fscrypt.git, branch v0.3.4 Go tool for managing Linux filesystem encryption v0.3.4 2023-01-31T06:59:20+00:00 Eric Biggers ebiggers@google.com 2023-01-31T06:59:20+00:00 f91f8e4fcb59d6db80e5150530a65fe39a836eb2 






Add a NEWS file
2023-01-31T06:59:20+00:00

Eric Biggers
ebiggers@google.com

2023-01-31T06:59:20+00:00

a72760aa794e7714496074a0264314d26fa3b4c8

Copy the GitHub release notes into a NEWS.md file so that the release
notes are included in the actual git repo.  This way, they aren't hidden
away in GitHub, where they require an internet connection to access and
will be lost if GitHub ever goes away.  This also makes the release
notes be properly versioned; GitHub allows past release notes to be
edited, and there doesn't seem to be any record of what changed.

Finally, this allows packages to install the release notes into
/usr/share/doc/$pkgname/, as is the usual convention.





Copy the GitHub release notes into a NEWS.md file so that the release
notes are included in the actual git repo.  This way, they aren't hidden
away in GitHub, where they require an internet connection to access and
will be lost if GitHub ever goes away.  This also makes the release
notes be properly versioned; GitHub allows past release notes to be
edited, and there doesn't seem to be any record of what changed.

Finally, this allows packages to install the release notes into
/usr/share/doc/$pkgname/, as is the usual convention.







ci.yml: upgrade to actions/checkout@v3
2023-01-31T06:59:20+00:00

Eric Biggers
ebiggers@google.com

2023-01-31T06:59:20+00:00

d7ec9dc02acaf6bfd6c79928eb665506c4b6c63c

This avoids the following warning from GitHub Actions:

    Node.js 12 actions are deprecated. Please update the following
    actions to use Node.js 16: actions/checkout@v2.





This avoids the following warning from GitHub Actions:

    Node.js 12 actions are deprecated. Please update the following
    actions to use Node.js 16: actions/checkout@v2.







Only use up to MaxParallelism CPUs
2022-12-04T22:36:56+00:00

Joe Richey
joerichey@google.com

2022-08-27T08:01:31+00:00

5c7c3bcbcf1d18842e8dd9d2c346acdfb06fcf23

This prevents panics on 256-core systems, and has a 300-core system use
255 CPUs (the max) rather than 44 CPUs (300 casted to a uint8).

Signed-off-by: Joe Richey <joerichey@google.com>
[ebiggers: also set TruncationFixed at the end of getHashingCosts()]
Signed-off-by: Eric Biggers <ebiggers@google.com>





This prevents panics on 256-core systems, and has a 300-core system use
255 CPUs (the max) rather than 44 CPUs (300 casted to a uint8).

Signed-off-by: Joe Richey <joerichey@google.com>
[ebiggers: also set TruncationFixed at the end of getHashingCosts()]
Signed-off-by: Eric Biggers <ebiggers@google.com>







Increase checks for invalid HashingCosts
2022-12-04T22:36:56+00:00

Joe Richey
joerichey@google.com

2022-08-27T07:32:56+00:00

9d96413911725504aaf4f4f1b00d492ae21282de

Signed-off-by: Joe Richey <joerichey@google.com>
[ebiggers: moved the new checks from PassphraseHash to CheckValidity]
Signed-off-by: Eric Biggers <ebiggers@google.com>





Signed-off-by: Joe Richey <joerichey@google.com>
[ebiggers: moved the new checks from PassphraseHash to CheckValidity]
Signed-off-by: Eric Biggers <ebiggers@google.com>







Add truncation_fixed field to HashingCosts
2022-12-04T22:36:56+00:00

Joe Richey
joerichey@google.com

2022-08-27T06:40:44+00:00

7ae302aa0dba1d1ea4bbeffae1917792722460c8

This allows us to fix the bug where Parallelism is inadvertantly
truncated to 8 bits in a backwards compatible way.

Signed-off-by: Joe Richey <joerichey@google.com>





This allows us to fix the bug where Parallelism is inadvertantly
truncated to 8 bits in a backwards compatible way.

Signed-off-by: Joe Richey <joerichey@google.com>







Update file comment
2022-12-04T22:36:56+00:00

Joe Richey
joerichey@google.com

2022-08-27T06:35:33+00:00

30c4e497c609f0244cc9f98bc004c13a324c9f54

We now create the `*pb.go` files via the makefile instead of though
`go generate`.

Signed-off-by: Joe Richey <joerichey@google.com>





We now create the `*pb.go` files via the makefile instead of though
`go generate`.

Signed-off-by: Joe Richey <joerichey@google.com>







Stop using deprecated package io/ioutil
2022-12-04T22:07:39+00:00

Eric Biggers
ebiggers@google.com

2022-12-04T21:27:43+00:00

02875cef9010633b6689cfd1e2ceec9107b756b4

Since Go 1.16 (which recently became the minimum supported Go version
for this project), the package io/ioutil is deprecated in favor of
equivalent functionality in the io and os packages.  staticcheck warns
about this.  Address all the warnings by switching to the non-deprecated
replacement functions.





Since Go 1.16 (which recently became the minimum supported Go version
for this project), the package io/ioutil is deprecated in favor of
equivalent functionality in the io and os packages.  staticcheck warns
about this.  Address all the warnings by switching to the non-deprecated
replacement functions.







pam_fscrypt: filter out irrelevant policies earlier
2022-12-04T21:05:00+00:00

Eric Biggers
ebiggers@google.com

2022-12-03T06:13:01+00:00

5373b314473b08f13372ab55b551738307a85fbd

If a session is opened for a user twice and the second doesn't have the
AUTHTOK data, pam_fscrypt prints an error message that says it failed to
unlock a protector because AUTHTOK data is missing.  This is misleading
because the protector and its associated policies were already unlocked
by the first session.

To avoid this, move the check for whether the policy is provisioned or
not into policiesUsingProtector().  Also do the same for CloseSession.





If a session is opened for a user twice and the second doesn't have the
AUTHTOK data, pam_fscrypt prints an error message that says it failed to
unlock a protector because AUTHTOK data is missing.  This is misleading
because the protector and its associated policies were already unlocked
by the first session.

To avoid this, move the check for whether the policy is provisioned or
not into policiesUsingProtector().  Also do the same for CloseSession.







Make pam_fscrypt.so support the unlock_only option
2022-10-20T03:47:57+00:00

Eric Biggers
ebiggers@google.com

2022-10-18T17:12:02+00:00

295c503a77f53b87305bba310e37cbdd9b516936

Now that it's been requested by users, bring back the "unlock_only"
option, which was originally proposed as part of
https://github.com/google/fscrypt/pull/281 but was dropped in the final
version of that pull request.

Resolves https://github.com/google/fscrypt/issues/357





Now that it's been requested by users, bring back the "unlock_only"
option, which was originally proposed as part of
https://github.com/google/fscrypt/pull/281 but was dropped in the final
version of that pull request.

Resolves https://github.com/google/fscrypt/issues/357