summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Collapse)AuthorFilesLines
2016-05-11Imported Upstream version 1.6.7upstream/1.6.7Kichan Kwon40-483/+6138
Change-Id: I7f33776c1d534cf59a8f28b972698ad95240ce5e Signed-off-by: Kichan Kwon <k_c.kwon@samsung.com>
2016-05-10Revert "Imported upstream version 1.6.7"Kwon40-6138/+483
This reverts commit a3777a6b2cde2c7133141474dd4c428220a3e9cc. Change-Id: I5c3c27a5a5677c20afb1a8e69c6ac99785cb37d1
2016-05-10Imported upstream version 1.6.7Kichan Kwon40-483/+6138
Change-Id: Ibccd9c20d2f467bdafb3eadb136dac955efd8e45 Signed-off-by: Kichan Kwon <k_c.kwon@samsung.com>
2013-08-04Version 1.6.2.Milan Broz1-4/+1
2013-07-23Fix sscanf cipher string and avoid warning wih -fsanitize=address.Milan Broz1-1/+1
Code need to count terminating zero.
2013-06-30Map TCRYPT system encryption through partition.Milan Broz3-8/+111
Kernel doesn't allow mapping through whle device if some other partition an the device is used. So first try to find partition device which match system encryption (== TCRYPT partition system encryption) and use that.
2013-06-30Simplify sysfs helpers.Milan Broz4-21/+15
2013-06-29Use internally common uint64 parsing for sysfs values.Milan Broz1-5/+16
2013-06-29Add kernel version to DM debug output.Milan Broz1-0/+13
2013-06-28dm-verity: Fix a boundary condition that caused failure for certain device sizesMikulas Patocka1-4/+2
On Fri, 28 Jun 2013, Mikulas Patocka wrote: Fix a boundary condition that caused failure for certain device sizes The problem is reported at http://code.google.com/p/cryptsetup/issues/detail?id=160 This is the userspace fix. Signed-off-by: Mikulas Patocka <mpatocka@redhat.com
2013-06-23Fix buildsytem to always include config.h.Cristian Rodríguez12-34/+14
- config.h must always be the first file to be included - Use AM_CFLAGS and AM_LDFLAGS consistently and properly. (Modified to disable build without largefile support etc by Milan Broz <gmazyland@gmail.com>)
2013-06-23Print a warning if system encryption is used and device is a partition.Milan Broz3-6/+33
System encryption hav metadata in space located ouside of partition itself. Ideally the check should be automatic but for virtualized systems (where a partition could be "whole device" for another sustem this can be dangerous.
2013-06-23Fix mapping of TCRYPT system encryption for more partitions.Milan Broz1-1/+13
If TCRYPT system encryption uses only partition (not the whole device) some other partitions could be in use and we have to use more relaxed check to allow device activation.
2013-05-11Disallow explicit small payload offset for detached header.Milan Broz1-1/+8
LUKS detached header has some limitations, one of them is that you cannot run some explicit check for data offsets without providing also data device. Because luksDump and all key handle commands takes only metadata device (LUKS heaer device), it not easy to properly support data payload offset validation. So if detached header is present for luksFormat, code now allows data payload 0 (IOW whole data device is used) and explicit offset larger than header+keyslots (the same as the header is on data device - so some space is wasted). N.B. with detached header the option --align-payload is used directly without any round up caculations. Fixes Issue#155.
2013-03-31Fix gcc signed/unsigned warning for key length.Milan Broz1-3/+3
And always use unsigned int declaration.
2013-03-24Update copyright year on changed files.Milan Broz6-6/+6
2013-03-23Fix loop-AES keyfile parsing.Milan Broz1-10/+23
Loop-AES keyfile should be text keyfile, properly check that keys are terminated and of the same length. Fixes issue#153.
2013-03-17Fix deactivation of device when failed underlying node disappearedMilan Broz1-1/+9
If underlying device disappears (failed drive, removed flash drive etc) cryptsetup cannot report LUKS parameters (header no longer available). Fix return code of init_by name in this situation (crypt context is NULL). Report visible error if deactivation fails and device is still busy. Fixes issue#149.
2013-03-17Deactivate whole device TCRYPT tree if context is NULLMilan Broz1-5/+9
API (unfortunately) supports NULL argument for crypt_deactivate, with new chained TCRYPT devices it must deactivate all chained devices as well. Fixes issue#147.
