, 5 insertions(+), 3 deletions(-)
+            +
+diff --git a/lib/luks1/keymanage.c b/lib/luks1/keymanage.c
+index b700bab..5b1421b 100644
+--- a/lib/luks1/keymanage.c
++++ b/lib/luks1/keymanage.c
+@@ -631,9 +631,11 @@ static int LUKS_check_cipher(struct luks_phdr *hdr, struct crypt_device *ctx)
+     if (!empty_key)
+         return -ENOMEM;
+-    r = LUKS_decrypt_from_storage(buf, sizeof(buf),
+-                      hdr->cipherName, hdr->cipherMode,
+-                      empty_key, 0, ctx);
++    /* No need to get KEY quality random but it must avoid known weak keys. */
++    r = crypt_random_get(ctx, empty_key->key, empty_key->keylength, CRYPT_RND_NORMAL);
++    if (!r)
++        r = LUKS_decrypt_from_storage(buf, sizeof(buf), hdr->cipherName,
++                          hdr->cipherMode, empty_key, 0, ctx);
+     crypt_free_volume_key(empty_key);
+     crypt_memzero(buf, sizeof(buf));
+--
+2.7.4
+            +

SOURCES/cryptsetup-1.7.5-fix-unaligned-access-to-hidden-truecrypt.patch

file added

+376

SOURCES/cryptsetup-1.7.5-fix-unaligned-access-to-hidden-truecrypt.patch ADDED

@@ -0,0 +1,376 @@
+From a117f431179a2747f2b1d5293f43d9e198f1bac9 Mon Sep 17 00:00:00 2001
+From: Ondrej Kozina <okozina@redhat.com>
+Date: Mon, 30 Nov 2015 16:44:15 +0100
+Subject: [PATCH] Fix access to unaligned hidden TrueCrypt header.
+            +
+backport all changes needed to fix unaligned access
+to hidden TrueCrypt hedaer.
+---
+ lib/internal.h        |   7 ++-
+ lib/luks1/keymanage.c |   6 +-
+ lib/tcrypt/tcrypt.c   |  24 ++++----
+ lib/utils.c           | 155 +++++++++++++++++++++++++++++++++++++++++++-------
+ 4 files changed, 152 insertions(+), 40 deletions(-)
+            +
+diff --git a/lib/internal.h b/lib/internal.h
+index 382a600..f1525f2 100644
+--- a/lib/internal.h
++++ b/lib/internal.h
+@@ -101,9 +101,12 @@ char *crypt_get_partition_device(const char *dev_path, uint64_t offset, uint64_t
+ char *crypt_get_base_device(const char *dev_path);
+ uint64_t crypt_dev_partition_offset(const char *dev_path);
++ssize_t write_buffer(int fd, const void *buf, size_t count);
++ssize_t read_buffer(int fd, void *buf, size_t count);
+ ssize_t write_blockwise(int fd, int bsize, void *buf, size_t count);
+-ssize_t read_blockwise(int fd, int bsize, void *_buf, size_t count);
+-ssize_t write_lseek_blockwise(int fd, int bsize, char *buf, size_t count, off_t offset);
++ssize_t read_blockwise(int fd, int bsize, void *buf, size_t count);
++ssize_t write_lseek_blockwise(int fd, int bsize, void *buf, size_t count, off_t offset);
++ssize_t read_lseek_blockwise(int fd, int bsize, void *buf, size_t count, off_t offset);
+ unsigned crypt_getpagesize(void);
+ int init_crypto(struct crypt_device *ctx);
+diff --git a/lib/luks1/keymanage.c b/lib/luks1/keymanage.c
+index 23e3fe2..b193ee9 100644
+--- a/lib/luks1/keymanage.c
++++ b/lib/luks1/keymanage.c
+@@ -201,7 +201,7 @@ int LUKS_hdr_backup(const char *backup_file, struct crypt_device *ctx)
+         r = -EINVAL;
+         goto out;
+     }
+-    if (write(devfd, buffer, buffer_size) < buffer_size) {
++    if (write_buffer(devfd, buffer, buffer_size) < buffer_size) {
+         log_err(ctx, _("Cannot write header backup file %s.\n"), backup_file);
+         r = -EIO;
+         goto out;
+@@ -253,7 +253,7 @@ int LUKS_hdr_restore(
+         goto out;
+     }
+-    if (read(devfd, buffer, buffer_size) < buffer_size) {
++    if (read_buffer(devfd, buffer, buffer_size) < buffer_size) {
+         log_err(ctx, _("Cannot read header backup file %s.\n"), backup_file);
+         r = -EIO;
+         goto out;
+@@ -498,7 +498,7 @@ int LUKS_read_phdr_backup(const char *backup_file,
+         return -ENOENT;
+     }
+-    if (read(devfd, hdr, hdr_size) < hdr_size)
++    if (read_buffer(devfd, hdr, hdr_size) < hdr_size)
+         r = -EIO;
+     else {
+         LUKS_fix_header_compatible(hdr);
+diff --git a/lib/tcrypt/tcrypt.c b/lib/tcrypt/tcrypt.c
+index 45154ed..9ff7157 100644
+--- a/lib/tcrypt/tcrypt.c
++++ b/lib/tcrypt/tcrypt.c
+@@ -469,8 +469,7 @@ static int TCRYPT_pool_keyfile(struct crypt_device *cd,
+         return -EIO;
+     }
+-    /* FIXME: add while */
+-    data_size = read(fd, data, TCRYPT_KEYFILE_LEN);
++    data_size = read_buffer(fd, data, TCRYPT_KEYFILE_LEN);
+     close(fd);
+     if (data_size < 0) {
+         log_err(cd, _("Error reading keyfile %s.\n"), keyfile);
+@@ -628,27 +627,26 @@ int TCRYPT_read_phdr(struct crypt_device *cd,
+     r = -EIO;
+     if (params->flags & CRYPT_TCRYPT_SYSTEM_HEADER) {
+-        if (lseek(devfd, TCRYPT_HDR_SYSTEM_OFFSET, SEEK_SET) >= 0 &&
+-            read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size) {
