platform/upstream/cryptsetup.git
11 years agoTCRYPT: support proper device removal
Milan Broz [Thu, 22 Nov 2012 13:19:43 +0000 (14:19 +0100)]
TCRYPT: support proper device removal

11 years agomake default LUKS PBKDF2 iteration time configurable
Daniel Kahn Gillmor [Tue, 20 Nov 2012 18:43:28 +0000 (13:43 -0500)]
make default LUKS PBKDF2 iteration time configurable

11 years agoTCRYPT: implement (most of) legacy modes support.
Milan Broz [Sun, 18 Nov 2012 17:31:17 +0000 (18:31 +0100)]
TCRYPT: implement (most of) legacy modes support.

11 years agoTCRYPT: support keyfiles
Milan Broz [Fri, 16 Nov 2012 13:57:05 +0000 (14:57 +0100)]
TCRYPT: support keyfiles

11 years agoAdd basic TCRYPT library.
Milan Broz [Mon, 12 Nov 2012 22:31:32 +0000 (23:31 +0100)]
Add basic TCRYPT library.

11 years agoAdd simple cipher benchmarking.
Milan Broz [Thu, 8 Nov 2012 15:36:00 +0000 (16:36 +0100)]
Add simple cipher benchmarking.

11 years agoAdd kernel skcipher backend.
Milan Broz [Wed, 7 Nov 2012 15:22:23 +0000 (16:22 +0100)]
Add kernel skcipher backend.

11 years agoAdd CRC32 implementation.
Milan Broz [Fri, 26 Oct 2012 16:29:40 +0000 (18:29 +0200)]
Add CRC32 implementation.

11 years agoMove PBKDF2 into crypto backend wrapper.
Milan Broz [Fri, 26 Oct 2012 16:17:06 +0000 (18:17 +0200)]
Move PBKDF2 into crypto backend wrapper.

Implement new KDF bechmark check.
Use internal openssl kdf (and prepare gcrypt one).

11 years agoAdd devel version.
Milan Broz [Tue, 16 Oct 2012 20:35:14 +0000 (22:35 +0200)]
Add devel version.

11 years agoRelnote addition.
Milan Broz [Tue, 16 Oct 2012 20:00:19 +0000 (22:00 +0200)]
Relnote addition.

11 years agoUpdate some po files.
Milan Broz [Sun, 14 Oct 2012 09:25:25 +0000 (11:25 +0200)]
Update some po files.

11 years agoVersion 1.5.1.
Milan Broz [Fri, 12 Oct 2012 12:18:56 +0000 (14:18 +0200)]
Version 1.5.1.

11 years agoCheck read & seek return codes, use uint64 offset.
Milan Broz [Fri, 12 Oct 2012 11:18:22 +0000 (13:18 +0200)]
Check read & seek return codes, use uint64 offset.

Signed-off-by: Arno Wagner <wagner.arno@gmail.com>
Signed-off-by: Milan Broz <gmazyland@gmail.com>
11 years agoadded keyslot checker Redesigned to only use public definitions
Arno Wagner [Mon, 8 Oct 2012 02:08:18 +0000 (04:08 +0200)]
added keyslot checker Redesigned to only use public definitions

Signed-off-by: Arno Wagner <wagner.arno@gmail.com>
11 years agoIncrease library and package version.
Milan Broz [Wed, 19 Sep 2012 13:57:56 +0000 (15:57 +0200)]
Increase library and package version.

11 years agoFix some problems found by Coverity static analysis.
Milan Broz [Wed, 19 Sep 2012 11:58:00 +0000 (13:58 +0200)]
Fix some problems found by Coverity static analysis.

11 years agosynced with wiki
Arno Wagner [Tue, 18 Sep 2012 21:30:38 +0000 (23:30 +0200)]
synced with wiki

11 years agoAdd crypt_keyslot_area() API call.
Milan Broz [Tue, 11 Sep 2012 09:59:06 +0000 (11:59 +0200)]
Add crypt_keyslot_area() API call.

Useful if you want to analyze/wipe area of disk used for keyslot
from external tool.

