cryptsetup

mirror of https://gitlab.com/cryptsetup/cryptsetup.git synced 2025-12-12 11:20:10 +01:00

Author	SHA1	Message	Date
Milan Broz	8030bd0593	Support activation options for error handling modes in dm-verity. This patch adds veritysetup support for these Linux kernel dm-verity options: --ignore-corruption - dm-verity just logs detected corruption --restart-on-corruption - dm-verity restarts the kernel if corruption is detected If the options above are not specified, default behaviour for dm-verity remains. Default is that I/O operation fails with I/O error if corrupted block is detected. --ignore-zero-blocks - Instructs dm-verity to not verify blocks that are expected to contain zeroes and always return zeroes directly instead. NOTE that these options could have serious security or functional impacts, do not use them without assessing the risks!	2016-05-19 12:58:39 +02:00
Milan Broz	f238e8c075	Add 1.6.8 release notes.	2015-09-08 12:26:54 +02:00
Milan Broz	def397d0c8	Update libcryptsetup.h comments.	2015-08-26 16:10:10 +02:00
Milan Broz	8aee4f95fb	Clarify using of VeraCrypt modes in libcryptsetup.h.	2015-02-25 10:55:24 +01:00
Milan Broz	1f2d8de95f	Support VeraCrypt devices (TrueCrypt extension). Add CRYPT_TCRYPT_VERA_MODES libcryptswtup flag and --veracrypt option. Fixes issue#245.	2015-02-24 22:04:15 +01:00
Milan Broz	4f7b413638	Add low-level performance options for dmcrypt tuning. The patch adds the two options --perf-same_cpu_crypt --perf-submit_from_crypt_cpus that set the same named options inside dmcrypt (available in Linux kernel 3.20 and later).	2015-02-20 16:46:34 +01:00
Milan Broz	3add769b51	Add deprecation warning about internal terminal password query.	2014-06-28 13:49:26 +02:00
Milan Broz	bb8dbfdf5b	Update author name.	2014-06-23 21:40:12 +02:00
Milan Broz	2e97d8f8e8	Prepare version 1.6.4.	2014-02-27 14:36:13 +01:00
Milan Broz	f3e398afc5	Rewrite cipher benchmark loop. Using getrusage seems toi give not adequate precision, so use clock_gettime and try to scale buffer size a bit on high performance systems. If it still fail, return ERANGE error instead calculating completely unreliable numbers. Should fix Issue#186.	2013-12-01 10:55:35 +01:00
Milan Broz	e600024908	Fix passphrase pool overflow for TCRYPT device id passphrase > pool size. TCRYPT format limits passphrase length to max. 64 characters so simply error in this case.	2013-02-14 14:37:50 +01:00
Milan Broz	5cb5aeba36	Fix doxygen doc for libcryptsetup.h.	2013-01-14 00:22:50 +01:00
Milan Broz	29f21208a0	Change License from GPLv2 only to GPLv2+ ("or any later"). Agreed by all copyright authors.	2012-12-29 11:33:54 +01:00
Milan Broz	e4c4049741	Add basic support for system TCRYPT device. Rename option hidden to tcrypt-hidden.	2012-12-22 22:34:09 +01:00
Milan Broz	83f02e6682	Add copyright line for files I have written or modified.	2012-12-21 16:40:33 +01:00
Milan Broz	05af3a3383	Move change key into library (add crypt_keyslot_change_by_passphrase). This change is useful mainly in FIPS mode, where we cannot extract volume key directly from libcryptsetup.	2012-12-07 15:33:47 +01:00
Milan Broz	bd494d23c5	Add PBKDF2 benchmark.	2012-12-05 20:35:42 +01:00
Milan Broz	5aef0809d4	Add TCRYPT documentation,	2012-12-02 21:32:49 +01:00
Milan Broz	17a8e85cb8	TCRYPT: add backup header option.	2012-11-26 13:15:08 +01:00
Milan Broz	0996a43dbb	TCRYPT: parse cipher chain on init.	2012-11-22 17:28:03 +01:00
Milan Broz	911ffe81f0	TCRYPT: implement (most of) legacy modes support.	2012-11-19 21:25:57 +01:00
Milan Broz	ecf993834c	TCRYPT: support keyfiles	2012-11-19 21:25:26 +01:00
Milan Broz	3cbb43a73a	Add basic TCRYPT library.	2012-11-19 21:24:59 +01:00
Milan Broz	db97d3d8c8	Add simple cipher benchmarking.	2012-11-19 21:22:43 +01:00
Milan Broz	f45d4d0755	Add crypt_keyslot_area() API call. Useful if you want to analyze/wipe area of disk used for keyslot from external tool.	2012-09-11 11:59:06 +02:00
Milan Broz	3532be48c7	Fix libcryptsetup.h docs for verity type.	2012-07-09 18:47:05 +02:00
Milan Broz	b402f087d7	Verity salt size is really uint16 in sb and uint32 internally.	2012-06-11 13:30:41 +02:00