++        if (read_lseek_blockwise(devfd, bs, hdr, hdr_size,
++            TCRYPT_HDR_SYSTEM_OFFSET) == hdr_size) {
+             r = TCRYPT_init_hdr(cd, hdr, params);
+         }
+     } else if (params->flags & CRYPT_TCRYPT_HIDDEN_HEADER) {
+         if (params->flags & CRYPT_TCRYPT_BACKUP_HEADER) {
+-            if (lseek(devfd, TCRYPT_HDR_HIDDEN_OFFSET_BCK, SEEK_END) >= 0 &&
+-                read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size)
++            if (read_lseek_blockwise(devfd, bs, hdr, hdr_size,
++                TCRYPT_HDR_HIDDEN_OFFSET_BCK) == hdr_size)
+                 r = TCRYPT_init_hdr(cd, hdr, params);
+         } else {
+-            if (lseek(devfd, TCRYPT_HDR_HIDDEN_OFFSET, SEEK_SET) >= 0 &&
+-                read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size)
++            if (read_lseek_blockwise(devfd, bs, hdr, hdr_size,
++                TCRYPT_HDR_HIDDEN_OFFSET) == hdr_size)
+                 r = TCRYPT_init_hdr(cd, hdr, params);
+-            if (r &&
+-                lseek(devfd, TCRYPT_HDR_HIDDEN_OFFSET_OLD, SEEK_END) >= 0 &&
+-                read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size)
++            if (r && read_lseek_blockwise(devfd, bs, hdr, hdr_size,
++                TCRYPT_HDR_HIDDEN_OFFSET_OLD) == hdr_size)
+                 r = TCRYPT_init_hdr(cd, hdr, params);
+         }
+     } else if (params->flags & CRYPT_TCRYPT_BACKUP_HEADER) {
+-        if (lseek(devfd, TCRYPT_HDR_OFFSET_BCK, SEEK_END) >= 0 &&
+-                read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size)
++        if (read_lseek_blockwise(devfd, bs, hdr, hdr_size,
++            TCRYPT_HDR_OFFSET_BCK) == hdr_size)
+             r = TCRYPT_init_hdr(cd, hdr, params);
+     } else if (read_blockwise(devfd, bs, hdr, hdr_size) == hdr_size)
+         r = TCRYPT_init_hdr(cd, hdr, params);
+diff --git a/lib/utils.c b/lib/utils.c
+index 2dcf753..802ba55 100644
+--- a/lib/utils.c
++++ b/lib/utils.c
+@@ -56,22 +56,70 @@ static void *aligned_malloc(void **base, int size, int alignment)
+ /* Credits go to Michal's padlock patches for this alignment code */
+     char *ptr;
+-    ptr  = malloc(size + alignment);
+-    if(ptr == NULL) return NULL;
++    ptr = malloc(size + alignment);
++    if (!ptr)
++        return NULL;
+     *base = ptr;
+-    if(alignment > 1 && ((long)ptr & (alignment - 1))) {
++    if (alignment > 1 && ((long)ptr & (alignment - 1)))
+         ptr += alignment - ((long)(ptr) & (alignment - 1));
+-    }
++
+     return ptr;
+ #endif
+ }
++ssize_t read_buffer(int fd, void *buf, size_t count)
++{
++    size_t read_size = 0;
++    ssize_t r;
++
++    if (fd < 0 || !buf)
++        return -EINVAL;
++
++    do {
++        r = read(fd, buf, count - read_size);
++        if (r == -1 && errno != EINTR)
++            return r;
++        if (r == 0)
++            return (ssize_t)read_size;
++        if (r > 0) {
++            read_size += (size_t)r;
++            buf = (uint8_t*)buf + r;
++        }
++    } while (read_size != count);
++
++    return (ssize_t)count;
++}
++
++ssize_t write_buffer(int fd, const void *buf, size_t count)
++{
++    size_t write_size = 0;
++    ssize_t w;
++
++    if (fd < 0 || !buf || !count)
++        return -EINVAL;
++
++    do {
++        w = write(fd, buf, count - write_size);
++        if (w < 0 && errno != EINTR)
++            return w;
++        if (w == 0)
++            return (ssize_t)write_size;
++        if (w > 0) {
++            write_size += (size_t) w;
++            buf = (const uint8_t*)buf + w;
++        }
++    } while (write_size != count);
++
++    return (ssize_t)write_size;
++}
++
+ ssize_t write_blockwise(int fd, int bsize, void *orig_buf, size_t count)
+ {
+     void *hangover_buf, *hangover_buf_base = NULL;
+     void *buf, *buf_base = NULL;
+-    int r, hangover, solid, alignment;
++    int r, alignment;
++    size_t hangover, solid;
+     ssize_t ret = -1;
+     if (fd == -1 || !orig_buf || bsize <= 0)
+@@ -89,17 +137,19 @@ ssize_t write_blockwise(int fd, int bsize, void *orig_buf, size_t count)
+     } else
+         buf = orig_buf;
+-    r = write(fd, buf, solid);
+-    if (r < 0 || r != solid)
+-        goto out;
++    if (solid) {
++        r = write_buffer(fd, buf, solid);
++        if (r < 0 || r != (ssize_t)solid)
++            goto out;
++    }
+     if (hangover) {
+         hangover_buf = aligned_malloc(&hangover_buf_base, bsize, alignment);
+         if (!hangover_buf)
+             goto out;
+-        r = read(fd, hangover_buf, bsize);
+-        if (r < 0 || r < hangover)
++        r = read_buffer(fd, hangover_buf, bsize);
