1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.DIST

  • Bug#979617: tcplay: VeraCrypt support

    From Daniel Kahn Gillmor@21:1/5 to Johannes Truschnigg on Sun Apr 21 05:00:01 2024
    Retitle: 979617 tcplay: new upstream version 3.3 (includes VeraCrypt support)

    On Thu 2023-02-16 15:07:10 +0100, Johannes Truschnigg wrote:
    tc-play 3.3 seems to build fairly cleanly on bullseye from its tag/release tarball [0]. It'd be *really* nice to have in Debian to be able to handle VeraCrypt volumes.

    It would be great to have this updated version of tcplay in debian.

    If there's some reason to not update tcplay in debian, it would be good
    to know.

    The package hasn't seen any updates in debian since oldoldstable.

    --dkg

    -----BEGIN PGP SIGNATURE-----

    wr0EARYKAG8FgmYkdpAJEHctFh41zUuBRxQAAAAAAB4AIHNhbHRAbm90YXRpb25z LnNlcXVvaWEtcGdwLm9yZw0gr84H7ldfSu/ygDuXHd+HoKQ8v8c+kDTSxqHbJVmA FiEEdLwExD2GCEvoZywGdy0WHjXNS4EAAHZyAQC7H5MuqTiOqG2ZEhWkQ6N8nzy9 R2DVASy27gSgw7utqQD/QdSrOA/dVW1ESJzql1GVGdkbvUUue521lW/0fLRttAk=
    =s8C7
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Daniel Kahn Gillmor@21:1/5 to All on Sun Apr 21 09:10:01 2024
    Control: retitle 979617 tcplay: new upstream version 3.3 (includes VeraCrypt support)

    I've just confirmed what Johannes said about tcplay 3.3 building easily
    on debian. I uploaded 3.3-0.1 to unstable as an NMU to DELAYED/15,
    after cleaning up the packaging a little bit.

    I've imported all the history of the tcplay package from
    snapshots.debian.org into a git repo (using "gbp import-dscs --debsnap tcplay"), and then made my packaging changes on top of that synthetic
    history.

    I published that git repository (history + my changes) at https://salsa.debian.org/debian/tcplay on the debian/unstable branch.

    Hopefully this NMU is welcomed in the helpful spirit i intended with it!
    But if you think it's a bad idea, I don't mind it being NACK'ed. In the
    course of doing the cleanup i noticed a few weird things about the
    packaging for libtcplay, that i wasn't sure how to best fix, so i just
    recorded them in the BTS.

    I also cleaned up upstream's manpages a bit, and reported those fixes
    upstream at https://github.com/bwalex/tc-play/pull/84

    There are probably more things that could be cleaned up upstream (the
    modern toolchain makes a lot of complaints about the tcplay source), but
    i haven't tried to fix or even report those yet.

    I've also tested a backported version of 3.3-0.1 to debian stable, and
    it seems to work fine to create an interoperable VeraCrypt volume
    (methodology described below). The backport to bookworm required
    nothing more than a new entry in debian/changelog, which is published on
    the debian/bookworm branch in salsa (but not uploaded anywhere yet).

    I tested on a dual-boot x86_64 system where /dev/vda5 is a slice visible
    to both a Debian stable installation with tcplay 3.3-0.1~bpo12+1 and a
    Windows 11 system with VeraCrypt 1.26.7 (64-bit) installed.

    On the Debian side, i did:

    ```
    tcplay --create --device=/dev/vda5 --pbkdf-prf=SHA256-VC
    cryptsetup open --type=tcrypt /dev/vda5 vera
    mkfs -t vfat /dev/mapper/vera
    mount /dev/mapper/vera /mnt
    echo "this is a test" > /mnt/testing.txt
    umount /mnt
    cryptsetup close vera
    ```

    Then i rebooted the system into Windows, and using Veracrypt, i was able
    to map the volume onto the E: drive using the same password i'd entered
    with tcplay and "cryptsetup open", and then read "this is a test" out of E:\testing.txt

    In my test, my password was plain 7-bit clean US-ASCII; i didn't try any fancier passwords.

