Krzysztof Jackiewicz [Tue, 14 Nov 2017 13:23:55 +0000 (14:23 +0100)]
Add device path getters
Device path getters allow switching from old internal/external key API to new
generic key API (keys.h).
If external and (possibly) internal encryption APIs are modified to accept
device path as an argument instead of using hardcoded value these getters will
become unnecessary.
Change-Id: I78d288798a6cd267a7c6ee8d279d0d33a6813aab
Krzysztof Jackiewicz [Tue, 14 Nov 2017 15:09:48 +0000 (16:09 +0100)]
Add & implement master key storage API
Change-Id: Ifb2ae4bc6161de58bc0b46770a31948cc2780ae2
Krzysztof Jackiewicz [Mon, 13 Nov 2017 16:29:49 +0000 (17:29 +0100)]
Convert KeyGenerator class to a namespace
Change-Id: I5cc3aec04a731ec2b3212a187494dcbeae1ea468
Krzysztof Jackiewicz [Tue, 28 Nov 2017 15:13:12 +0000 (16:13 +0100)]
Properly handle errors related to key storage plugin
- Don't fail if an attempt to remove a non-existing token is made
- Don't fail if the plugin does not recognize the token used for key removal
- Ask the plugin to remove the key before overwriting the token
- Use error codes from ksp API
Change-Id: I9d6e60917b933506cd431d852f859f5c2a29b55f
Krzysztof Jackiewicz [Mon, 13 Nov 2017 16:29:49 +0000 (17:29 +0100)]
Use common typedef for binary data
Change-Id: I8a47b1f6fb3718608a2011e50b79b8e6f466414d
Krzysztof Jackiewicz [Mon, 27 Nov 2017 09:32:31 +0000 (10:32 +0100)]
Add dummy plugin
Change-Id: Id817932002f094c13dc605f86bf911367e854bd5
Krzysztof Jackiewicz [Thu, 9 Nov 2017 09:13:23 +0000 (10:13 +0100)]
Add framework for master key storage
- Add wrapper for dlopen + dlsym + dlclose.
- Add functions for master key management
Change-Id: I6d988320e90e21aad9066899d3bd8ea14b41034c
Krzysztof Jackiewicz [Tue, 28 Nov 2017 09:18:38 +0000 (10:18 +0100)]
Fix error handling in event callback API
Change-Id: If89e767a25c0936dfb485e5f2ba5cc58155d6030
Krzysztof Jackiewicz [Tue, 28 Nov 2017 09:11:31 +0000 (10:11 +0100)]
Fix segfault in ode-admin-cli
Change-Id: I67f3037dacc19e8582bf6277088e73b767c58dfc
Krzysztof Jackiewicz [Tue, 7 Nov 2017 16:08:07 +0000 (17:08 +0100)]
Master key storage plugin API
Change-Id: I81d8cc6376350df9797ebe11134a646b3614744c
Krzysztof Jackiewicz [Thu, 9 Nov 2017 09:44:48 +0000 (10:44 +0100)]
Use KeyServer for server side key managent
- server side uses KeyServer for key management
- refactor key management
- use empty key value in EncryptedKey::decrypt() to differentiate wrong
password from other errors
Change-Id: I7e2c4c0af794309d85ad1182f3ab2a67412a16af
Krzysztof Jackiewicz [Thu, 19 Oct 2017 15:17:39 +0000 (17:17 +0200)]
Key/password management API implementation
Change-Id: Ib74cc6e9212a948a043b483f08159024b642eb77
Krzysztof Jackiewicz [Fri, 10 Nov 2017 16:01:46 +0000 (17:01 +0100)]
Refactor error handling
- Move error translation to a separate file
- Use common error codes in all API
- Convert internal error enum to integers (klay does not support enum
serialization at the moment)
- Update documentation
Change-Id: I0bc49c2a4218e0f4e833bd404dfec50164ad1d1f
Lukasz Pawelczyk [Tue, 21 Nov 2017 13:26:32 +0000 (14:26 +0100)]
Fix mutex being unlocked by a different thread that locked it
Change-Id: I35a4a4a72eb8d14ac561c6a819c92f12979a9b15
Krzysztof Jackiewicz [Tue, 14 Nov 2017 13:33:42 +0000 (14:33 +0100)]
Refactor mtab related functions
Change-Id: I28ba2ddbe1ea5140e53368acff2946790a016896
Krzysztof Jackiewicz [Thu, 19 Oct 2017 06:48:29 +0000 (08:48 +0200)]
Generic API for device key & password management
Since ode is going to be socket activated it can't rely on dbus signals from
storaged anymore. Instead the device node has to be passed via API. This commit
adds a generic API for key/password management. The old functions dedicated for
key/password management in external and internal encryption will be deprecated.