++        if (r < 0 || r < (ssize_t)hangover)
+             goto out;
+         if (r < bsize)
+@@ -110,8 +160,8 @@ ssize_t write_blockwise(int fd, int bsize, void *orig_buf, size_t count)
+         memcpy(hangover_buf, (char*)buf + solid, hangover);
+-        r = write(fd, hangover_buf, bsize);
+-        if (r < 0 || r < hangover)
++        r = write_buffer(fd, hangover_buf, bsize);
++        if (r < 0 || r < (ssize_t)hangover)
+             goto out;
+     }
+     ret = count;
+@@ -122,10 +172,12 @@ out:
+     return ret;
+ }
+-ssize_t read_blockwise(int fd, int bsize, void *orig_buf, size_t count) {
++ssize_t read_blockwise(int fd, int bsize, void *orig_buf, size_t count)
++{
+     void *hangover_buf, *hangover_buf_base = NULL;
+     void *buf, *buf_base = NULL;
+-    int r, hangover, solid, alignment;
++    int r, alignment;
++    size_t hangover, solid;
+     ssize_t ret = -1;
+     if (fd == -1 || !orig_buf || bsize <= 0)
+@@ -142,16 +194,16 @@ ssize_t read_blockwise(int fd, int bsize, void *orig_buf, size_t count) {
+     } else
+         buf = orig_buf;
+-    r = read(fd, buf, solid);
+-    if(r < 0 || r != solid)
++    r = read_buffer(fd, buf, solid);
++    if (r < 0 || r != (ssize_t)solid)
+         goto out;
+     if (hangover) {
+         hangover_buf = aligned_malloc(&hangover_buf_base, bsize, alignment);
+         if (!hangover_buf)
+             goto out;
+-        r = read(fd, hangover_buf, bsize);
+-        if (r <  0 || r < hangover)
++        r = read_buffer(fd, hangover_buf, bsize);
++        if (r <  0 || r < (ssize_t)hangover)
+             goto out;
+         memcpy((char *)buf + solid, hangover_buf, hangover);
+@@ -172,7 +224,8 @@ out:
+  * is implicitly included in the read/write offset, which can not be set to non-aligned
+  * boundaries. Hence, we combine llseek with write.
+  */
+-ssize_t write_lseek_blockwise(int fd, int bsize, char *buf, size_t count, off_t offset) {
++ssize_t write_lseek_blockwise(int fd, int bsize, void *buf, size_t count, off_t offset)
++{
+     char *frontPadBuf;
+     void *frontPadBuf_base = NULL;
+     int r, frontHang;
+@@ -182,6 +235,12 @@ ssize_t write_lseek_blockwise(int fd, int bsize, char *buf, size_t count, off_t
+     if (fd == -1 || !buf || bsize <= 0)
+         return -1;
++    if (offset < 0)
++        offset = lseek(fd, offset, SEEK_END);
++
++    if (offset < 0)
++        return -1;
++
+     frontHang = offset % bsize;
+     if (lseek(fd, offset - frontHang, SEEK_SET) < 0)
+@@ -193,7 +252,7 @@ ssize_t write_lseek_blockwise(int fd, int bsize, char *buf, size_t count, off_t
+         if (!frontPadBuf)
+             goto out;
+-        r = read(fd, frontPadBuf, bsize);
++        r = read_buffer(fd, frontPadBuf, bsize);
+         if (r < 0 || r != bsize)
+             goto out;
+@@ -206,11 +265,11 @@ ssize_t write_lseek_blockwise(int fd, int bsize, char *buf, size_t count, off_t
+         if (lseek(fd, offset - frontHang, SEEK_SET) < 0)
+             goto out;
+-        r = write(fd, frontPadBuf, bsize);
++        r = write_buffer(fd, frontPadBuf, bsize);
+         if (r < 0 || r != bsize)
+             goto out;
+-        buf += innerCount;
++        buf = (char*)buf + innerCount;
+         count -= innerCount;
+     }
+@@ -223,6 +282,58 @@ out:
+     return ret;
+ }
++ssize_t read_lseek_blockwise(int fd, int bsize, void *buf, size_t count, off_t offset)
++{
++    char *frontPadBuf;
++    void *frontPadBuf_base = NULL;
++    int r, frontHang;
++    size_t innerCount = 0;
++    ssize_t ret = -1;
++
++    if (fd == -1 || !buf || bsize <= 0)
++        return -1;
++
++    if (offset < 0)
++        offset = lseek(fd, offset, SEEK_END);
++
++    if (offset < 0)
++        return -1;
++
++    frontHang = offset % bsize;
++
++    if (lseek(fd, offset - frontHang, SEEK_SET) < 0)
++        return ret;
++
++    if (frontHang) {
++        frontPadBuf = aligned_malloc(&frontPadBuf_base,
++                         bsize, get_alignment(fd));
++
++        if (!frontPadBuf)
++            return ret;
++
++        r = read_buffer(fd, frontPadBuf, bsize);
++        if (r < 0 || r != bsize)
++            goto out;
++
++        innerCount = bsize - frontHang;
++        if (innerCount > count)
++            innerCount = count;
++
++        memcpy(buf, frontPadBuf + frontHang, innerCount);
++
++        buf = (char*)buf + innerCount;
++        count -= innerCount;
++    }
++
++    ret = read_blockwise(fd, bsize, buf, count);
++    if (ret >= 0)
++        ret += innerCount;
++out:
++    free(frontPadBuf_base);
++
++    return ret;
++}
++
+ /* MEMLOCK */
+ #define DEFAULT_PROCESS_PRIORITY -18
+--
+2.7.4
+            +