Milan Broz	697c6c9324	Prepare new superblock format.	2012-06-09 22:02:06 +02:00
Milan Broz	6d07be898d	Enhance status of active device.	2012-06-09 18:28:00 +02:00
Milan Broz	4b0b82adc5	Rewrite veritysetup to use libcryptsetup.	2012-06-07 00:18:49 +02:00
Milan Broz	65c4c62f78	Include stddef.h in libcryptsetup.h (size_t definition).	2012-05-28 09:44:35 +02:00
Milan Broz	ba7d9967a8	Allow "private" activation (skip some udev global rules) flag.	2012-05-02 16:51:58 +02:00
Milan Broz	f720affe8c	Relax --shared test, allow mapping even for overlapping segments. Support shared flag for LUKS devices (dangerous).	2012-05-02 00:58:54 +02:00
Milan Broz	8818eb2687	Fix requested_type description in header.	2012-04-19 09:47:58 +02:00
Milan Broz	ee8425b836	Version 1.4.2. Add header and copyright for header files.	2012-04-02 22:03:05 +02:00
Milan Broz	bd047d03ef	Add repair command and API for repairing known LUKS header problems.	2012-04-02 21:18:22 +02:00
Milan Broz	9511c91a79	Add --keyfile-offset and --new-keyfile-offset to cryptsetup. Add resume_by_keyfile_offset, add_kesylot_by_keyfile_offset and activate_by_keyfile_offset to API. Thanks to Matthew Monaco <matthew.monaco@0x01b.net>	2012-03-29 18:35:07 +02:00
Milan Broz	1b982af46f	Fix typo in iteration time api call. (To not break API keep old set_iterarion_time alias...) git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@675 36d66b0a-2a48-0410-832c-cd162a569da5	2011-11-06 22:44:52 +00:00
Milan Broz	94fb0b7781	Fix flag description comment. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@638 36d66b0a-2a48-0410-832c-cd162a569da5	2011-10-10 18:09:26 +00:00
Milan Broz	8c54d938ac	Add crypt_last_error() API call (using crypt context). git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@623 36d66b0a-2a48-0410-832c-cd162a569da5	2011-10-09 13:45:53 +00:00
Milan Broz	4e9fa4d2bb	Fix some doxygen docs warnings and mistakes. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@621 36d66b0a-2a48-0410-832c-cd162a569da5	2011-10-08 20:27:54 +00:00
Milan Broz	f54c7939f0	Add doxygen formatted documentation for libcryptsetup API (thanks to okozina). git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@617 36d66b0a-2a48-0410-832c-cd162a569da5	2011-10-08 19:26:52 +00:00
Milan Broz	f80b506b65	* Allow different data offset setting for detached header. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@576 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-20 17:39:38 +00:00
Milan Broz	f7f9e291f4	* Add --header option for detached metadata (on-disk LUKS header) device. * Add crypt_init_by_name_and_header() and crypt_set_data_device() to API. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@575 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-20 17:39:26 +00:00
Milan Broz	261d0d05a5	Add crypt_get_iv_offset() function to API. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@573 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-18 13:03:15 +00:00
Milan Broz	9c71c74d59	Add --enable-discards option to allow discards/TRIM requests. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@572 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-17 22:35:40 +00:00
Milan Broz	913ef7c07e	Rewrite dm query/create function backend. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@570 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-17 22:35:17 +00:00
Milan Broz	a1306ed01c	Remove old API functions (all functions using crypt_options). git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@561 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-07 14:32:42 +00:00
Milan Broz	d44d07c9eb	* Add --shared option for creating non-overlapping crypt segments. * Add shared flag to libcryptsetup api. * Fix plain crypt format parameters to include size option (API change). git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@559 36d66b0a-2a48-0410-832c-cd162a569da5	2011-07-01 16:38:58 +00:00
Milan Broz	2072adf705	Also support --skip option for loopaesOpen. git-svn-id: https://cryptsetup.googlecode.com/svn/trunk@481 36d66b0a-2a48-0410-832c-cd162a569da5	2011-03-22 20:51:50 +00:00

1 2

73 Commits