Change-Id: I5ad5166c7a01bb9d3157ad8325d63724ac932432
Pawel Kowalski [Thu, 16 Nov 2017 09:07:44 +0000 (10:07 +0100)]
Fix ode-engine-unit-tests
Change-Id: If14ed39db1806d821303dc792a206db91107f93f
Lukasz Pawelczyk [Tue, 21 Nov 2017 12:08:01 +0000 (13:08 +0100)]
Fix cppcheck/svace warnings
Change-Id: I29b64165784c8162e8ae0fdc50d201856d6540fb
Krzysztof Jackiewicz [Mon, 23 Oct 2017 14:20:57 +0000 (16:20 +0200)]
Release version 0.0.2
Change-Id: I69701cf5fe44323e7e55f0811385f0da28dbe3b1
Krzysztof Jackiewicz [Mon, 16 Oct 2017 14:33:59 +0000 (16:33 +0200)]
Fix typo in API
Change-Id: I3cd49dfe7a19f3b9fa6ff92c34ad5a8302c53774
Krzysztof Jackiewicz [Mon, 23 Oct 2017 14:01:37 +0000 (16:01 +0200)]
Add support for synchronous LUKS API to ode-admin-cli
Change-Id: I86efa9e434b3726fb7947a4e81f048908a5b9ac3
Krzysztof Jackiewicz [Fri, 20 Oct 2017 09:09:20 +0000 (11:09 +0200)]
Synchronous API for LUKS
Change-Id: I30299af2cc523a5ee985fea87e331cf06f3bf96e
Krzysztof Jackiewicz [Mon, 16 Oct 2017 13:02:20 +0000 (15:02 +0200)]
Confirm password when formatting as LUKS
Change-Id: Ib6f9bf88a6adc2147a0ec10d9b9d4ffc7ad140f1
Krzysztof Jackiewicz [Mon, 16 Oct 2017 09:53:03 +0000 (11:53 +0200)]
Fix description of callback return codes
Return codes passed to the callback should not be included as @retval.
Moved to @note section.
Change-Id: Ie14ecc345835bf777a1f1de7844d0fde30cfb3de
Lukasz Pawelczyk [Thu, 12 Oct 2017 15:08:35 +0000 (17:08 +0200)]
Miscellaneous cleanups and cosmetics
Change-Id: Id13214285f62c0e84131e5c8f846c91904a99600
Lukasz Pawelczyk [Wed, 20 Sep 2017 12:05:02 +0000 (14:05 +0200)]
Log messages: unify and add missing
For Internal and External encryption.
Change-Id: I20bd74f06d90b07a2111ffa1a4bff5eff443b81d
Lukasz Pawelczyk [Thu, 14 Sep 2017 12:02:42 +0000 (14:02 +0200)]
*_set_mount_password() must be called before every *_mount()
Change-Id: Ie55ee30a386a1784bff301dc5602b48978095e24
Krzysztof Jackiewicz [Wed, 11 Oct 2017 08:15:58 +0000 (10:15 +0200)]
Remove extension encryption
It is replaced by LUKS API.
Change-Id: I6506eb55d8d90df39014a39c73bef404b3d7f585
Krzysztof Jackiewicz [Fri, 6 Oct 2017 12:16:27 +0000 (14:16 +0200)]
Support for luks API in ode-admin-cli
Allows synchronous formatting, opening and closing of LUKS device. It also
allows waiting for completion notification in a separate process.