SOURCES/cryptsetup-1.7.6-fix-blockwise-access-functions-for-64k-page-size.patch

file added

+50

SOURCES/cryptsetup-1.7.6-fix-blockwise-access-functions-for-64k-page-size.patch ADDED

@@ -0,0 +1,50 @@
+diff -rupN cryptsetup-1.7.4.bcp/lib/utils.c cryptsetup-1.7.4/lib/utils.c
+--- cryptsetup-1.7.4.bcp/lib/utils.c    2017-10-18 11:39:01.694902755 +0200
++++ cryptsetup-1.7.4/lib/utils.c    2017-10-18 11:48:16.584868357 +0200
+@@ -252,21 +252,21 @@ ssize_t write_lseek_blockwise(int fd, in
+         if (!frontPadBuf)
+             goto out;
+-        r = read_buffer(fd, frontPadBuf, bsize);
+-        if (r < 0 || r != bsize)
+-            goto out;
+-
+         innerCount = bsize - frontHang;
+         if (innerCount > count)
+             innerCount = count;
++        r = read_buffer(fd, frontPadBuf, bsize);
++        if (r < (frontHang + innerCount))
++            goto out;
++
+         memcpy(frontPadBuf + frontHang, buf, innerCount);
+         if (lseek(fd, offset - frontHang, SEEK_SET) < 0)
+             goto out;
+-        r = write_buffer(fd, frontPadBuf, bsize);
+-        if (r < 0 || r != bsize)
++        r = write_buffer(fd, frontPadBuf, frontHang + innerCount);
++        if (r != (frontHang + innerCount))
+             goto out;
+         buf = (char*)buf + innerCount;
+@@ -311,14 +311,14 @@ ssize_t read_lseek_blockwise(int fd, int
+         if (!frontPadBuf)
+             return ret;
+-        r = read_buffer(fd, frontPadBuf, bsize);
+-        if (r < 0 || r != bsize)
+-            goto out;
+-
+         innerCount = bsize - frontHang;
+         if (innerCount > count)
+             innerCount = count;
++        r = read_buffer(fd, frontPadBuf, bsize);
++        if (r < (frontHang + innerCount))
++            goto out;
++
+         memcpy(buf, frontPadBuf + frontHang, innerCount);
+         buf = (char*)buf + innerCount;

SOURCES/cryptsetup-avoid-rh-kernel-bug.patch

file added

+56

SOURCES/cryptsetup-avoid-rh-kernel-bug.patch ADDED

@@ -0,0 +1,56 @@
+--- a/lib/crypto_backend/crypto_cipher_kernel.c
++++ b/lib/crypto_backend/crypto_cipher_kernel.c
+@@ -31,6 +31,7 @@
+ #ifdef ENABLE_AF_ALG
+ #include <linux/if_alg.h>
++#include <sys/utsname.h>
+ #ifndef AF_ALG
+ #define AF_ALG 38
+@@ -88,6 +89,35 @@ int crypt_cipher_blocksize(const char *n
+     return ca ? ca->blocksize : -EINVAL;
+ }
++static size_t pagesize(size_t defsize)
++{
++    long r = sysconf(_SC_PAGESIZE);
++    return r < 0 ? defsize : (size_t)r;
++}
++
++static int check_rh_kernel_version(void)
++{
++    unsigned maj, mid, min, rel;
++    static struct utsname uts = {{ 0 }};
++    size_t ps = pagesize(32768);
++
++    if (ps < 32768)
++        return 0;
++
++    if (!*uts.release && uname(&uts) < 0)
++        return -ENOTSUP;
++    /*
++     * RH kernels 3.10.0-185 and lower are affected by a crypto API kernel
++     * socket bug. The bug only manifests on archs with page size >= 32 KiB.
++     *
++     * For reference, see rhbz#1136075
++     */
++    if (sscanf(uts.release, "%u.%u.%u-%u", &maj, &mid, &min, &rel) == 4)
++        return (maj == 3 && mid == 10 && min == 0 && rel < 186) ? -ENOTSUP : 0;
++
++    return -ENOTSUP;
++}
++
+ /*
+  * ciphers
+  *
+@@ -104,6 +134,9 @@ int crypt_cipher_init(struct crypt_ciphe
+         .salg_type = "skcipher",
+     };
++    if (check_rh_kernel_version())
++        return -ENOTSUP;
++
+     h = malloc(sizeof(*h));
+     if (!h)
+         return -ENOMEM;

