daniel.zatovic
429afe8fc3
Add valgrind support to more tests.
2022-08-10 07:45:13 +00:00
Milan Broz
abfb5e374f
Remove leftover debug option in test.
2022-08-09 22:54:43 +02:00
daniel.zatovic
f8c79f9a95
Fix valgrind summary leak detection.
...
Currently, only 1-9 leaks are detected. More than 10 leaks are evaluated
as no leak.
2022-08-05 16:38:38 +02:00
Milan Broz
190e4fc033
Always update automake library files if autogen.sh is run.
...
Fixes : #761
2022-08-01 08:47:34 +00:00
Ondrej Kozina
093adfc5f9
Fix user defined moved segment size in LUKS2 decryption.
...
--hotzone-size argument was ignored in cases where actual data size
was less than original LUKS2 data offset.
2022-08-01 07:05:06 +00:00
Milan Broz
a009614191
Set devel version.
2022-07-30 09:29:00 +02:00
Milan Broz
75111d382b
Version 2.5.0.
2022-07-28 17:32:33 +02:00
Yuri Kozlov
1cc6c82f21
po: update ru.po (from translationproject.org)
2022-07-28 17:32:04 +02:00
Frédéric Marchal
2c555bd4a0
po: update fr.po (from translationproject.org)
2022-07-28 17:32:04 +02:00
Roland Illig
3f3f5a6aab
po: update de.po (from translationproject.org)
2022-07-28 17:32:04 +02:00
Ondrej Kozina
c6ed1becd7
Fix bogus conditions in tests.
...
Do not test for dm-crypt versions not supported
by upstream kernels.
2022-07-28 17:18:57 +02:00
Milan Broz
766ac108ec
Fix option descriptions and lists mentioned in man pages.
2022-07-28 10:51:22 +00:00
Milan Broz
94e5d227ce
Fix warning messages if some kernel option is not supported.
...
Thus was broken by commit
"Check if DM create device failed in an early phase."
10b1d6493e
2022-07-28 10:50:55 +00:00
Ondrej Kozina
f96e19147c
Add prompt for LUKS2 decryption with header export.
2022-07-28 12:50:13 +02:00
Ondrej Kozina
05dbf04d82
Add early warning for reencryption of image files.
2022-07-28 12:47:10 +02:00
Ondrej Kozina
b9b7c3a9bd
Add detached header warning in reencrypt man page.
2022-07-28 10:41:20 +00:00
Ondrej Kozina
17e6d2053a
Add mangle tests for LUKS2 decryption with datashift.
2022-07-28 07:57:36 +00:00
Ondrej Kozina
912109ae66
Improve reencryption parameters verification in cli.
...
Try to catch as many invalid parameters as possible
before entering library call.
2022-07-28 07:57:36 +00:00
Ondrej Kozina
25b877a403
Fix bug in reencryption parameters verification.
2022-07-28 07:57:36 +00:00
Milan Broz
8270b72bfc
Use bool instead od int in LUKS1 reencryption context.
2022-07-27 12:01:11 +02:00
Milan Broz
9c0cdcc2f9
Do not use huge LUKS1 reencryption context on heap.
...
This will reduce cryptsetup tool size (~20kB at least).
2022-07-27 11:57:05 +02:00
Milan Broz
1e2cb2d419
Avoid using huge dummy context in LUKS1 reencryption check.
...
This struct is not needed at all, just use NULL.
2022-07-27 11:47:06 +02:00
Guilhem Moulin
3e178caeaf
Document more supported options in cryptsetup-luksResume(8).
...
`cryptsetup luksResume --disable-external-tokens --keyfile-offset 123`
does work but these options weren't documented.
2022-07-21 02:29:05 +02:00
Guilhem Moulin
803957cd3e
Add support for --key-slot in luksResume action.
2022-07-20 20:00:09 +02:00
Milan Broz
bf4bfeac8a
Rename some tests to simplify localtest parsing.