Change-Id: I28b4c543bc2a3135bd8cde53fbf6e13181684ffd
Krzysztof Jackiewicz [Mon, 2 Oct 2017 08:43:39 +0000 (10:43 +0200)]
Luks API implementation
- Client part, RMI & Server part with callback notifications
- Extend ClientContext class to support custom notification
Change-Id: I6f049283925b2ae1934bba01ed22c21053b65555
Krzysztof Jackiewicz [Thu, 5 Oct 2017 14:26:49 +0000 (16:26 +0200)]
Set proper label for notification sockets
When a client registers for notification it receives a socket to wait on. The
socket descriptor is transferred using ancillary data. In such cases Smack
checks if Smack rules allow the process that is about to receive it to write to
socket's IPOUT (System::Privileged) and if socket IPIN is allowed to write the
process. CAP_MAC_OVERRIDE is ignored (this may be a bug in Smack). As a result
any process not having System::Privileged label (including ode-admin-cli and UI
apps) is not able to receive the notification socket.
By default notification sockets receive the server's label that is
System::Privileged. This patch sets the IPOUT socket label to '@' so that all
processes can write it and receive the notification socket.
Change-Id: I473099f48e253c4bfe3cebee1a21857d9ea2b963
Krzysztof Jackiewicz [Fri, 29 Sep 2017 09:33:36 +0000 (11:33 +0200)]
Add luks API declaration
Extension encryption is supposed to become a wrapper over cryptsetup. New API
will do exactly that.
Change-Id: I97780fa3b1a59f405478d8bd1fb6eb6272416c33
Krzysztof Jackiewicz [Fri, 13 Oct 2017 15:05:51 +0000 (17:05 +0200)]
Fix logging on server side
Remove rebase leftover.
Change-Id: I423471ce5a5bf6cf41754681f7040bf191833d9b
Krzysztof Jackiewicz [Thu, 21 Sep 2017 12:16:35 +0000 (14:16 +0200)]
Refactor client and server side contexts
- Get rid of files and typedefs with identical names
- Simplify client & server side context
Change-Id: Ib6580b228fd6b9d8771eb81adc06d2b2fef2775b
Krzysztof Jackiewicz [Wed, 11 Oct 2017 08:16:52 +0000 (10:16 +0200)]
Add missing derivation in ExternalEncryptionClient
Change-Id: I3b264d0b7abebe57c5ad1a0ee40a86d80a6514ed
Lukasz Pawelczyk [Wed, 20 Sep 2017 12:33:44 +0000 (14:33 +0200)]
Catch external mount/umount error messages
Change-Id: I0d1917f20a5113734635766f4a83a9eb8896e80e
Lukasz Pawelczyk [Mon, 18 Sep 2017 13:42:16 +0000 (15:42 +0200)]
Make headers in RMI define pure virtual interfaces
- Define *Client and *Server variants as full classes with their own
headers inheriting from RMI interfaces.
Change-Id: I1aa479f1cdac86c63822d59589dd604ba5e2818f
s414kim [Wed, 20 Sep 2017 08:58:54 +0000 (17:58 +0900)]
Remove unnecessary code of secure-erase
- remove reading /dev/zero code.
- changed mtab parsing code to use getmntent().
Change-Id: Ieee126dae6e33577ad9bdbb645c948db088eef3e
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Fri, 22 Sep 2017 08:55:42 +0000 (17:55 +0900)]
Remove 'erase' API from secure-erase
Change-Id: I4d9d287fe3915e1d2a4fd8fc7a405af06139efd0
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Fri, 22 Sep 2017 05:03:03 +0000 (14:03 +0900)]
Remove exception of findDevPath for emulator
- Cause : the mount path doesn't exist on the emulator.
Change-Id: Ibc219808d2fb3a3951e5f77392ab8d86bf29fe42
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Fri, 15 Sep 2017 05:59:13 +0000 (14:59 +0900)]
Remove MD5 from key-generator
- delete MD5 method from key-generator
- replace 'MD5' to 'SHA256' which is used to get hash value
Change-Id: I788a38adbcc34d29061f85cc87f5fee1e1eea26b
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Wed, 30 Aug 2017 11:43:39 +0000 (20:43 +0900)]
Add default secure-erase engine
Change-Id: Ib7e8ff2fe11f41975d34affc47e85b1ee473bdd7
Signed-off-by: s414kim <s414.kim@samsung.com>
Lukasz Pawelczyk [Tue, 12 Sep 2017 12:13:55 +0000 (14:13 +0200)]
ExtensionEncryption: handle encrypted external sd while formatting
There will be two different things mounted as /opt/media/SDCardA1
while external sd card is encrypted and mounted. Handle this case.