SPECS/cryptsetup.spec

file added

+579

SPECS/cryptsetup.spec ADDED

@@ -0,0 +1,579 @@
+%{!?python_sitearch: %global python_sitearch %(%{__python} -c "from distutils.sysconfig import get_python_lib; print get_python_lib(1)")}
+            +
+%define python3_enable 0
+            +
+Summary: A utility for setting up encrypted disks
+Name: cryptsetup
+Version: 1.7.4
+Release: 3%{?dist}.1
+License: GPLv2+ and LGPLv2+
+Group: Applications/System
+URL: https://gitlab.com/cryptsetup/cryptsetup
+BuildRequires: libgcrypt-devel, popt-devel, device-mapper-devel
+BuildRequires: libgpg-error-devel, libuuid-devel, libsepol-devel
+BuildRequires: libselinux-devel, python-devel, libpwquality-devel
+%if %{python3_enable}
+BuildRequires: python3-devel
+%endif
+Provides: cryptsetup-luks = %{version}-%{release}
+Obsoletes: cryptsetup-luks < 1.4.0
+Requires: cryptsetup-libs%{?_isa} = %{version}-%{release}
+Requires: libpwquality >= 1.2.0
+            +
+%define dracutmodulesdir %{_prefix}/lib/dracut/modules.d
+%define upstream_version %{version}
+Source0: https://www.kernel.org/pub/linux/utils/cryptsetup/v1.6/cryptsetup-%{upstream_version}.tar.xz
+Patch0: %{name}-avoid-rh-kernel-bug.patch
+Patch1: %{name}-1.7.5-fix-unaligned-access-to-hidden-truecrypt.patch
+Patch2: %{name}-1.7.5-fix-luksformat-in-fips-mode.patch
+Patch3: %{name}-1.7.6-fix-blockwise-access-functions-for-64k-page-size.patch
+            +
+%if 0%{?fedora} >= 19 || 0%{?rhel} >= 7
+%define configure_cipher --enable-gcrypt-pbkdf2
+%else
+%define configure_cipher --with-luks1-cipher=aes --with-luks1-mode=cbc-essiv:sha256 --with-luks1-keybits=256
+%endif
+            +
+%description
+The cryptsetup package contains a utility for setting up
+disk encryption using dm-crypt kernel module.
+            +
+%package devel
+Group: Development/Libraries
+Requires: %{name} = %{version}-%{release}
+Requires: libgcrypt-devel > 1.1.42, device-mapper-devel, libuuid-devel
+Requires: pkgconfig
+Summary: Headers and libraries for using encrypted file systems
+Provides: cryptsetup-luks-devel = %{version}-%{release}
+Obsoletes: cryptsetup-luks-devel < 1.4.0
+            +
+%description devel
+The cryptsetup-devel package contains libraries and header files
+used for writing code that makes use of disk encryption.
+            +
+%package libs
+Group: System Environment/Libraries
+Summary: Cryptsetup shared library
+Provides: cryptsetup-luks-libs = %{version}-%{release}
+Obsoletes: cryptsetup-luks-libs < 1.4.0
+Obsoletes: cryptsetup-reencrypt-libs < 1.6.5
+# Need support for empty password in gcrypt PBKDF2
+%if 0%{?fedora} >= 19 || 0%{?rhel} >= 7
+Requires: libgcrypt >= 1.5.3-3
+%endif
+            +
+%description libs
+This package contains the cryptsetup shared library, libcryptsetup.
+            +
+%package -n veritysetup
+Group: Applications/System
+Summary: A utility for setting up dm-verity volumes
+Requires: cryptsetup-libs = %{version}-%{release}
+            +
+%description -n veritysetup
+The veritysetup package contains a utility for setting up
+disk verification using dm-verity kernel module.
+            +
+%package reencrypt
+Group: Applications/System
+Summary: A utility for offline reencryption of LUKS encrypted disks.
+Provides: cryptsetup-reencrypt = %{version}-%{release}
+Obsoletes: cryptsetup-reencrypt < 1.6.5
+Requires: cryptsetup-libs = %{version}-%{release}
+            +
+%description reencrypt
+This package contains cryptsetup-reencrypt utility which
+can be used for offline reencryption of disk in situ.
+Also includes dracut module required to perform reencryption
+of device containing a root filesystem.
+            +
+%package python
+Group: System Environment/Libraries
+Summary: Python bindings for libcryptsetup
+Requires: %{name}-libs = %{version}-%{release}
+Provides: python-cryptsetup = %{version}-%{release}
+Obsoletes: python-cryptsetup < 1.4.0
+            +
+%description python
+This package provides Python bindings for libcryptsetup, a library
+for setting up disk encryption using dm-crypt kernel module.
+            +
+%if %{python3_enable}
+%package python3
+Group: System Environment/Libraries
+Summary: Python3 bindings for libcryptsetup
+Requires: %{name}-libs = %{version}-%{release}
+Provides: python3-cryptsetup = %{version}-%{release}
+            +
+%description python3
+This package provides Python bindings for libcryptsetup, a library
+for setting up disk encryption using dm-crypt kernel module.
+%endif
+            +
+%prep
+%setup -q -n cryptsetup-%{upstream_version}
+%patch0 -p1
+%patch1 -p1
+%patch2 -p1
+%patch3 -p1
+chmod -x python/pycryptsetup-test.py
+            +
+%if %{python3_enable}
+# copy the whole directory for the python3 build
+cp -a . %{py3dir}
+%endif
+            +
+%build
+%configure --enable-python --enable-fips --enable-cryptsetup-reencrypt --enable-pwquality %{?configure_cipher}
+# remove rpath
+sed -i 's|^hardcode_libdir_flag_spec=.*|hardcode_libdir_flag_spec=""|g' libtool
+sed -i 's|^runpath_var=LD_RUN_PATH|runpath_var=DIE_RPATH_DIE|g' libtool
+make %{?_smp_mflags}
+            +
+%if %{python3_enable}
+pushd %{py3dir}
+%configure --enable-python --with-python_version=3
+make %{?_smp_mflags}
+popd
+%endif
+            +
+%install
+make install DESTDIR=%{buildroot}
+rm -rf %{buildroot}/%{_libdir}/*.la
+            +
+%if %{python3_enable}
+pushd %{py3dir}
+make install DESTDIR=%{buildroot}
+rm -rf %{buildroot}/%{_libdir}/*.la
+popd
+%endif
+            +
+%find_lang cryptsetup
+            +
+install -d -m755 %{buildroot}/%{dracutmodulesdir}/90reencrypt