11 years agofixed typeo 94 -> 95 printable ASCII chars
Arno Wagner [Sun, 9 Sep 2012 00:51:58 +0000 (02:51 +0200)]
fixed typeo 94 -> 95 printable ASCII chars

11 years agoFix luksHeaderBackup for v1.0 (very old) headers and add some basic test.
Milan Broz [Thu, 30 Aug 2012 13:39:30 +0000 (15:39 +0200)]
Fix luksHeaderBackup for v1.0 (very old) headers and add some basic test.

11 years agoAdd some offset/keyslot offset checks.
Milan Broz [Thu, 30 Aug 2012 12:08:34 +0000 (14:08 +0200)]
Add some offset/keyslot offset checks.

11 years agoProper handle error in device block get.
Milan Broz [Tue, 28 Aug 2012 11:30:17 +0000 (13:30 +0200)]
Proper handle error in device block get.

11 years agoRemove unused includes.
Milan Broz [Tue, 28 Aug 2012 11:16:03 +0000 (13:16 +0200)]
Remove unused includes.

11 years agoReplace round_up macro with function.
Milan Broz [Tue, 28 Aug 2012 11:11:02 +0000 (13:11 +0200)]
Replace round_up macro with function.

11 years agoMove LUKS AF data sector alignment to AF helper function.
Milan Broz [Mon, 27 Aug 2012 14:52:19 +0000 (16:52 +0200)]
Move LUKS AF data sector alignment to AF helper function.

11 years agoAlways zero memory in crypt_safe_alloc.
Milan Broz [Mon, 27 Aug 2012 13:47:40 +0000 (15:47 +0200)]
Always zero memory in crypt_safe_alloc.

11 years agoUse AF_split_size() to calculate split data size.
Milan Broz [Mon, 27 Aug 2012 13:26:22 +0000 (15:26 +0200)]
Use AF_split_size() to calculate split data size.

11 years agoGet rid of confusing LUKS_PHDR_SIZE macro.
Milan Broz [Mon, 27 Aug 2012 12:45:21 +0000 (14:45 +0200)]
Get rid of confusing LUKS_PHDR_SIZE macro.

11 years agolib/utils_crypt: optimize seek to keyfile-offset
Dave Reisner [Fri, 24 Aug 2012 21:45:25 +0000 (17:45 -0400)]
lib/utils_crypt: optimize seek to keyfile-offset

Avoid using unbuffered reads when "seeking" to a keyfile offset. This is
abysmally slow when the key is hidden at the end of a large device.
Instead, try to actually call lseek, falling back on reading in chunks
of BUFSIZ bytes until the desired offset is reached.

Command line:

  cryptsetup luksOpen /dev/vdc1 home \
      --keyfile /dev/vdd --keyfile-size 4096 --keyfile-offset 123456789

Before:

  real   0m25.589s
  user   0m7.030s
  sys    0m18.479s

After:

  real   0m4.464s
  user   0m4.253s
  sys    0m0.157s

11 years agoDo not scan rotational flag for non-block devices / file images.
Milan Broz [Mon, 27 Aug 2012 10:42:15 +0000 (12:42 +0200)]
Do not scan rotational flag for non-block devices / file images.

11 years agoadded prominent note to use LUKS (not plain dm-crypt) unless
Arno Wagner [Fri, 24 Aug 2012 17:00:47 +0000 (19:00 +0200)]
added prominent note to use LUKS (not plain dm-crypt) unless
understanding the crypto well.

11 years agosynced with wiki
Arno Wagner [Fri, 24 Aug 2012 15:02:59 +0000 (17:02 +0200)]
synced with wiki

11 years agoSet context for DM log for all DM backend entries.
Milan Broz [Tue, 14 Aug 2012 14:53:02 +0000 (16:53 +0200)]
Set context for DM log for all DM backend entries.

Try to handle error if run as non-root user better.

11 years agoAdd context to DM helpers.
Milan Broz [Tue, 14 Aug 2012 14:25:21 +0000 (16:25 +0200)]
Add context to DM helpers.

(To be used later.)

11 years agoModprobe kernel modules early in api-test.
Milan Broz [Tue, 14 Aug 2012 13:54:31 +0000 (15:54 +0200)]
Modprobe kernel modules early in api-test.

