Milan Broz
a274cd3a74
Update TODO.
2014-06-17 21:55:42 +02:00
Milan Broz
6be21469fb
Use internel PBKDF2 in Nettle library for Nettle crypto backend.
...
This also requires Nettle >= 2.6.
2014-06-17 21:54:14 +02:00
Milan Broz
e0d3ff8aeb
Fix non-header context init for device in use.
2014-06-14 23:04:43 +02:00
Milan Broz
0614ab6b07
Allow simple status of crypt device without providing metadata header.
...
If device is activated, we can provide some information from
active kernel parameters instead of header.
2014-06-14 17:42:57 +02:00
Milan Broz
49e55c0f42
Fix keyfile offset parameter for loopaes.
...
Fixes Issue#216.
2014-06-14 14:35:27 +02:00
Milan Broz
be4edbb460
Update es.po.
2014-06-13 16:51:59 +02:00
Milan Broz
4d30237f7a
Handle error better in storage wrapper.
2014-06-01 22:02:32 +02:00
Milan Broz
a3c0f6784b
Process LUKS keyslots in userspace through kernel crypto wrapper.
...
This allow LUKS handling without requiring root privilege.
The dmcrypt device-mapper is used only for device activation now.
2014-06-01 21:34:21 +02:00
Milan Broz
6d4c2db3b1
Fix mode test for nonexisting table.
2014-06-01 20:57:45 +02:00
Milan Broz
1436f2a0a0
Add wrapper for cipher block size query.
...
There is no better way for now without loading crypto modules.
2014-06-01 20:56:17 +02:00
wagner
e6a46bf827
sync with Wiki version
2014-05-02 08:30:22 +02:00
Milan Broz
9563aa33c8
Fix PBKDF2 for crypto backens which does not support long HMAC keys.
...
(Or it rehases key in every iteration.)
- Kernel backens seems not to support >20480 HMAC key
- NSS is slow (without proper key reset)
Add some test vectors (commented out by default).
2014-04-13 19:34:50 +02:00
Milan Broz
6225c901fe
Use proper images with mentioned hashes in luks test.
2014-04-13 19:34:06 +02:00
Milan Broz
cad0cbf0c8
Fix integer type warnings in debug log.
2014-04-13 16:41:29 +02:00
Milan Broz
1fc441f091
Include images in tarball ans use xz format.
2014-04-13 16:29:21 +02:00
Milan Broz
22849ccd11
Add luks1 compat image testing.
...
This test use long keyfile to test proper KDF functionality.
2014-04-13 16:21:11 +02:00
Cristian Rodríguez
a809224ec7
Fix all format string issues found by the attribute format patch
2014-04-12 08:52:20 +02:00
Cristian Rodríguez
ae23ecb9b2
annotate two function with __attribute__ ((format (printf...
...
Helps to find format strings bugs..
2014-04-12 08:52:06 +02:00
Milan Broz
0db77f3ace
Update po files.
2014-04-06 18:58:35 +02:00
Milan Broz
779c80c581
Fix some spelling error found by lintian.
...
Thanks to Jonas Meurer.
2014-03-04 20:27:15 +01:00
wagner
00ced59c1a
Sync with Wiki
2014-03-01 14:55:15 +01:00
wagner
20595f4b14
Sync with latest WIKI version of the FAQ
2014-03-01 14:42:12 +01:00
Milan Broz
2e97d8f8e8
Prepare version 1.6.4.
2014-02-27 14:36:13 +01:00
Milan Broz
7effba0f71
Fix return codes from LUKS_set_key.
2014-02-27 14:19:01 +01:00
Milan Broz
2ad69eba90
Verify new passphrase by default in luksChangeKey and luksAddKey.
2014-02-27 13:26:05 +01:00
Milan Broz
4d218e4cbd
Update de.po.
2014-02-24 21:57:04 +01:00
Milan Broz
a0346a09ce
Update download directory.
