fscrypt.git/README.md, branch v0.3.0 Go tool for managing Linux filesystem encryption Stop generating and uploading coverage in CI 2021-03-31T22:55:39+00:00 Joe Richey joerichey@google.com 2021-03-31T22:46:18+00:00 2fa66887a238311a026f44b40ec1b1d876ec3cfd This is currently broken, and we don't really use the findings. Signed-off-by: Joe Richey <joerichey@google.com> 
This is currently broken, and we don't really use the findings.

Signed-off-by: Joe Richey <joerichey@google.com>
README: improve PAM configuration documentation (again) 2021-03-08T23:20:08+00:00 Eric Biggers ebiggers@google.com 2021-03-08T23:20:08+00:00 36d7ec1c2ddd367865a7438b8c602ad37fb229e8 Make some more corrections: - pam-config-framework isn't actually Ubuntu-specific but actually applies to Debian and any Debian derivative. - The pam-config-framework file is indeed installed by `make install`, just not into the correct location. - On Debian (and Debian derivatives), the PAM configuration isn't actually part of the 'fscrypt' package but rather 'libpam-fscrypt'. - Clarify where to add the pam_fscrypt.so session hook. 
Make some more corrections:

- pam-config-framework isn't actually Ubuntu-specific but actually
  applies to Debian and any Debian derivative.

- The pam-config-framework file is indeed installed by `make install`,
  just not into the correct location.

- On Debian (and Debian derivatives), the PAM configuration isn't
  actually part of the 'fscrypt' package but rather 'libpam-fscrypt'.

- Clarify where to add the pam_fscrypt.so session hook.
README: make it clear that pam_fscrypt also handles locking 2021-03-08T23:20:08+00:00 Eric Biggers ebiggers@google.com 2021-03-08T23:20:08+00:00 cf19ab80b0eb24859494b3c12a43873d8eec3d73 There are several mentions of pam_fscrypt handling unlocking directories. Make sure to mention locking alongside this. 
There are several mentions of pam_fscrypt handling unlocking
directories.  Make sure to mention locking alongside this.
pam_fscrypt: make "lock_policies" the default behavior 2021-03-08T23:20:08+00:00 Eric Biggers ebiggers@google.com 2021-03-08T23:20:08+00:00 b7e898f01bcae17174fcd928599d0d933655db9b All pam_fscrypt configuration guides that I'm aware of say to use the "lock_policies" option for the pam_fscrypt.so session hook. The Debian/Ubuntu pam-config-framework config file has it too. Make locking the default behavior, since this is what everyone wants. Existing configuration files that contain the "lock_policies" option will continue to work, but that option won't do anything anymore. (We could add an option "unlock_only" to restore the old default behavior, but it's not clear that it would be useful. So for simplicity, leave it out for now.) 
All pam_fscrypt configuration guides that I'm aware of say to use the
"lock_policies" option for the pam_fscrypt.so session hook.  The
Debian/Ubuntu pam-config-framework config file has it too.

Make locking the default behavior, since this is what everyone wants.

Existing configuration files that contain the "lock_policies" option
will continue to work, but that option won't do anything anymore.

(We could add an option "unlock_only" to restore the old default
behavior, but it's not clear that it would be useful.  So for
simplicity, leave it out for now.)
pam_fscrypt: decide cache dropping behavior automatically 2021-03-08T23:20:08+00:00 Eric Biggers ebiggers@google.com 2021-03-08T23:20:08+00:00 28e4999ebd9221a71488d715d9f1182b494216d8 Configuring whether pam_fscrypt drops caches or not isn't really something the user should have to do, and it's also irrelevant for v2 encryption policies (the default on newer systems). It's better to have pam_fscrypt automatically decide whether it needs to drop caches or not. Do this by making pam_fscrypt check whether any encryption policy keys are being removed from a user keyring (rather than from a filesystem keyring). If so, it drops caches; otherwise it doesn't. This supersedes the "drop_caches" option, which won't do anything anymore. 
Configuring whether pam_fscrypt drops caches or not isn't really
something the user should have to do, and it's also irrelevant for v2
encryption policies (the default on newer systems).  It's better to have
pam_fscrypt automatically decide whether it needs to drop caches or not.

Do this by making pam_fscrypt check whether any encryption policy keys
are being removed from a user keyring (rather than from a filesystem
keyring).  If so, it drops caches; otherwise it doesn't.  This
supersedes the "drop_caches" option, which won't do anything anymore.
Avoid using the word "whitelist" 2021-01-25T19:38:55+00:00 Eric Biggers ebiggers@google.com 2021-01-25T19:12:01+00:00 634f57465048c698381513cdc2ee205d4f04e538 






README: Fix badge image
2020-11-26T09:34:54+00:00

Joe Richey
joerichey@google.com

2020-11-26T09:25:12+00:00

cc933cdb51cb14dadd72217842e7a27854d63982

Workflow names are case-sensitive

Signed-off-by: Joe Richey <joerichey@google.com>





Workflow names are case-sensitive

Signed-off-by: Joe Richey <joerichey@google.com>







Switch from Travis CI to GitHub Actions
2020-11-26T09:08:36+00:00

Eric Biggers
ebiggers@google.com

2020-11-21T23:29:26+00:00

0692c00a2af75a5ec6c26e58adb37fa152912dce

travis-ci.org is being shut down, so switch to GitHub Actions.

It should be mostly equivalent, but I did drop functionality in a couple
cases:

- Publishing release binaries.  I don't think providing Linux binaries
  is useful, since people build their own anyway.  So I left this out.

- Build and testing on ppc64le.  GitHub Actions only natively supports
  x86.  I tried uraimo/run-on-arch-action, which uses Docker and QEMU
  user-mode emulation, but the fscrypt tests can't be run because
  QEMU user-mode emulation doesn't support all the needed system calls.





travis-ci.org is being shut down, so switch to GitHub Actions.

It should be mostly equivalent, but I did drop functionality in a couple
cases:

- Publishing release binaries.  I don't think providing Linux binaries
  is useful, since people build their own anyway.  So I left this out.

- Build and testing on ppc64le.  GitHub Actions only natively supports
  x86.  I tried uraimo/run-on-arch-action, which uses Docker and QEMU
  user-mode emulation, but the fscrypt tests can't be run because
  QEMU user-mode emulation doesn't support all the needed system calls.







README.md: add table of contents
2020-11-10T04:53:42+00:00

Eric Biggers
ebiggers@google.com

2020-11-10T04:43:48+00:00

66b49d9054dfc13f187ee92add608fd815edbb9f












README.md: recommend 'sudo make install PREFIX=/usr' on Ubuntu (#244)
2020-08-07T23:37:05+00:00

Eric Biggers
ebiggers@google.com

2020-08-07T23:37:05+00:00

95ad4868ac1f52f3d9c923e24f3d8c45dce6bb03

Ubuntu's PAM configuration framework only recognizes files in /usr, not
/usr/local.  So for installs from source, unfortunately we have to
recommend installing to /usr, despite this not being conventional.

Resolves https://github.com/google/fscrypt/issues/240




Ubuntu's PAM configuration framework only recognizes files in /usr, not
/usr/local.  So for installs from source, unfortunately we have to
recommend installing to /usr, despite this not being conventional.

Resolves https://github.com/google/fscrypt/issues/240