+install -m755 misc/dracut_90reencrypt/module-setup.sh %{buildroot}/%{dracutmodulesdir}/90reencrypt
+install -m755 misc/dracut_90reencrypt/parse-reencrypt.sh %{buildroot}/%{dracutmodulesdir}/90reencrypt
+install -m755 misc/dracut_90reencrypt/reencrypt.sh %{buildroot}/%{dracutmodulesdir}/90reencrypt
+            +
+%post -n cryptsetup-libs -p /sbin/ldconfig
+            +
+%postun -n cryptsetup-libs -p /sbin/ldconfig
+            +
+%files
+%{!?_licensedir:%global license %%doc}
+%license COPYING
+%doc AUTHORS FAQ docs/*ReleaseNotes
+%{_mandir}/man8/cryptsetup.8.gz
+%{_sbindir}/cryptsetup
+            +
+%files -n veritysetup
+%{!?_licensedir:%global license %%doc}
+%license COPYING
+%{_mandir}/man8/veritysetup.8.gz
+%{_sbindir}/veritysetup
+            +
+%files reencrypt
+%{!?_licensedir:%global license %%doc}
+%license COPYING
+%doc misc/dracut_90reencrypt/README
+%{_mandir}/man8/cryptsetup-reencrypt.8.gz
+%{_sbindir}/cryptsetup-reencrypt
+%{dracutmodulesdir}/90reencrypt
+%{dracutmodulesdir}/90reencrypt/*
+            +
+%files devel
+%doc docs/examples/*
+%{_includedir}/libcryptsetup.h
+%{_libdir}/libcryptsetup.so
+%{_libdir}/pkgconfig/libcryptsetup.pc
+            +
+%files libs -f cryptsetup.lang
+%{!?_licensedir:%global license %%doc}
+%license COPYING COPYING.LGPL
+%{_libdir}/libcryptsetup.so.*
+            +
+%files python
+%{!?_licensedir:%global license %%doc}
+%license COPYING.LGPL
+%doc python/pycryptsetup-test.py
+%exclude %{python_sitearch}/pycryptsetup.la
+%{python_sitearch}/pycryptsetup.so
+            +
+%if %{python3_enable}
+%files python3
+%{!?_licensedir:%global license %%doc}
+%license COPYING.LGPL
+%doc python/pycryptsetup-test.py
+%exclude %{python3_sitearch}/pycryptsetup.la
+%{python3_sitearch}/pycryptsetup.so
+%endif
+            +
+%clean
+            +
+%changelog
+* Thu Nov 16 2017 Ondrej Kozina <okozina@redhat.com> - 1.7.4-3.el7_4.1
+- patch: fix regression in blockwise functions (archs with 64 KiB
+  page_size)
+- Resolves: #1510841
+            +
+* Tue Apr 25 2017 Ondrej Kozina <okozina@redhat.com> - 1.7.4-3
+- patch: fix luksFormat failure while running in FIPS mode.
+- Resolves: #1444137
+            +
+* Tue Apr 04 2017 Ondrej Kozina <okozina@redhat.com> - 1.7.4-2
+- patch: fix access to unaligned hidden TrueCrypt header.
+- Resolves: #1435543
+            +
+* Wed Mar 15 2017 Ondrej Kozina <okozina@redhat.com> - 1.7.4-1
+- Update to cryptsetup 1.7.4.
+- Resolves: #1381273
+            +
+* Tue Jun  7 2016 Ondrej Kozina <okozina@redhat.com> - 1.7.2-1
+- Update to cryptsetup 1.7.2.
+- Resolves: #1302022 #1070825
+            +
+* Thu Jun 18 2015 Ondrej Kozina <okozina@redhat.com> - 1.6.7-1
+- Update to cryptsetup 1.6.7.
+- patch: avoid use of kernel crypto API socket which is known
+  to be broken in RHEL7.0 kernel (7.1+ is fine).
+- Resolves: #1206170
+            +
+* Thu Dec 18 2014 Ondrej Kozina <okozina@redhat.com> - 1.6.6-3
+- drop FIPS power on self test and library checksum
+- Resolves: #1158897
+            +
+* Mon Sep 29 2014 Ondrej Kozina <okozina@redhat.com> - 1.6.6-2
+- patch: fix failures related to reencrypt log files
+- Resolves: #1140199
+            +
+* Mon Sep  8 2014 Ondrej Kozina <okozina@redhat.com> - 1.6.6-1
+- Update to cryptsetup 1.6.6.
+- Resolves: #1117372 #1038097
+            +
+* Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 1.6.3-2
+- Mass rebuild 2014-01-24
+            +
+* Mon Jan 6 2014 Ondrej Kozina <okozina@redhat.com> - 1.6.3-1
+- Update to cryptsetup 1.6.3.
+- various fixes related to block devices with 4KiB sectors
+- enable reencryption using specific keyslot (dracut module)
+- fix failure in reading last keyslot from external LUKS header
+- update FIPS POST to be complaint with actual requirements
+- fix hash limiting if parameter is not numeric
+- Resolves: #1028362 #1029032 #1029406 #1030288 #1034388 #1038097
+            +
+* Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 1.6.2-3
+- Mass rebuild 2013-12-27
+            +
+* Tue Nov 5 2013 Ondrej Kozina <okozina@redhat.com> - 1.6.2-2
+- 90reencrypt: Move conflict with 90crypt to install() section.
+- 90reencrypt: Drop to emergency_shell after successful reencryption.
+- Resolves: #1021593
+            +
+* Mon Oct 14 2013 Ondrej Kozina <okozina@redhat.com> - 1.6.2-1
+- Update to cryptsetup 1.6.2.
+- Add dracut module for cryptsetup-reencrypt (90reencrypt).
+- 90reencrypt: Rename dracut parameteres to be compliant with actual naming guidance.
+- 90reencrypt: Install and load loop kernel module.
+- 90reencrypt: Fix lock file name.
+- 90reencrypt: Add conflict with 90crypt dracut module (more info in #1010287)
+- Resolves: #1010278 #1010287
+            +
+* Sun Mar 31 2013 Milan Broz <gmazyland@gmail.com> - 1.6.1-1
+- Update to cryptsetup 1.6.1.
+- Install ReleaseNotes files instead of empty Changelog file.
+            +
+* Wed Feb 13 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.6.0-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
+            +
+* Mon Jan 14 2013 Milan Broz <mbroz@redhat.com> - 1.6.0-1
+- Update to cryptsetup 1.6.0.
+- Change default LUKS encryption mode to aes-xts-plain64 (AES128).
+- Force use of gcrypt PBKDF2 instead of internal implementation.
+            +
+* Sat Dec 29 2012 Milan Broz <mbroz@redhat.com> - 1.6.0-0.1
+- Update to cryptsetup 1.6.0-rc1.
+- Relax license to GPLv2+ according to new release.
+- Compile cryptsetup with libpwquality support.
+            +
+* Tue Oct 16 2012 Milan Broz <mbroz@redhat.com> - 1.5.1-1
+- Update to cryptsetup 1.5.1.
+            +