2022-07-18 15:09:28 +02:00
Milan Broz
090dca635a
Add ssh-test-plugin to localtest if RUN_SSH_PLUGIN_TEST is set.
2022-07-18 11:16:23 +02:00
Milan Broz
0369ffdcc1
Rename ssh plugin test to ssh-test-plugin.
...
So we can filter it out in local tests
(*-test means generic tests, *-test-plugin specific plugin tests).
2022-07-18 09:11:23 +02:00
Milan Broz
648a85ed3a
Unify use of tabulators in tests.
2022-07-16 19:14:31 +00:00
Milan Broz
8f3884e0d7
Change default target for Makefile.localtest.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
289d5e5891
Add unit-utils-crypt-test to Makefile.localtest's list of tests.
...
This requires (re-)building the executable with -DNO_CRYPTSETUP_PATH.
Only in that case do we allow the test to run under non-empty
$CRYPTSETUP_PATH.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
b37d04975d
Add compat-test-args to Makefile.localtest's list of tests.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
6578dac2f9
Add blockwise-compat to Makefile.localtest's list of tests.
...
This requires (re-)building `unit-utils-io` with -DNO_CRYPTSETUP_PATH.
Only in that case do we allow the test to run under non-empty
$CRYPTSETUP_PATH.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
dc5f284e42
blockwise-compat: Wait a bit so scsi_debug has a chance to fully initialize.
...
Similar to a76c96d361!386 .
2022-07-16 19:14:31 +00:00
Guilhem Moulin
32149e4ee7
blockwise-compat: Make skip() exit with status 77.
...
This is mostly useful under TESTSUITE_NOSKIP=y.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
0e4857ee81
unit-wipe-test: Make skip() exit with status 77.
...
This is mostly useful under TESTSUITE_NOSKIP=y.
2022-07-16 19:14:31 +00:00
Milan Broz
06dd06ea27
tests: allow unit-wipe-test to run with local tests.
2022-07-16 19:14:31 +00:00
Milan Broz
03eb8f860a
tests: check for differ existence in compat-test.
2022-07-16 19:14:31 +00:00
Guilhem Moulin
fbcef71c41
Pass $(LDFLAGS) when building fake_token_path.so.
...
The Debian tooling sets ‘LDFLAGS = -Wl,-z,relro -Wl,-z,now’ and
complains when anything is built without hardened compiler/linker flags.
Granted this is a non-issue here since fake_token_path.so isn't included
in any binary package, but muting the false positive is arguably no
better fix than honoring $(LDFLAGS) during the build.
2022-07-16 13:51:11 +02:00
Milan Broz
8315ada3b0
Fix wipe unit test if direct-io not available.
...
If test is run in tmpfs, direct-io is not supported.
Thanks Guilhem Moulin for reporting the issue.
2022-07-15 21:50:21 +02:00
Yuri Chornoivan
782dae9292
po: update uk.po (from translationproject.org)
2022-07-15 20:15:48 +02:00
Jakub Bogusz
96c0544527
po: update pl.po (from translationproject.org)
2022-07-15 20:15:48 +02:00
Hiroshi Takekawa
cb7e2c6433
po: update ja.po (from translationproject.org)
2022-07-15 20:15:48 +02:00
Petr Pisar
f0da65cc63
po: update cs.po (from translationproject.org)
2022-07-15 20:15:48 +02:00
Guilhem Moulin
a76c96d361
unit-wipe-test: Wait a bit so scsi_debug has a chance to fully initialize.
...
On my test system `tests/unit-wipe-test` fails (as root) due to a race
condition in add_device():
root@host:~# ./unit-wipe-test
[1] Wipe full file [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[2] Wipe blocks in file [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[ 105.828258] scsi_debug:sdebug_driver_probe: scsi_debug: trim poll_queues to 0. poll_q/nr_hw = (0/1)
[ 105.830450] scsi host2: scsi_debug: version 0191 [20210520]
[ 105.830450] dev_size_mb=8, opts=0x0, submit_queues=1, statistics=0
[ 105.832924] scsi 2:0:0:0: Direct-Access Linux scsi_debug 0191 PQ: 0 ANSI: 7
[ 105.835417] scsi 2:0:0:0: Attached scsi generic sg1 type 0
FAIL Cannot find /dev/.
