fscrypt.git, branch v0.2.1 Go tool for managing Linux filesystem encryption Merge pull request #56 from google/panics 2017-09-01T09:23:53+00:00 Joseph Richey joerichey@google.com 2017-09-01T09:23:53+00:00 0879b8ffcbbac29c282084eea2888194371113fa Fixed failures in PAM module 
Fixed failures in PAM module
 cmd/fscrypt: Add explanations for keyring failures 2017-09-01T07:56:44+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:56:44+00:00 0dfbbf62fae3d4051dd5f0686835ac393f8a0247 Now the user is persented with help when they try to access a keyring that isn't theirs or try to use fscrypt without a user keyring linked into the session keyring. 
Now the user is persented with help when they try to access a keyring
that isn't theirs or try to use fscrypt without a user keyring linked
into the session keyring.
cmd/fscrypt: Check that keyrings are setup 2017-09-01T07:55:22+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:55:22+00:00 079ee257d27e28b166965f1fa0136f694598b6c7 Chaning the --user flag to (optionally) check for a proper keyring setup allows us to fail early in cases where we need a working keyring. 
Chaning the --user flag to (optionally) check for a proper keyring setup
allows us to fail early in cases where we need a working keyring.
security: Change user keyring lookup algorithm 2017-09-01T07:53:07+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:53:07+00:00 1ce72a7367967152948dbe332ea8d9834f194c27 Now instead of spawning a seperate thread we alternate between changing the euid and ruid to both find the keyring and link it to the process keyring. Note that we also ensure that the user keyring is linked into the root keyring whenever possible. 
Now instead of spawning a seperate thread we alternate between changing
the euid and ruid to both find the keyring and link it to the process
keyring. Note that we also ensure that the user keyring is linked into
the root keyring whenever possible.
security: No more permenant privilege dropping 2017-09-01T07:50:42+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:50:42+00:00 d5f64c1ecd8f13f01681d0a18b8f3174ff9bd225 This was creating an issue becasuse fully dropping privileges required spawning a goroutine and using rutime.DropOSThread(). 
This was creating an issue becasuse fully dropping privileges required
spawning a goroutine and using rutime.DropOSThread().
pam_fscrypt: PAM module no longer crashes on panic 2017-09-01T07:47:34+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:47:34+00:00 3432f5757293dda39b9fa936a717160cd788ab68 Now the offending panic will just be logged and the module will fail. This is important as to not crash the login process. 
Now the offending panic will just be logged and the module will fail.
This is important as to not crash the login process.
Merge pull request #52 from google/keyrings 2017-08-31T21:51:55+00:00 Joseph Richey joerichey@google.com 2017-08-31T21:51:55+00:00 b04d7ef31dc2e21f055b1b656efb9511e72db6c6 Changes to the keyrings interface, corresponding UI changes, and misc changes 
Changes to the keyrings interface, corresponding UI changes, and misc changes
 Merge pull request #54 from google/uuid 2017-08-31T21:51:37+00:00 Joseph Richey joerichey@google.com 2017-08-31T21:51:37+00:00 5285a8c451ef660f932e9f1823ad7da52ad25b74 Use `/dev/disk/by-uuid` to get UUID links to other filesystems 
Use `/dev/disk/by-uuid` to get UUID links to other filesystems
filesystem: libblkid -> search /dev/disk/by-uuid 2017-08-31T21:05:29+00:00 Joe Richey joerichey@google.com 2017-08-31T21:05:29+00:00 0fcb6601ca66b9e4c2349392663fe9baa30dbbc7 






security: Error if privilege reset goes wrong
2017-08-31T19:09:26+00:00

Joe Richey
joerichey@google.com

2017-08-31T19:09:26+00:00

f1bd511fff8e411687001bd8e76e8a41c9f5ff41