11 years agoUse common utils_tools.c for all tools.
Milan Broz [Mon, 13 Aug 2012 16:31:26 +0000 (18:31 +0200)]
Use common utils_tools.c for all tools.

Unify tool environment and deduplicate code.

11 years agoRemove debug line.
Milan Broz [Mon, 13 Aug 2012 15:16:37 +0000 (17:16 +0200)]
Remove debug line.

11 years agoPrint better error message if device is read-only etc.
Milan Broz [Mon, 13 Aug 2012 14:54:41 +0000 (16:54 +0200)]
Print better error message if device is read-only etc.

11 years agoCreate hash image if doesn't exist in veritysetup format.
Milan Broz [Sun, 12 Aug 2012 20:49:42 +0000 (22:49 +0200)]
Create hash image if doesn't exist in veritysetup format.

11 years agoNew device access backend.
Milan Broz [Sun, 12 Aug 2012 19:56:09 +0000 (21:56 +0200)]
New device access backend.

Allocate loop device late (only when real block device needed).
Rework underlying device/file access functions.
Move all device (and ioctl) access to utils_device.c.

Allows using file where appropriate without allocation loop device.

11 years agoFix dracut example.
Milan Broz [Fri, 3 Aug 2012 13:27:59 +0000 (15:27 +0200)]
Fix dracut example.

11 years agoupdate to current WIKI version
Arno Wagner [Thu, 2 Aug 2012 13:58:36 +0000 (15:58 +0200)]
update to current WIKI version

11 years agoFix some issues in dict example.
Milan Broz [Thu, 2 Aug 2012 10:51:28 +0000 (12:51 +0200)]
Fix some issues in dict example.

11 years agoBe sure verity module is loaded in test.
Milan Broz [Mon, 23 Jul 2012 13:00:28 +0000 (15:00 +0200)]
Be sure verity module is loaded in test.

11 years agoBetter define comment lines for for dict example.
Milan Broz [Fri, 20 Jul 2012 13:36:16 +0000 (15:36 +0200)]
Better define comment lines for for dict example.

11 years agoClear dict example a little bit.
Milan Broz [Fri, 20 Jul 2012 12:51:51 +0000 (14:51 +0200)]
Clear dict example a little bit.

11 years agoAdd example of dictionary search.
Milan Broz [Thu, 19 Jul 2012 22:15:20 +0000 (00:15 +0200)]
Add example of dictionary search.

11 years agoUse fixed dir (old dracut lib...)
Milan Broz [Thu, 12 Jul 2012 19:11:33 +0000 (21:11 +0200)]
Use fixed dir (old dracut lib...)

11 years agoAdd key option to dracut example.
Milan Broz [Thu, 12 Jul 2012 17:21:22 +0000 (19:21 +0200)]
Add key option to dracut example.

11 years agoSkip multikey if not supported (e.g. FIPS mode - md5 for IV not available).
Milan Broz [Thu, 12 Jul 2012 10:53:26 +0000 (12:53 +0200)]
Skip multikey if not supported (e.g. FIPS mode - md5 for IV not available).

11 years agoVersion 1.5.0.
Milan Broz [Tue, 10 Jul 2012 18:20:27 +0000 (20:20 +0200)]
Version 1.5.0.

11 years agoUpdate example files for new dracut.
Milan Broz [Tue, 10 Jul 2012 17:59:44 +0000 (19:59 +0200)]
Update example files for new dracut.

11 years agoUpdate release notes.
Milan Broz [Tue, 10 Jul 2012 11:09:35 +0000 (13:09 +0200)]
Update release notes.

11 years agoVersion 1.5.0.
Milan Broz [Tue, 10 Jul 2012 10:54:22 +0000 (12:54 +0200)]
Version 1.5.0.

11 years agoAdd example of dracut module for reencryption.
Milan Broz [Tue, 10 Jul 2012 10:53:32 +0000 (12:53 +0200)]
Add example of dracut module for reencryption.

11 years agoAdd module load to test.
Milan Broz [Tue, 10 Jul 2012 08:15:40 +0000 (10:15 +0200)]
Add module load to test.

11 years agoFix library name for FIPS check.
Milan Broz [Mon, 9 Jul 2012 17:30:25 +0000 (19:30 +0200)]
Fix library name for FIPS check.