+* Wed Jul 18 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.5.0-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+            +
+* Tue Jul 10 2012 Milan Broz <mbroz@redhat.com> - 1.5.0-1
+- Update to cryptsetup 1.5.0.
+            +
+* Wed Jun 20 2012 Milan Broz <mbroz@redhat.com> - 1.5.0-0.2
+- Update to cryptsetup 1.5.0-rc2.
+- Add cryptsetup-reencrypt subpackage.
+            +
+* Mon Jun 11 2012 Milan Broz <mbroz@redhat.com> - 1.5.0-0.1
+- Update to cryptsetup 1.5.0-rc1.
+- Add veritysetup subpackage.
+- Move localization files to libs subpackage.
+            +
+* Thu May 31 2012 Milan Broz <mbroz@redhat.com> - 1.4.3-2
+- Build with fipscheck (verification in fips mode).
+- Clean up spec file, use install to /usr.
+            +
+* Thu May 31 2012 Milan Broz <mbroz@redhat.com> - 1.4.3-1
+- Update to cryptsetup 1.4.3.
+            +
+* Thu Apr 12 2012 Milan Broz <mbroz@redhat.com> - 1.4.2-1
+- Update to cryptsetup 1.4.2.
+            +
+* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.1-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
+            +
+* Wed Nov 09 2011 Milan Broz <mbroz@redhat.com> - 1.4.1-1
+- Update to cryptsetup 1.4.1.
+- Add Python cryptsetup bindings.
+- Obsolete separate python-cryptsetup package.
+            +
+* Wed Oct 26 2011 Milan Broz <mbroz@redhat.com> - 1.4.0-1
+- Update to cryptsetup 1.4.0.
+            +
+* Mon Oct 10 2011 Milan Broz <mbroz@redhat.com> - 1.4.0-0.1
+- Update to cryptsetup 1.4.0-rc1.
+- Rename package back from cryptsetup-luks to cryptsetup.
+            +
+* Wed Jun 22 2011 Milan Broz <mbroz@redhat.com> - 1.3.1-2
+- Fix return code for status command when device doesn't exist.
+            +
+* Tue May 24 2011 Milan Broz <mbroz@redhat.com> - 1.3.1-1
+- Update to cryptsetup 1.3.1.
+            +
+* Tue Apr 05 2011 Milan Broz <mbroz@redhat.com> - 1.3.0-1
+- Update to cryptsetup 1.3.0.
+            +
+* Tue Mar 22 2011 Milan Broz <mbroz@redhat.com> - 1.3.0-0.2
+- Update to cryptsetup 1.3.0-rc2
+            +
+* Mon Mar 14 2011 Milan Broz <mbroz@redhat.com> - 1.3.0-0.1
+- Update to cryptsetup 1.3.0-rc1
+            +
+* Tue Feb 08 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.0-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
+            +
+* Mon Dec 20 2010 Milan Broz <mbroz@redhat.com> - 1.2.0-1
+- Update to cryptsetup 1.2.0
+            +
+* Thu Nov 25 2010 Milan Broz <mbroz@redhat.com> - 1.2.0-0.2
+- Fix crypt_activate_by_keyfile() to work with PLAIN devices.
+            +
+* Tue Nov 16 2010 Milan Broz <mbroz@redhat.com> - 1.2.0-0.1
+- Add FAQ to documentation.
+- Update to cryptsetup 1.2.0-rc1
+            +
+* Sat Jul 03 2010 Milan Broz <mbroz@redhat.com> - 1.1.3-1
+- Update to cryptsetup 1.1.3
+            +
+* Mon Jun 07 2010 Milan Broz <mbroz@redhat.com> - 1.1.2-2
+- Fix alignment ioctl use.
+- Fix API activation calls to handle NULL device name.
+            +
+* Sun May 30 2010 Milan Broz <mbroz@redhat.com> - 1.1.2-1
+- Update to cryptsetup 1.1.2
+- Fix luksOpen handling of new line char on stdin.
+            +
+* Sun May 23 2010 Milan Broz <mbroz@redhat.com> - 1.1.1-1
+- Update to cryptsetup 1.1.1
+- Fix luksClose for stacked LUKS/LVM devices.
+            +
+* Mon May 03 2010 Milan Broz <mbroz@redhat.com> - 1.1.1-0.2
+- Update to cryptsetup 1.1.1-rc2.
+            +
+* Sat May 01 2010 Milan Broz <mbroz@redhat.com> - 1.1.1-0.1
+- Update to cryptsetup 1.1.1-rc1.
+            +
+* Sun Jan 17 2010 Milan Broz <mbroz@redhat.com> - 1.1.0-1
+- Update to cryptsetup 1.1.0.
+            +
+* Fri Jan 15 2010 Milan Broz <mbroz@redhat.com> - 1.1.0-0.6
+- Fix gcrypt initialisation.
+- Fix backward compatibility for hash algorithm (uppercase).
+            +
+* Wed Dec 30 2009 Milan Broz <mbroz@redhat.com> - 1.1.0-0.5
+- Update to cryptsetup 1.1.0-rc4
+            +
+* Mon Nov 16 2009 Milan Broz <mbroz@redhat.com> - 1.1.0-0.4
+- Update to cryptsetup 1.1.0-rc3
+            +
+* Thu Oct 01 2009 Milan Broz <mbroz@redhat.com> - 1.1.0-0.3
+- Update to cryptsetup 1.1.0-rc2
+- Fix libcryptsetup to properly export only versioned symbols.
+            +
+* Tue Sep 29 2009 Milan Broz <mbroz@redhat.com> - 1.1.0-0.2
+- Update to cryptsetup 1.1.0-rc1
+- Add luksHeaderBackup and luksHeaderRestore commands.
+            +
+* Fri Sep 11 2009 Milan Broz <mbroz@redhat.com> - 1.1.0-0.1
+- Update to new upstream testing version with new API interface.
+- Add luksSuspend and luksResume commands.
+- Introduce pkgconfig.
+            +
+* Fri Jul 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.7-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
+            +
+* Wed Jul 22 2009 Milan Broz <mbroz@redhat.com> - 1.0.7-1
+- Update to upstream final release.
+- Split libs subpackage.
+- Remove rpath setting from cryptsetup binary.
+            +
+* Wed Jul 15 2009 Till Maas <opensource@till.name> - 1.0.7-0.2
+- update BR because of libuuid splitout from e2fsprogs
+            +
+* Mon Jun 22 2009 Milan Broz <mbroz@redhat.com> - 1.0.7-0.1
+- Update to new upstream 1.0.7-rc1.
+            +
+- Wipe old fs headers to not confuse blkid (#468062)
+* Tue Feb 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.6-7
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
+            +
+* Thu Oct 30 2008 Milan Broz <mbroz@redhat.com> - 1.0.6-6
+- Wipe old fs headers to not confuse blkid (#468062)
+            +
+* Tue Sep 23 2008 Milan Broz <mbroz@redhat.com> - 1.0.6-5
+- Change new project home page.
+- Print more descriptive messages for initialization errors.
+- Refresh patches to versions commited upstream.
+            +