TODO for the findKillAndUmount() usage is still valid, this is just an
immediate workaround for the issue.
Change-Id: If0209165401e9fb88895c417b127aad2fcb75828
Lukasz Pawelczyk [Tue, 12 Sep 2017 13:17:42 +0000 (15:17 +0200)]
Move 2 common utility functions to misc.cpp/misc.h
Change-Id: If29bea3be21bac1cd870bc44250d268b083908b4
Lukasz Pawelczyk [Tue, 12 Sep 2017 11:18:04 +0000 (13:18 +0200)]
Small cleanups
- headers
- formatting
- ordering
- change defines to const char* in anonymous namespace
- remove unneeded VCONF redefines
Change-Id: I07fadbe6f11c30214f1bd6839ef046e2c84b6e3c
s414kim [Thu, 14 Sep 2017 08:14:18 +0000 (17:14 +0900)]
Move reference UI packages to ode-ui git.
Change-Id: I9b4fe1a4eb1cad769bc3f836f3521dbf384b5343
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Thu, 14 Sep 2017 00:46:17 +0000 (09:46 +0900)]
Apply tizen coding rules
- Delete redundant blank line
- Add or Remove white-space before '('
Change-Id: I034f3b9e9e57f97eacb5d024df8e47c852349142
Signed-off-by: s414kim <s414.kim@samsung.com>
Lukasz Pawelczyk [Fri, 8 Sep 2017 11:57:01 +0000 (13:57 +0200)]
ExtensionEncryption: add set_mount_password API call
Make this API be more like InternalEncryption where this call might be
required in the same way it is required in InternalEncryption.
Change-Id: I5e3c6fd661d899844a4a5aceaf2a91117c622d2b
Lukasz Pawelczyk [Mon, 11 Sep 2017 11:09:02 +0000 (13:09 +0200)]
Fix extension storage not working properly
- wrong path to dummy_password
- lack of device for erase
Change-Id: I3d3f43f5b97e0742dca20f30e2a1734f0059bf78
Lukasz Pawelczyk [Mon, 11 Sep 2017 11:14:45 +0000 (13:14 +0200)]
Notify and throw if cryptsetup fails
Fix bracket's style in the same function
Change-Id: I22973c995cc489124c57acac23d531605e9f3700
Lukasz Pawelczyk [Fri, 8 Sep 2017 16:40:26 +0000 (18:40 +0200)]
Treat INTERNAL_DEV_NAME as prefix when traversing dir
Internal device name is /dev/disk/by-partlabel/USERDATA on TM2 device
Change-Id: I6cc088bb98aa3b6d7fd05756719dc1dbbfa2d56a
Lukasz Pawelczyk [Fri, 8 Sep 2017 10:18:05 +0000 (12:18 +0200)]
ExternalEncryption: Sync at the very end of the operation
Change-Id: Iec7639130371d1bd2e393e8a71bf11cd4eabd190
Lukasz Pawelczyk [Wed, 16 Aug 2017 15:26:06 +0000 (17:26 +0200)]
InternalEncryption: make umount logic more error proof
Don't umount if the device is not already mounted.
Try to umount if the device is mounted more then once (bind).
Change-Id: I0656146225fb0df429a4da1af743bc1d1cbdb9f9
Lukasz Pawelczyk [Mon, 4 Sep 2017 13:16:51 +0000 (15:16 +0200)]
Catch internal mount/umount error messages
Change-Id: Ic72c3352914600b2bdafa270600e556c0e9385e8
Lukasz Pawelczyk [Mon, 4 Sep 2017 13:11:39 +0000 (15:11 +0200)]
Suppress the SVACE issue
This should be fixed in the future by introducing proper interfaces so
private class members won't have to be added to the RMI
Change-Id: I4ab07f44a2991e63cd1489dcfbaaa1bceaa20647
Lukasz Pawelczyk [Mon, 4 Sep 2017 13:06:03 +0000 (15:06 +0200)]
Fix a possible cached data save failure, sync just before reboot
Change-Id: I6646e36cf600d260128f1d688aa2f74e1e5c6f5f
Lukasz Pawelczyk [Mon, 4 Sep 2017 13:03:28 +0000 (15:03 +0200)]
Fix for internal encryption bug/failure
Stop TLM service so the user session will not restart eliminating the
race between ODE and userdata mount triggered by said user session.