2014-02-21 21:44:29 +01:00
Milan Broz
f6e85be3ed
Update pl.po.
2014-02-21 21:42:22 +01:00
Milan Broz
04e921846f
Update po files.
2014-02-19 19:53:40 +01:00
Milan Broz
e37f3728d7
Add 1.6.4 Release notes.
2014-02-16 10:45:08 +01:00
Milan Broz
2062ece2ab
Some new items for TODO list.
2014-02-16 10:15:13 +01:00
Milan Broz
a5fa6f1015
Remove trailing spaces from man pages.
2014-02-16 10:05:39 +01:00
wagner
9bdd5bf4fe
clarified hash use for -h and -c in the man-page.
2014-02-13 06:54:58 +01:00
Milan Broz
110ce5607e
Update fi.po.
2014-02-08 19:08:26 +01:00
Milan Broz
78f938b0e9
Add old cryptsetup udev rules (for archive reasons).
...
Do not install these until you know what are you doing.
2014-02-05 17:22:07 +01:00
Milan Broz
ad2f50316f
Fix memory leak in Nettle crypto backend.
2014-02-05 17:17:55 +01:00
Milan Broz
cf534f3759
Implement erase command.
2014-02-05 17:17:12 +01:00
Milan Broz
75c105f853
Do not retry to test gcrypt whirlpool bug.
2014-01-21 20:55:21 +01:00
Milan Broz
680eb76e45
Add internal shortcut for flawed whirlpool hash in gcrypt.
2014-01-19 20:31:48 +01:00
Milan Broz
e364041b40
Add --keep-key to cryptsetup-reencrypt.
...
This allows change of LUKS header hash (and iteration count) without
the need to reencrypt the whole data area.
2014-01-19 15:29:12 +01:00
wagner
de37457a75
sync with Wiki-Version
2014-01-18 20:39:09 +01:00
Milan Broz
057db3b3b3
Do not use gcrypt KDF in 1.6.0, it is slow.
...
I hope 1.6.1 will have patch included (already in devel).
2014-01-18 13:09:51 +01:00
Milan Broz
461011ad2a
Add test for flawed Whirlpool hash to gcrypt backend.
...
Will be used later, for now add info to debug.
Ref: http://lists.gnupg.org/pipermail/gcrypt-devel/2014-January/002889.html
2014-01-18 13:05:56 +01:00
Milan Broz
aa7346bb36
Allow to use --disable-gcrypt-pbkdf2.
...
Unfortunately gcrypt PBKDF2 in libgcrypt 1.6.0 is very slow.
Until patch is accepted, let's allow switch back to internal kdf
implementation.
Fixes Issue#199, also see
https://bugzilla.redhat.com/show_bug.cgi?id=1051733
2014-01-15 20:06:12 +01:00
Milan Broz
5206543902
Fix api test keyfile write.
2014-01-12 13:39:15 +01:00
Milan Broz
7f93a49cc3
Support --tries option even for TCRYPT devices in cryptsetup.
2014-01-12 11:37:21 +01:00
Milan Broz
bec86e3d5a
Support discard option even for TCRYPT devices.
2014-01-11 22:13:37 +01:00
Axel Lin
3ba95a822f
Link against -lrt for clock_gettime
...
Fix undefined reference to `clock_gettime' error.
This is required since commit f3e398afc5http://autobuild.buildroot.net/results/9ca/9cad1cf49ee6b5c58d8260ee33beef2e6c1ada4d/build-end.log
Signed-off-by: Axel Lin <axel.lin@ingics.com >
2014-01-01 21:13:09 +01:00
Milan Broz
486ec44c3e
Fix previous commit (do not print warning even for wrong passphrase).
2014-01-01 21:11:12 +01:00
Milan Broz
8dc4877697
Fix error message when some algoritmhs are not available.
...
Fixes http://www.saout.de/pipermail/dm-crypt/2013-December/003721.html
2013-12-29 09:56:23 +01:00