FAILED backtrace:
48 ./unit-wipe-test
144 main ./unit-wipe-test
[ 105.875131] sd 2:0:0:0: Power-on or device reset occurred
[ 105.876069] sd 2:0:0:0: [sda] 16384 512-byte logical blocks: (8.39 MB/8.00 MiB)
[ 105.877190] sd 2:0:0:0: [sda] Write Protect is off
[ 105.878002] sd 2:0:0:0: [sda] Write cache: enabled, read cache: enabled, supports DPO and FUA
[ 105.879619] sd 2:0:0:0: [sda] Optimal transfer size 524288 bytes
[ 105.914222] sd 2:0:0:0: [sda] Attached SCSI disk
[ 106.866296] sd 2:0:0:0: [sda] Synchronizing SCSI cache
Observe how the “Power-on or device reset occurred” event occurs only
after add_device() has returned. Interestingly, for subsequent runs the
delay appears to be much shorter and doesn't trigger the race condition:
root@host:~# ./unit-wipe-test
[1] Wipe full file [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[2] Wipe blocks in file [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[ 130.639855] scsi_debug:sdebug_driver_probe: scsi_debug: trim poll_queues to 0. poll_q/nr_hw = (0/1)
[ 130.641463] scsi host2: scsi_debug: version 0191 [20210520]
[ 130.641463] dev_size_mb=8, opts=0x0, submit_queues=1, statistics=0
[ 130.643809] scsi 2:0:0:0: Direct-Access Linux scsi_debug 0191 PQ: 0 ANSI: 7
[ 130.645342] sd 2:0:0:0: Power-on or device reset occurred
[ 130.646364] sd 2:0:0:0: [sda] 16384 512-byte logical blocks: (8.39 MB/8.00 MiB)
[ 130.647585] sd 2:0:0:0: [sda] Write Protect is off
[ 130.648428] sd 2:0:0:0: Attached scsi generic sg1 type 0
[ 130.649339] sd 2:0:0:0: [sda] Write cache: enabled, read cache: enabled, supports DPO and FUA
[ 130.650763] sd 2:0:0:0: [sda] Optimal transfer size 524288 bytes
[ 130.682223] sd 2:0:0:0: [sda] Attached SCSI disk
[3] Wipe full block device [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[4] Wipe blocks in block device [0/DIO][0][1048576/DIO][1048576][4194304/DIO][4194304][OK]
[ 137.858283] sd 2:0:0:0: [sda] Synchronizing SCSI cache
This commit adds an optional 2s delay if scsi_debug hasn't shown up in
sysfs after the modprobe call.
2022-07-15 18:13:37 +00:00
Guilhem Moulin
3106b4e2c1
More typo and spelling fixes.
...
Reported by `git ls-tree -rz --name-only | grep -Evz -e '\.(pdf|xz)$' -e
^po/ | xargs -r0 spellintian --`. All changes are
documentation-related (comments, manuals, etc.) except for s/fial/fail/
in tests/unit-wipe-test.
