Ondrej Kozina c6ff9f8bd7 Respect keyslot priority with token based activation. ...

crypt_activate_by_token functions did not respect LUKS2 keyslot
priorities. These calls were able to activate device via keyslot with
CRYPT_SLOT_PRIORITY_IGNORE even when token was set to
CRYPT_ANY_TOKEN. This commit changes the token based activation
so that keyslot with priority ignore is eligible for unlock only
when specific token is selected. Also when activating with token
set to CRYPT_ANY_TOKEN keyslots with higher priority take precedence
over keyslots with normal priority. Keyslot with priority ignore are
correctly ignored when token is CRYPT_ANY_TOKEN.

2021-07-22 13:55:22 +02:00

..

luks2_digest_pbkdf2.c

Update Copyright year.

2021-01-25 22:00:25 +01:00

luks2_digest.c

Check exit value for snprintf where it makes sense.

2021-05-18 22:07:47 +02:00

luks2_disk_metadata.c

Remove unnecessary goto from LUKS2_hdr_version_unlocked.

2021-02-17 10:03:18 +01:00

luks2_internal.h

Unify crypt_resume_by internal code.

2021-02-24 15:57:11 +01:00

luks2_json_format.c

Check exit value for snprintf where it makes sense.

2021-05-18 22:07:47 +02:00

luks2_json_metadata.c

Mark or remove unused parameters.

2021-02-11 11:12:11 +00:00

luks2_keyslot_luks2.c

Avoid possible lock deadlock after error.

2021-07-22 10:31:02 +02:00

luks2_keyslot_reenc.c

Mark or remove unused parameters.

2021-02-11 11:12:11 +00:00

luks2_keyslot.c

Fix broken detection of null cipher in LUKS2.

2021-02-16 18:08:34 +01:00

luks2_luks1_convert.c

Update Copyright year.

2021-01-25 22:00:25 +01:00

luks2_reencrypt.c

Check exit value for snprintf where it makes sense.

2021-05-18 22:07:47 +02:00

luks2_segment.c

Update Copyright year.

2021-01-25 22:00:25 +01:00

luks2_token_keyring.c

Check exit value for snprintf where it makes sense.

2021-05-18 22:07:47 +02:00

luks2_token.c

Respect keyslot priority with token based activation.

2021-07-22 13:55:22 +02:00

luks2.h

Refactor LUKS2 token activation.

2021-04-15 21:41:06 +02:00