+* Sat Sep 06 2008 Milan Broz <mbroz@redhat.com> - 1.0.6-4
+- Fix close of zero decriptor.
+- Fix udevsettle delays - use temporary crypt device remapping.
+            +
+* Wed May 28 2008 Till Maas <opensource till name> - 1.0.6-3
+- remove a duplicate sentence from the manpage (RH #448705)
+- add patch metadata about upstream status
+            +
+* Tue Apr 15 2008 Bill Nottinghm <notting@redhat.com> - 1.0.6-2
+- Add the device to the luksOpen prompt (#433406)
+- Use iconv, not recode (#442574)
+            +
+* Thu Mar 13 2008 Till Maas <opensource till name> - 1.0.6-1
+- Update to latest version
+- remove patches that have been merged upstream
+            +
+* Mon Mar 03 2008 Till Maas <opensource till name> - 1.0.6-0.1.pre2
+- Update to new version with several bugfixes
+- remove patches that have been merged upstream
+- add patch from cryptsetup newsgroup
+- fix typo / missing luksRemoveKey in manpage (patch)
+            +
+* Tue Feb 19 2008 Fedora Release Engineering <rel-eng@fedoraproject.org> - 1.0.5-9
+- Autorebuild for GCC 4.3
+            +
+* Sat Jan 19 2008 Peter Jones <pjones@redhat.com> - 1.0.5-8
+- Rebuild for broken deps.
+            +
+* Thu Aug 30 2007 Till Maas <opensource till name> - 1.0.5-7
+- update URL
+- update license tag
+- recode ChangeLog from latin1 to uf8
+- add smp_mflags to make
+            +
+* Fri Aug 24 2007 Till Maas <opensource till name> - 1.0.5-6
+- cleanup BuildRequires:
+- removed versions, packages in Fedora are new enough
+- changed popt to popt-devel
+            +
+* Thu Aug 23 2007 Till Maas <opensource till name> - 1.0.5-5
+- fix devel subpackage requires
+- remove empty NEWS README
+- remove uneeded INSTALL
+- remove uneeded ldconfig requires
+- add readonly detection patch
+            +
+* Wed Aug 08 2007 Till Maas <opensource till name> - 1.0.5-4
+- disable patch2, libsepol is now detected by configure
+- move libcryptsetup.so to %%{_libdir} instead of /%%{_lib}
+            +
+* Fri Jul 27 2007 Till Maas <opensource till name> - 1.0.5-3
+- Use /%%{_lib} instead of /lib to use /lib64 on 64bit archs
+            +
+* Thu Jul 26 2007 Till Maas <opensource till name> - 1.0.5-2
+- Use /lib as libdir (#243228)
+- sync header and library (#215349)
+- do not use %%makeinstall (recommended by PackageGuidelines)
+- select sbindir with %%configure instead with make
+- add TODO
+            +
+* Wed Jun 13 2007 Jeremy Katz <katzj@redhat.com> - 1.0.5-1
+- update to 1.0.5
+            +
+* Mon Jun 04 2007 Peter Jones <pjones@redhat.com> - 1.0.3-5
+- Don't build static any more.
+            +
+* Mon Feb 05 2007 Alasdair Kergon <agk@redhat.com> - 1.0.3-4
+- Add build dependency on new device-mapper-devel package.
+- Add preun and post ldconfig requirements.
+- Update BuildRoot.
+            +
+* Wed Nov  1 2006 Peter Jones <pjones@redhat.com> - 1.0.3-3
+- Require newer libselinux (#213414)
+            +
+* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.0.3-2.1
+- rebuild
+            +
+* Wed Jun  7 2006 Jeremy Katz <katzj@redhat.com> - 1.0.3-2
+- put shared libs in the right subpackages
+            +
+* Fri Apr  7 2006 Bill Nottingham <notting@redhat.com> 1.0.3-1
+- update to final 1.0.3
+            +
+* Mon Feb 27 2006 Bill Nottingham <notting@redhat.com> 1.0.3-0.rc2
+- update to 1.0.3rc2, fixes bug with HAL & encrypted devices (#182658)
+            +
+* Wed Feb 22 2006 Bill Nottingham <notting@redhat.com> 1.0.3-0.rc1
+- update to 1.0.3rc1, reverts changes to default encryption type
+            +
+* Tue Feb 21 2006 Bill Nottingham <notting@redhat.com> 1.0.2-1
+- update to 1.0.2, fix incompatiblity with old cryptsetup (#176726)
+            +
+* Mon Feb 20 2006 Karsten Hopp <karsten@redhat.de> 1.0.1-5
+- BuildRequires: libselinux-devel
+            +
+* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.0.1-4.2.1
+- bump again for double-long bug on ppc(64)
+            +
+* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.0.1-4.2
+- rebuilt for new gcc4.1 snapshot and glibc changes
+            +
+* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
+- rebuilt
+            +
+* Mon Dec  5 2005 Bill Nottingham <notting@redhat.com> 1.0.1-4
+- rebuild against new libdevmapper
+            +
+* Thu Oct 13 2005 Florian La Roche <laroche@redhat.com>
+- add -lsepol to rebuild on current fc5
+            +
+* Mon Aug 22 2005 Karel Zak <kzak@redhat.com> 1.0.1-2
+- fix cryptsetup help for isLuks action
+            +
+* Fri Jul  1 2005 Bill Nottingham <notting@redhat.com> 1.0.1-1
+- update to 1.0.1 - fixes incompatiblity with previous cryptsetup for
+  piped passwords
+            +
+* Thu Jun 16 2005 Bill Nottingham <notting@redhat.com> 1.0-2
+- add patch for 32/64 bit compatibility (#160445, <redhat@paukstadt.de>)
+            +
+* Tue Mar 29 2005 Bill Nottingham <notting@redhat.com> 1.0-1
+- update to 1.0
+            +
+* Thu Mar 10 2005 Bill Nottingham <notting@redhat.com> 0.993-1
+- switch to cryptsetup-luks, for LUKS support
+            +
+* Tue Oct 12 2004 Bill Nottingham <notting@redhat.com> 0.1-4
+- oops, make that *everything* static (#129926)
+            +
+* Tue Aug 31 2004 Bill Nottingham <notting@redhat.com> 0.1-3
+- link some things static, move to /sbin (#129926)
+            +
+* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
+- rebuilt
+            +
+* Fri Apr 16 2004 Bill Nottingham <notting@redhat.com> 0.1-1
+- initial packaging

rpms / cryptsetup

Source Code

82b9cf import cryptsetup-1.7.4-3.el7_4.1

Authored and Committed by centosrcm 7 years ago

`82b9cf` import cryptsetup-1.7.4-3.el7_4.1