Change-Id: I3f940489dca525de0feceeee204c9860f0ec010f
s414kim [Tue, 5 Sep 2017 10:21:34 +0000 (19:21 +0900)]
Fix memory leak of secure-erase UI
. free the memory allocated for notification and app_control handle.
Change-Id: I35ff9b7a4bd56c74805d61a70f3154ced8b46785
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Mon, 4 Sep 2017 02:07:21 +0000 (11:07 +0900)]
Fix logical error for checking layout type
Change-Id: Icb721fa00c0fd9a70b2005e292eaa9992de72ae3
Signed-off-by: s414kim <s414.kim@samsung.com>
Sungbae Yoo [Mon, 4 Sep 2017 06:13:46 +0000 (15:13 +0900)]
Revert all commits related with root-minimization.
This is a combination of following 6 commits :
Revert "Change the touch file path /tmp to /run"
Revert "Add ecryptfs key linking in the keyring of root user"
Revert "Change ode daemon as non-root"
Revert "Add systemd unit for external storage mount with smackfs* option"
Revert "Revert "Add smackfsroot, smackfsdef in mount options of ecryptfs""
Revert "Change service to on-demand by Systemd socket activation"
Change-Id: If4482b14237715d0f19c45b0ca5573c6ac7b8484
Sungbae Yoo [Fri, 1 Sep 2017 09:06:43 +0000 (18:06 +0900)]
Change the touch file path /tmp to /run
This commit enforces secyrity of scaffolding codes such as ode-*.path and
iode-*.service, which have to be transfered to storaged.
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: Id67ae73276967c99377e7d8a73421162aea14ea2
Sungbae Yoo [Mon, 28 Aug 2017 11:47:57 +0000 (20:47 +0900)]
Change service to on-demand by Systemd socket activation
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I0a0b8ca9cad833623e8460398368fc7842e59d69
Sungbae Yoo [Fri, 25 Aug 2017 12:04:08 +0000 (21:04 +0900)]
Add ecryptfs key linking in the keyring of root user
Change-Id: Ie9eddecc8f6a274ff2e6e030730a49ad5f1dd773
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
s414kim [Mon, 28 Aug 2017 02:15:36 +0000 (02:15 +0000)]
Merge "Fix password popup parent object" into tizen
Sungbae Yoo [Wed, 23 Aug 2017 09:37:30 +0000 (18:37 +0900)]
Add showing log only when process termination is failed
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: Id4747a6b8cbad0a8d62c90e908a763e263305c72
Sungbae Yoo [Tue, 22 Aug 2017 03:01:54 +0000 (12:01 +0900)]
Add ScopedGMainLoop for gmainloop
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I85a68c6180cc4f27fe1c96cf048b2bcbe28eadee
Sungbae Yoo [Thu, 10 Aug 2017 10:43:44 +0000 (19:43 +0900)]
Change ode daemon as non-root
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I687765a06be01fd0cec0c9d98ec63805bbf49c67
s414kim [Tue, 22 Aug 2017 06:55:10 +0000 (15:55 +0900)]
Fix password popup parent object
Change-Id: I50ed2a548fae5e6a1c76aa973aa5633e68dc01d2
Signed-off-by: s414kim <s414.kim@samsung.com>
Lukasz Pawelczyk [Mon, 7 Aug 2017 17:01:34 +0000 (19:01 +0200)]
Replace libcryptsetup usage with /usr/sbin/cryptsetup calls
Change-Id: Ieedae7a30a6db706cdac674a55abf8ca3baf631c
Sungbae Yoo [Wed, 9 Aug 2017 10:09:06 +0000 (19:09 +0900)]
Add systemd unit for external storage mount with smackfs* option
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: Ia1ff32955fd0760bde1144b5e009af368c972cea
Sungbae Yoo [Wed, 9 Aug 2017 07:13:09 +0000 (16:13 +0900)]
Revert "Add smackfsroot, smackfsdef in mount options of ecryptfs"
This reverts commit
8f7f71bda2fd81ff50b3e01e347c2fe2bb887c31.