11 years agoAdd link to upstream tracker.
Milan Broz [Mon, 9 Jul 2012 17:04:39 +0000 (19:04 +0200)]
Add link to upstream tracker.

11 years agoFix libcryptsetup.h docs for verity type.
Milan Broz [Mon, 9 Jul 2012 16:47:05 +0000 (18:47 +0200)]
Fix libcryptsetup.h docs for verity type.

11 years agoAdd some verity api test.
Milan Broz [Mon, 9 Jul 2012 16:09:51 +0000 (18:09 +0200)]
Add some verity api test.
Fix set_data_device bug it uncovered.
Fix api-test for nonFIPS hash.

11 years agoRemove utils_debug from pot.
Milan Broz [Sun, 8 Jul 2012 18:29:30 +0000 (20:29 +0200)]
Remove utils_debug from pot.

11 years agoFix password length unit in configure.
Milan Broz [Thu, 28 Jun 2012 08:16:49 +0000 (10:16 +0200)]
Fix password length unit in configure.

11 years agoUse resume instead of restart.
Milan Broz [Wed, 27 Jun 2012 19:28:11 +0000 (21:28 +0200)]
Use resume instead of restart.

11 years agoPass help text to popt already translated
Petr Písař [Tue, 26 Jun 2012 18:41:16 +0000 (20:41 +0200)]
Pass help text to popt already translated

popt does not process the text registered by poptSetOtherOptionHelp()
through gettext on its own. Application must do it.

11 years agoUpdate po files.
Milan Broz [Tue, 26 Jun 2012 12:33:08 +0000 (14:33 +0200)]
Update po files.

11 years agoRemove open device debugging feature (no longer needed).
Milan Broz [Tue, 26 Jun 2012 10:55:14 +0000 (12:55 +0200)]
Remove open device debugging feature (no longer needed).

11 years agoSwitch to use unit suffix for --reduce-device-size option.
Milan Broz [Mon, 25 Jun 2012 14:06:43 +0000 (16:06 +0200)]
Switch to use unit suffix for --reduce-device-size option.

11 years agoAdd --device-size option for reencryption tool.
Milan Broz [Mon, 25 Jun 2012 13:34:11 +0000 (15:34 +0200)]
Add --device-size option for reencryption tool.

11 years agoVersion 1.5.0-rc2.
Milan Broz [Wed, 20 Jun 2012 09:29:46 +0000 (11:29 +0200)]
Version 1.5.0-rc2.

11 years agoFix verity test.
Milan Broz [Tue, 19 Jun 2012 16:40:38 +0000 (18:40 +0200)]
Fix verity test.

(Writing just one byte from urandom means, that there is still
high probability the byte will be the same and it will cause
no data corruption :-)

11 years agoRename without_activation to test_passphrase.
Milan Broz [Tue, 19 Jun 2012 15:37:31 +0000 (17:37 +0200)]
Rename without_activation to test_passphrase.

11 years agoAdd directio to reenc test.
Milan Broz [Tue, 19 Jun 2012 14:04:20 +0000 (16:04 +0200)]
Add directio to reenc test.

11 years agoRemove old dm-verity superblock handling.
Milan Broz [Tue, 19 Jun 2012 13:57:05 +0000 (15:57 +0200)]
Remove old dm-verity superblock handling.

11 years agoRemove some redundant brackets.
Milan Broz [Tue, 19 Jun 2012 13:49:56 +0000 (15:49 +0200)]
Remove some redundant brackets.

11 years agoAdd --without-activation option for luksOpen (check passphrase only).
Milan Broz [Tue, 19 Jun 2012 13:34:36 +0000 (15:34 +0200)]
Add --without-activation option for luksOpen (check passphrase only).

11 years agoFix luks-header-from-active to not require header on device and add UUID setting.
Milan Broz [Tue, 19 Jun 2012 12:43:10 +0000 (14:43 +0200)]
Fix luks-header-from-active to not require header on device and add UUID setting.

11 years agoRemove dubious compilation warning.
Milan Broz [Tue, 19 Jun 2012 10:49:16 +0000 (12:49 +0200)]
Remove dubious compilation warning.