The remaining entry are AFAICT all false positives, mostly annotations
such as `@param name name of xyz` or `struct foo foo`:
$ git ls-tree -rz HEAD --name-only | grep -Evz -e '\.(pdf|xz)$' -e ^po/ | xargs -r0 spellintian --
COPYING.LGPL: "GNU Library Public License" -> "GNU Library General Public License"
autogen.sh: echo echo (duplicate word) -> echo
configure.ac: fi fi (duplicate word) -> fi
docs/v1.7.2-ReleaseNotes: option option (duplicate word) -> option
lib/crypto_backend/cipher_check.c: block block (duplicate word) -> block
lib/libcryptsetup.h: name name (duplicate word) -> name
lib/libcryptsetup.h: type type (duplicate word) -> type
lib/libcryptsetup.h: passphrase passphrase (duplicate word) -> passphrase
lib/libcryptsetup.h: flags flags (duplicate word) -> flags
lib/libcryptsetup.h: password password (duplicate word) -> password
lib/libcryptsetup.h: salt salt (duplicate word) -> salt
lib/libcryptsetup.h: keyslot keyslot (duplicate word) -> keyslot
lib/libcryptsetup.h: priority priority (duplicate word) -> priority
lib/libcryptsetup.h: offset offset (duplicate word) -> offset
lib/libcryptsetup.h: length length (duplicate word) -> length
lib/libcryptsetup.h: keyfile keyfile (duplicate word) -> keyfile
lib/libcryptsetup.h: token token (duplicate word) -> token
lib/libcryptsetup.h: cipher cipher (duplicate word) -> cipher
lib/libcryptsetup.h: size size (duplicate word) -> size
lib/luks2/luks2_json_metadata.c: long long (duplicate word) -> long
lib/luks2/luks2_keyslot_luks2.c: AFEKSize AFEKSize (duplicate word) -> AFEKSize
lib/luks2/luks2_reencrypt.c: alignment alignment (duplicate word) -> alignment
lib/luks2/luks2_reencrypt_digest.c: ptr ptr (duplicate word) -> ptr
lib/luks2/luks2_reencrypt_digest.c: buffer buffer (duplicate word) -> buffer
lib/luks2/luks2_segment.c: min min (duplicate word) -> min
lib/verity/verity_fec.c: blocks blocks (duplicate word) -> blocks
man/cryptsetup.8.adoc: LUKS LUKS (duplicate word) -> LUKS
scripts/cryptsetup.conf.in: root root (duplicate word) -> root
src/Makemodule.am: endif endif (duplicate word) -> endif
src/cryptsetup.c: long long (duplicate word) -> long
src/utils_args.c: long long (duplicate word) -> long
tests/compat-test2: fi fi (duplicate word) -> fi
tests/device-test: echo echo (duplicate word) -> echo
tests/differ.c: long long (duplicate word) -> long
tests/loopaes-test: done done (duplicate word) -> done
tests/luks2-integrity-test: aead aead (duplicate word) -> aead
tests/luks2-reencryption-test: fi fi (duplicate word) -> fi
tests/mode-test: done done (duplicate word) -> done
tests/password-hash-test: cat cat (duplicate word) -> cat
tests/password-hash-test: fi fi (duplicate word) -> fi
tests/unit-wipe.c: long long (duplicate word) -> long
tests/verity-compat-test: done done (duplicate word) -> done
tests/verity-compat-test: fi fi (duplicate word) -> fi
tokens/ssh/cryptsetup-ssh.c: argp argp (duplicate word) -> argp
tokens/ssh/cryptsetup-ssh.c: arguments arguments (duplicate word) -> arguments
(Treated COPYING.LGPL as a false positive too since it's the exact text
from https://www.gnu.org/licenses/old-licenses/lgpl-2.1.html .)
2022-07-15 16:35:02 +02:00
Guilhem Moulin
5d711c000f
Fix minor spelling errors.
...
(Found by Lintian.)
2022-07-15 12:16:39 +02:00
Milan Broz
bf2e48e404
Version 2.5.0-rc1.
2022-07-14 16:00:01 +02:00
Ondrej Kozina
d943b2efb9
Clarify cryptsetup-open options in man page.
2022-07-14 13:51:37 +00:00
Milan Broz
02d5c5ce38
Add 2.5.0-rc1 Release Notes.
2022-07-14 14:10:33 +02:00
Milan Broz
bdc97ef389
Update cryptsetup.pot.
2022-07-14 14:09:45 +02:00