Change-Id: I4bb2a2f6dcde3f0769232a0478f53abe6e3a3c6e
Sungbae Yoo [Wed, 9 Aug 2017 07:01:22 +0000 (16:01 +0900)]
Add to showing external encryption popup after homescreen loading
Limitation: This doesn't wait for homescreen actually.
Just some delays after BootCompleted is received.
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I9703ff23717c9fd7f2a2a0d1bea67b85f64d1b7d
Sungbae Yoo [Mon, 7 Aug 2017 05:01:13 +0000 (14:01 +0900)]
Fix not to turn off when progress bar shows
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I517e749b2bf203da9f7471d50c301603b6054094
Lukasz Pawelczyk [Mon, 7 Aug 2017 13:59:54 +0000 (13:59 +0000)]
Merge "Revert "Revert "Implementation of ExtensionEncryption with CryptsetupEngine""" into tizen
Lukasz Pawelczyk [Mon, 7 Aug 2017 13:59:43 +0000 (13:59 +0000)]
Merge "Revert "Revert "Add CryptsetupEngine""" into tizen
s414kim [Sat, 5 Aug 2017 04:55:16 +0000 (13:55 +0900)]
Rename rework directory to src directory
Change-Id: I9a8a10ac448ec90b84b47004a161c4ab86149a36
Signed-off-by: s414kim <s414.kim@samsung.com>
Krzysztof Jackiewicz [Fri, 4 Aug 2017 10:41:01 +0000 (12:41 +0200)]
Revert "Revert "Implementation of ExtensionEncryption with CryptsetupEngine""
This reverts commit
075ad6399d6c8295a3f2d682146e5772b65754ac.
Change-Id: Ie9f43009a99d095acd017dc4d2cf7c9de7de0da6
Krzysztof Jackiewicz [Fri, 4 Aug 2017 10:40:08 +0000 (12:40 +0200)]
Revert "Revert "Add CryptsetupEngine""
This reverts commit
842d4ed10985953d402ff43e55fe2798656edd18.
Change-Id: I91c6798133fe772a88e65f15efda7e6806502c4f
Sungbae Yoo [Fri, 28 Jul 2017 08:49:27 +0000 (17:49 +0900)]
Fix ext4-tool to get group descriptor size from super block
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I401458c899da23bf5ffb52dc8c6a275d4cc6d896
s414kim [Fri, 14 Jul 2017 09:02:41 +0000 (18:02 +0900)]
Add external encryption progress-notification
Change-Id: I5863d8e56d0c778e4236adac201c29eee15f22d1
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Sat, 8 Jul 2017 12:36:19 +0000 (21:36 +0900)]
Add external retry interface
Change-Id: Ie7a575d8c023e75d3b7a71c3c4e0aac229cf32e6
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Sat, 8 Jul 2017 12:10:51 +0000 (21:10 +0900)]
Add insert/password sdcard interface
Change-Id: I22cf17fb853a1ef29c1febc48f82983917899fd4
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Sat, 8 Jul 2017 11:49:59 +0000 (20:49 +0900)]
Add ODE progress interface for rework
Change-Id: I200fa17116476724be72f014236f67164d3e6595
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Sat, 8 Jul 2017 09:52:42 +0000 (18:52 +0900)]
Add external encryption/decryption interface and external-locktype for rework
Change-Id: I5af257115272b6bf1cc486de93a471937741c25d
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Sat, 8 Jul 2017 09:37:28 +0000 (18:37 +0900)]
Add internal encryption/decryption interface and tools for rework
Change-Id: I247edc868b7550c55d29e2948314db8ea15fa463
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Fri, 7 Jul 2017 08:46:32 +0000 (17:46 +0900)]
Add ODE base interface and layout for rework
Change-Id: Ia0373341142148d55b014547c91576a0032854ed
Signed-off-by: s414kim <s414.kim@samsung.com>
s414kim [Fri, 7 Jul 2017 08:32:34 +0000 (17:32 +0900)]
Add ODE Interface widgets for rework
Change-Id: I0f8f2b4b04de3eb6572a4ac2cd65b2f2648c8c14
Signed-off-by: s414kim <s414.kim@samsung.com>
Sungbae Yoo [Thu, 27 Jul 2017 02:53:06 +0000 (11:53 +0900)]
Add forceCleanUp retrys when it sometimes fails
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I800def0118b23e29ad3db513dfd507e55d0f064d
Sungbae Yoo [Thu, 27 Jul 2017 06:55:49 +0000 (15:55 +0900)]
Revert "Add readlink for a klay change that uses lstat"
This reverts commit
768fbb7fe4cbb950fad5d190fc61e283c4eca171.