11 years agoFix man page makefile.
Milan Broz [Tue, 19 Jun 2012 08:33:48 +0000 (10:33 +0200)]
Fix man page makefile.

11 years agoUpdate po files.
Milan Broz [Tue, 19 Jun 2012 07:56:55 +0000 (09:56 +0200)]
Update po files.

11 years agoRemove redundant condition in overflow test.
Milan Broz [Mon, 18 Jun 2012 15:12:41 +0000 (17:12 +0200)]
Remove redundant condition  in overflow test.

11 years agoFix hex_to_bytes and add it to common utils.
Milan Broz [Mon, 18 Jun 2012 15:09:48 +0000 (17:09 +0200)]
Fix hex_to_bytes and add it to common utils.

11 years agoIntroduce cryptsetup-reencrypt - experimental offline LUKS reencryption tool.
Milan Broz [Mon, 18 Jun 2012 14:06:14 +0000 (16:06 +0200)]
Introduce cryptsetup-reencrypt - experimental offline LUKS reencryption tool.

11 years agoAdd simple examples to man page.
Milan Broz [Mon, 18 Jun 2012 13:52:36 +0000 (15:52 +0200)]
Add simple examples to man page.

11 years agoFix malloc of 0 size.
Milan Broz [Mon, 18 Jun 2012 13:03:47 +0000 (15:03 +0200)]
Fix malloc of 0 size.

11 years agoIf in progress, just use normal path (check passphrase).
Milan Broz [Mon, 18 Jun 2012 12:52:35 +0000 (14:52 +0200)]
If in progress, just use normal path (check passphrase).

11 years agoAdd ability to encrypt plain device.
Milan Broz [Mon, 18 Jun 2012 12:29:22 +0000 (14:29 +0200)]
Add ability to encrypt plain device.

11 years agoAdd some simple reenc test.
Milan Broz [Sun, 17 Jun 2012 19:59:29 +0000 (21:59 +0200)]
Add some simple reenc test.

11 years agoSanity check for some options.
Milan Broz [Sun, 17 Jun 2012 17:17:43 +0000 (19:17 +0200)]
Sanity check for some options.

11 years agoAdd possibility to change key size (optionally by shrinking device).
Milan Broz [Sun, 17 Jun 2012 13:09:34 +0000 (15:09 +0200)]
Add possibility to change key size (optionally by shrinking device).

11 years agoDo not touch new LUKS headers.
Milan Broz [Sun, 17 Jun 2012 10:44:53 +0000 (12:44 +0200)]
Do not touch new LUKS headers.

11 years agoRename to crypsetup-reencrypt.
Milan Broz [Sun, 17 Jun 2012 10:12:17 +0000 (12:12 +0200)]
Rename to crypsetup-reencrypt.
Add man page.
Add configure option.

11 years agoCheck device exclusively.
Milan Broz [Sun, 17 Jun 2012 00:11:41 +0000 (02:11 +0200)]
Check device exclusively.

11 years agoFix signit if reencryption not yet started.
Milan Broz [Sat, 16 Jun 2012 22:43:45 +0000 (00:43 +0200)]
Fix signit if reencryption not yet started.

11 years agoUse ETA in progress report.
Milan Broz [Sat, 16 Jun 2012 22:06:30 +0000 (00:06 +0200)]
Use ETA in progress report.

11 years agoAdd fsync option.
Milan Broz [Sat, 16 Jun 2012 19:49:45 +0000 (21:49 +0200)]
Add fsync option.

11 years agoFix directio aligned buffer.
Milan Broz [Sat, 16 Jun 2012 19:13:47 +0000 (21:13 +0200)]
Fix directio aligned buffer.

11 years agoFix directio (again).
Milan Broz [Sat, 16 Jun 2012 18:59:21 +0000 (20:59 +0200)]
Fix directio (again).

11 years agoFix some compile warnings.
Milan Broz [Sat, 16 Jun 2012 16:47:09 +0000 (18:47 +0200)]
Fix some compile warnings.

11 years agoDo not use global context.
Milan Broz [Sat, 16 Jun 2012 16:28:49 +0000 (18:28 +0200)]
Do not use global context.