eessppeelllloo/cryptsetup
1
0
Fork 0
mirror of https://gitlab.com/cryptsetup/cryptsetup.git synced 2025-12-11 02:40:01 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,140 Commits 14 Branches 78 Tags
30af820205ea986690e895ba565889c56c9530ce
Commit Graph

175 Commits

Author SHA1 Message Date
Ondrej Kozina
7fc006b63b Add interrupt safe read_lseek_blockwise function. 2015-12-01 10:52:42 +01:00
Ondrej Kozina
42ccddeff3 Add read_buffer and write_buffer functions. 
Introduce functions for proper I/O handling. These functions
are able to deal with interrupts and partial I/O.
 2015-12-01 10:44:02 +01:00
Milan Broz
b789b011a2 Fix some compiler warnings introduced recently. 2015-01-15 12:27:34 +01:00
Milan Broz
f7b61b2617 Prevent compiler to optiize-out memset for on-stack variables. 
Also see
https://cryptocoding.net/index.php/Coding_rules#Prevent_compiler_interference_with_security-critical_operations

The used code is inspired by the code in Blake2 implementation.
 2015-01-11 20:26:45 +01:00
Milan Broz
bb8dbfdf5b Update author name. 2014-06-23 21:40:12 +02:00
Cristian Rodríguez
ae23ecb9b2 annotate two function with __attribute__ ((format (printf... 
Helps to find format strings bugs..
 2014-04-12 08:52:06 +02:00
Milan Broz
c57071a43a Fix TCRYPT system encryption mapping for multiple partitions. 
Since this commit, one can use partition directly as device parameter.

Should fix Issue#183 and Issue#188.
 2013-12-07 23:58:56 +01:00
Milan Broz
3be96efe0b Map TCRYPT system encryption through partition. 
Kernel doesn't allow mapping through whle device if some
other partition an the device is used.

So first try to find partition device which match
system encryption (== TCRYPT partition system encryption)
and use that.
 2013-06-30 10:46:21 +02:00
Milan Broz
99a2486b09 Simplify sysfs helpers. 2013-06-30 09:05:43 +02:00
Cristian Rodríguez
1349efa34d Fix buildsytem to always include config.h. 
- config.h must always be the first file to be included
- Use AM_CFLAGS and AM_LDFLAGS consistently and properly.

(Modified to disable build without largefile support etc
by Milan Broz <gmazyland@gmail.com>)
 2013-06-23 17:14:33 +02:00
Milan Broz
42b0ab437a Print a warning if system encryption is used and device is a partition. 
System encryption hav metadata in space located ouside of
partition itself.

Ideally the check should be automatic but for virtualized systems
(where a partition could be "whole device" for another sustem this
can be dangerous.
 2013-06-23 15:26:45 +02:00
Milan Broz
6190ad928d Support device/file images if O_DIRECT cannot be used (1.5.1). 
On some filesystems (like tmpfs) O_DIRECT cannot be used.
So just try to open device without O_DIRECT in the second try.
 2012-12-29 15:33:20 +01:00
Milan Broz
29f21208a0 Change License from GPLv2 only to GPLv2+ ("or any later"). 
Agreed by all copyright authors.
 2012-12-29 11:33:54 +01:00
Milan Broz
83f02e6682 Add copyright line for files I have written or modified. 2012-12-21 16:40:33 +01:00
Milan Broz
db97d3d8c8 Add simple cipher benchmarking. 2012-11-19 21:22:43 +01:00
Milan Broz
4882f70040 Replace round_up macro with function. 2012-08-28 13:11:02 +02:00
Milan Broz
65f975655c New device access backend. 
Allocate loop device late (only when real block device needed).
Rework underlying device/file access functions.
Move all device (and ioctl) access to utils_device.c.

Allows using file where appropriate without allocation loop device.
 2012-08-12 22:00:17 +02:00
Milan Broz
4abfd38169 Remove open device debugging feature (no longer needed). 2012-06-26 12:55:14 +02:00
Milan Broz
4b8f91d0d9 Remove some compilation warnings. 2012-06-10 18:56:04 +02:00
Milan Broz
697c6c9324 Prepare new superblock format. 2012-06-09 22:02:06 +02:00
Milan Broz
cd8826618d Warn if block exceeds page size. 2012-06-07 15:09:58 +02:00
Milan Broz
4b0b82adc5 Rewrite veritysetup to use libcryptsetup. 2012-06-07 00:18:49 +02:00
Milan Broz
20eea64334 Add version string to crypto backend. 
Move fips check to libcryptsetup.
Clean up internal.h use.
 2012-05-27 00:48:10 +02:00
Milan Broz
45e0942755 Add --enable-fips for linking with fipscheck library. 
Initialize binary and library selfcheck if running in FIPS mode.