    Regards,

    --dkg

    -----BEGIN PGP SIGNATURE-----

    wr0EARYKAG8FgmYkuhEJEHctFh41zUuBRxQAAAAAAB4AIHNhbHRAbm90YXRpb25z LnNlcXVvaWEtcGdwLm9yZ8tbLIdwpaPLE8wQ9qRSWbNm+9EO6pNv8Visj0FrDNfH FiEEdLwExD2GCEvoZywGdy0WHjXNS4EAALXFAPsHyB4gSwteutchkPPIioeyOnoq FPqr3p4b4q6P9uyHuwD/X1Ss0Ud9+jrydu0OW3t3TeJ608JmgR4iyqmFfoZHCgE=
    =A1Bi
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From =?UTF-8?Q?L=C3=A1szl=C3=B3_?= =?UTF@21:1/5 to dkg@debian.org on Sun Apr 21 15:50:01 2024
    Hi,

    On Sun, Apr 21, 2024 at 9:06 AM Daniel Kahn Gillmor <dkg@debian.org> wrote:
    I've just confirmed what Johannes said about tcplay 3.3 building easily
    on debian. I uploaded 3.3-0.1 to unstable as an NMU to DELAYED/15,
    after cleaning up the packaging a little bit.
    [...]
    Hopefully this NMU is welcomed in the helpful spirit i intended with it!
    But if you think it's a bad idea, I don't mind it being NACK'ed. In the course of doing the cleanup i noticed a few weird things about the
    packaging for libtcplay, that i wasn't sure how to best fix, so i just recorded them in the BTS.
    I prefer communication first. :) Currently I'm travelling so I can
    only check it on Tuesday.

    I've also tested a backported version of 3.3-0.1 to debian stable, and
    it seems to work fine to create an interoperable VeraCrypt volume (methodology described below).
    There were some license problems in the past at least, which
    prevented packaging. I will check the current situation.

    Regards,
    Laszlo/GCS

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Daniel Kahn Gillmor@21:1/5 to All on Mon Apr 22 20:40:01 2024
    On Sun 2024-04-21 15:44:12 +0200, László Böszörményi (GCS) wrote:
    I prefer communication first. :) Currently I'm travelling so I can
    only check it on Tuesday.

    That's why i uploaded to DELAYED/15 :) thanks for offering to take a
    look at it later this week, László!

    There were some license problems in the past at least, which
    prevented packaging. I will check the current situation.

    That's good to know! in the version i uploaded, it looked like a simple 2-clause BSD, but i'm sure you have more detailed historical knowledge.

    All the best,

    --dkg

    --=-=-Content-Type: application/pgp-signature; name="signature.asc"

    -----BEGIN PGP SIGNATURE-----

    wr0EARYKAG8FgmYl+XoJEHctFh41zUuBRxQAAAAAAB4AIHNhbHRAbm90YXRpb25z LnNlcXVvaWEtcGdwLm9yZxddwWrOEY+Qls3rNng5SBBPuJlmFb/p6VTTZkXzSLyq FiEEdLwExD2GCEvoZywGdy0WHjXNS4EAADTvAP9055AImhxVreQpeul7rgkrhOlF cfANL5DXYXnKzQRHRAEAjBLeqzGy409qtzccemFmIehFYiPizKrHihjWQlAqSQk=xzP4
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From =?UTF-8?Q?L=C3=A1szl=C3=B3_?= =?UTF@21:1/5 to dkg@debian.org on Thu Apr 25 19:30:01 2024
    On Mon, Apr 22, 2024 at 8:33 PM Daniel Kahn Gillmor <dkg@debian.org> wrote:
    On Sun 2024-04-21 15:44:12 +0200, László Böszörményi (GCS) wrote:
    I prefer communication first. :) Currently I'm travelling so I can
    only check it on Tuesday.

    That's why i uploaded to DELAYED/15 :) thanks for offering to take a
    look at it later this week, László!
    I meant to reach a consensus first and then do the upload. There's no
    point in an upload that needs to be cancelled.

    Best,
    Laszlo/GCS

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Daniel Kahn Gillmor@21:1/5 to All on Fri Apr 26 20:20:01 2024
    Hi László--

    Thanks for sorting out the 3.3-1 upload for tcplay, multiarch-ifying
    library along the way, and updating the packaging history in Salsa, too!

    With much appreciation,

    --dkg

    --=-=-Content-Type: application/pgp-signature; name="signature.asc"

    -----BEGIN PGP SIGNATURE-----

    wr0EARYKAG8FgmYr5xIJEHctFh41zUuBRxQAAAAAAB4AIHNhbHRAbm90YXRpb25z LnNlcXVvaWEtcGdwLm9yZxd+BCZDighn2RgkV6o2dcVJFuTbYpDOkl9CO9HJ7ZVJ FiEEdLwExD2GCEvoZywGdy0WHjXNS4EAAD9qAQDTOMAg8hghI6HJCPXEI43mCbtU uPd8BpWoSLMaN8qP1wEAoLySMSkLRCR9xndqaJ279jbQ9qsnDi8TzfNFu+ChgAE=mhqS
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)