Sungbae Yoo [Thu, 27 Jul 2017 05:15:46 +0000 (14:15 +0900)]
Add readlink for a klay change that uses lstat
* Refer to (in klay) :
d866a7170f87d406d8c9bc3722d9db08d54d7c17
86dda70ea0201a0a2f4ec4b0bfd58a5af86e9ae0
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I6566eaa3999449bdf5ccafff8bc6af6aa747eb15
Sungbae Yoo [Wed, 26 Jul 2017 05:06:04 +0000 (14:06 +0900)]
Fix a build break from separation of AUL
Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
Change-Id: I04969350e3a149824514f5182d3473859ebb2fd9
sangwan.kwon [Mon, 24 Jul 2017 09:05:14 +0000 (18:05 +0900)]
Revert "Implementation of ExtensionEncryption with CryptsetupEngine"
- Since arch64 build failed, this commit be reverted.
This reverts commit
e0ead75e1527aa73bf349ecaa306ba6fc4295930.
Conflicts:
server/extension-encryption.cpp
server/external-encryption.cpp
server/server.cpp
Change-Id: I8958a4c572d3e21977e1ac638346edd64e490a13
sangwan.kwon [Mon, 24 Jul 2017 08:54:37 +0000 (17:54 +0900)]
Revert "Add CryptsetupEngine"
- Since arch64 build failed, this commit be reverted.
This reverts commit
0ec77b9d13e306ef2846c9ef7de8fd3888878e2b.
Conflicts:
server/engine/encryption/cryptsetup-engine.cpp
Change-Id: I166fcafa9aa24e9d3076ec8f6a39041fb42f7719
sangwan.kwon [Thu, 20 Jul 2017 08:03:44 +0000 (17:03 +0900)]
Fix logger usage according to KLAY API changed
Change-Id: I1eca335cfeff003a5dcdd1ecd900d0225e33f68c
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
Krzysztof Jackiewicz [Thu, 18 May 2017 09:40:17 +0000 (11:40 +0200)]
Add support for 512 keys in key-manager
Also use it in extension encryption
Change-Id: Iad9d6ea2653c3e2f5377dc204fa492aadde03e18
Lukasz Pawelczyk [Mon, 15 May 2017 15:34:40 +0000 (17:34 +0200)]
Implementation of ExtensionEncryption with CryptsetupEngine
New approach, let storaged do its work
Change-Id: I565bfed56322bbbb65b877b05a4ae4fe332954c8
Lukasz Pawelczyk [Fri, 12 May 2017 08:46:51 +0000 (10:46 +0200)]
Ext4Tool modifications: detect the filesystem and mkfs
Change-Id: I02444c6f56ee50acc6dde653a28490eadd4e0ee8
Lukasz Pawelczyk [Tue, 9 May 2017 16:07:22 +0000 (18:07 +0200)]
Extension operations added to CLI tool
Change-Id: Ic4ab188fd31508ed5dcd2ddc7bb85c7cff2892c6
Lukasz Pawelczyk [Tue, 9 May 2017 10:44:56 +0000 (12:44 +0200)]
Extension API and its skeleton implementation
This commit adds API for handling SD card formatted as an extension to
an internal memory. It also adds the connection layer for the API
between the library and the server as well as a skeleton
implementation for the API based on the implementation of
external-encryption.
Change-Id: I1a852fa6a484bd884fed95d2965c0a6a5b2e3369
Krzysztof Jackiewicz [Thu, 11 May 2017 12:58:41 +0000 (14:58 +0200)]
Add CryptsetupEngine
Add wrapper class for libcryptsetup
Change-Id: I57e36fe667e1089f75c20b766faf81766a85e166
projects / platform / core / security / ode.git / log