2013-02-15Return EPERM instead EINVAL for too long TCRYPT passphrase.Milan Broz1-1/+1
2013-02-14Fix passphrase pool overflow for TCRYPT device id passphrase > pool size.Milan Broz2-1/+7
TCRYPT format limits passphrase length to max. 64 characters so simply error in this case.
2013-02-01Fix missing headersJohn Spencer2-0/+2
2 header inclusions were missing, one for PATH_MAX (limits.h) and one for FD_ZERO, FD_SET, ... (sys/select.h) on glibc, those headers are erroneusly (namespace pollution) pulled in through other headers, so the author didnt notice. Signed-Off-By: John Spencer <maillist-cryptsetup@barfooze.de>
2013-01-22Do not support user uuid for plain & loopaes devices.Milan Broz3-30/+24
This function was not documented. So now crypt_get_uuid() returns only on-disk UUID.
2013-01-14Fix doxygen doc for libcryptsetup.h.Milan Broz1-56/+81
2013-01-13Update bitops.h (stolen from util-linux:).Milan Broz1-63/+103
2013-01-10Fix some extended compile warning.Milan Broz4-5/+9
2013-01-10Do not include pbkdf2 prototype in header if code is not compiled in.Milan Broz1-0/+2
2013-01-10Fix null blocks in kernel backend.Milan Broz1-1/+1
2013-01-08Fix displaying of error messages for mising kernel features.Milan Broz3-3/+3
2013-01-03Prepare supported PBKDF2 implementation autodetection for gcrypt.Milan Broz2-13/+6
2012-12-30build: use AM_CPPFLAGS instead of INCLUDESDave Reisner6-6/+6
The latter is marked as deprecated as of automake 1.12.4: warning: 'INCLUDES' is the old name for 'AM_CPPFLAGS' (or '*_CPPFLAGS')
2012-12-30Allow repair of 512bits key header.Milan Broz1-1/+1
2012-12-30Add kernel userspace header detection.Milan Broz2-4/+37
Add --disable-kernel_crypto to allow compilation with old kernel.
2012-12-30Fix status of device if path argument is used. Fix double path prefix for ↵Milan Broz1-0/+8
non-existent device path.
2012-12-29Skip TCRYPT KDF if hash is not available.Milan Broz1-0/+5
2012-12-29Support device/file images if O_DIRECT cannot be used (1.5.1).Milan Broz6-23/+43
On some filesystems (like tmpfs) O_DIRECT cannot be used. So just try to open device without O_DIRECT in the second try.
2012-12-29Change License for sub-libraries from GPLv2 only to LGPLv2.1+ ("or any later")Milan Broz14-114/+127
This includes crypto, loopaes, tcrypt handling code I have written myself and verity code written originally by Mikulas Patocka and modified by me, copyright by Red Hat. Other part of library have to stay GPLv2+ only for now (no agreement from all authors).
2012-12-29Change License from GPLv2 only to GPLv2+ ("or any later").Milan Broz25-25/+50
Agreed by all copyright authors.
2012-12-29Fix non-translated messages.Milan Broz3-10/+10
2012-12-22Add basic support for system TCRYPT device.Milan Broz3-4/+16
Rename option hidden to tcrypt-hidden.
2012-12-21Add copyright line for files I have written or modified.Milan Broz21-1/+22
2012-12-19Fix regression in header backup (1.5.1).Milan Broz2-2/+5
Access to backup file must handle write to regular files too.
2012-12-17Fix time of check/use Coverity report (and ignore another) in loop/wipe utils.Milan Broz2-3/+1
2012-12-17Fix time of check/use Coverity report (and ignore another) in device utils.Milan Broz1-10/+7
2012-12-17Do not use stat for backup commands.Milan Broz1-21/+16
2012-12-11Remove signal handling from LUKS keyencryption and simplify code.Milan Broz3-118/+70
2012-12-10Get page size should never fail (in the works case it fails later with wrong ↵Milan Broz3-13/+5
alignment).
2012-12-10Fix some problems found by Coverity scan.Milan Broz4-8/+13
2012-12-10TCRYPT: properly wipe all buffers; use prefix for all functions.Milan Broz2-62/+85
2012-12-08Require params for crypt_load & TCRYPT type.Milan Broz1-0/+3
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-23 07:44:24 +0000