(Actually available only on Fedora/Red Hat distros.)
 2012-05-21 14:09:57 +02:00
Milan Broz
0f4431d0bb Split salt from other requests in RNG backend. 2012-05-20 22:32:25 +02:00
Milan Broz
ee8425b836 Version 1.4.2. 
Add header and copyright for header files.
 2012-04-02 22:03:05 +02:00
Milan Broz
8c54d938ac Add crypt_last_error() API call (using crypt context). 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@623 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-10-09 13:45:53 +00:00
Milan Broz
d7960b9307 Simplify global error call. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@622 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-10-09 13:45:38 +00:00
Milan Broz
19bde65f5b Remove hints for old kernels. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@616 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-10-08 16:23:54 +00:00
Milan Broz
d2fbc963ca If device is not rotational, do not use Gutmann wipe method. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@615 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-10-08 16:17:08 +00:00
Milan Broz
4a295781d1 Silent gcc warnings with -Wconst-qual switch. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@598 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-08-15 16:32:52 +00:00
Milan Broz
f80b506b65 * Allow different data offset setting for detached header. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@576 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-07-20 17:39:38 +00:00
Milan Broz
261d0d05a5 Add crypt_get_iv_offset() function to API. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@573 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-07-18 13:03:15 +00:00
Milan Broz
913ef7c07e Rewrite dm query/create function backend. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@570 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-07-17 22:35:17 +00:00
Milan Broz
d44d07c9eb * Add --shared option for creating non-overlapping crypt segments. 
* Add shared flag to libcryptsetup api.
* Fix plain crypt format parameters to include size option (API change).

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@559 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-07-01 16:38:58 +00:00
Milan Broz
4f657c17a2 Move DM helpers to separate header. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@530 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-05-24 11:19:12 +00:00
Milan Broz
2755f37266 Move devpath scan to separate file. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@529 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-05-24 11:19:00 +00:00
Milan Broz
231a2e932d Fix possible leaks in blockwise read/write code. 
Fix lseek_write blockwise function (not used in that mode anyway).

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@511 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-04-18 10:52:15 +00:00
Milan Broz
c31854e2b3 Check for plain64 IV support in DM backend. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@477 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-22 08:51:00 +00:00
Milan Broz
25512d89ae Clean up plain password hashing, do not ignore error in crypto backend. 
(New backend can fail there).

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@451 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-13 23:50:49 +00:00
Milan Broz
13f4feaaf7 Add backing device info into status. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@445 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-12 20:23:25 +00:00
Milan Broz
be3448fb8a Separate loop handling from internal code. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@444 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-12 20:23:16 +00:00
Milan Broz
d9ba34693f Add support for automatic loop device use (image infile etc). 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@443 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-11 19:04:37 +00:00
Milan Broz
0165301357 Better detects dm-ioctl secure flag using version before use. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@435 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-03-05 21:59:21 +00:00
Milan Broz
66bea4b3be Add dm flags for query for features. 
Move adjust device helper to utils.
Fix locking memory message.

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@416 36d66b0a-2a48-0410-832c-cd162a569da5
 2011-01-25 18:48:41 +00:00
Milan Broz
d04d9f336a Switch to new crypto backend interface. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@408 36d66b0a-2a48-0410-832c-cd162a569da5
 2010-12-31 14:33:43 +00:00
Milan Broz
b13b4b7654 Remove uneeded function prototype. 
git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@374 36d66b0a-2a48-0410-832c-cd162a569da5
 2010-11-15 17:03:43 +00:00
Milan Broz
b7caa72acd * Disallow mapping of device which is already in use (mapped or mounted). 
* Disallow luksFormat on device in use.

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@361 36d66b0a-2a48-0410-832c-cd162a569da5
 2010-11-05 17:53:33 +00:00
Milan Broz
dfe77be748 * Implement --use-random and --use-urandom for luksFormat to allow setting of RNG for volume key generator. 
* Add crypt_set_rng_type() and crypt_get_rng_type() to API.

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@354 36d66b0a-2a48-0410-832c-cd162a569da5
 2010-10-27 15:35:23 +00:00
Milan Broz
3ae161df5d Move get_key to common code, simplify verify flags. 
(This code need rewrite anyway).

git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@352 36d66b0a-2a48-0410-832c-cd162a569da5
 2010-10-26 22:08:02 +00:00