fscrypt.git/cmd/fscrypt/errors.go, branch 0.2.1 Go tool for managing Linux filesystem encryption cmd/fscrypt: Add explanations for keyring failures 2017-09-01T07:56:44+00:00 Joseph Richey joerichey94@gmail.com 2017-09-01T07:56:44+00:00 0dfbbf62fae3d4051dd5f0686835ac393f8a0247 Now the user is persented with help when they try to access a keyring that isn't theirs or try to use fscrypt without a user keyring linked into the session keyring. 
Now the user is persented with help when they try to access a keyring
that isn't theirs or try to use fscrypt without a user keyring linked
into the session keyring.
Fixed linter issues 2017-08-31T18:29:30+00:00 Joe Richey joerichey@google.com 2017-08-31T18:29:30+00:00 5586bc35fbb33f20c38f52285c19c015b804ea94 






cmd/fscrypt: Add --user flag for running as root
2017-08-31T01:16:16+00:00

Joe Richey
joerichey@google.com

2017-08-31T01:16:16+00:00

11b31826334bc3faa4d4c7ee05a3b2996a88c969

The --user flag can now be used to have the targe user (the one whose
keyring and password will be used in fscrypt) be different than the
calling user. Very usefull for things like

	sudo fscrypt purge /media/joerichey/usb --user=joerichey

which will now have privileges to drop caches, but will properly clear
the keys from the user's keyring.





The --user flag can now be used to have the targe user (the one whose
keyring and password will be used in fscrypt) be different than the
calling user. Very usefull for things like

	sudo fscrypt purge /media/joerichey/usb --user=joerichey

which will now have privileges to drop caches, but will properly clear
the keys from the user's keyring.







crypto: Handle when "ulimit -l" is too low
2017-08-29T18:17:10+00:00

Joe Richey
joerichey94@gmail.com

2017-08-29T18:17:10+00:00

7568ca2aab4a3266eb95cbda64298e2292743c7b












cmd/fscrypt: purge command now clears cache
2017-08-18T05:49:44+00:00

Joe Richey joerichey@google.com
joerichey@google.com

2017-08-16T01:11:29+00:00

151e8965fa3a9c8f65e316430f9df0fa763fb02d












cmd/fscrypt: fix help message for ErrKeyFileLength
2017-08-07T16:56:19+00:00

Eric Biggers
ebiggers@google.com

2017-08-07T16:51:20+00:00

ddc15e139fb8748ad06722944be1968c0d55803d

The key file for the raw_key source is required to contain a wrapping
key (32 bytes), not a policy key (64 bytes).





The key file for the raw_key source is required to contain a wrapping
key (32 bytes), not a policy key (64 bytes).







cmd/fscrypt: more nits to fix "make lint"
2017-07-18T06:20:51+00:00

Joe Richey joerichey@google.com
joerichey@google.com

2017-07-18T06:18:49+00:00

e4cb9c6cef2d75cdc5ca62777d2fa0e44f813fd4












cmd/fscrypt: username and login token fix
2017-07-18T00:30:46+00:00

Joe Richey joerichey@google.com
joerichey@google.com

2017-07-18T00:30:46+00:00

1a4a020ad5766fce3b3ad719d85593a3e8159733

The commit changes how we get the username representation, and uses the
new pam API for checking the proposed login token.





The commit changes how we get the username representation, and uses the
new pam API for checking the proposed login token.







Finalize import paths and documentation
2017-06-28T22:15:21+00:00

Joe Richey joerichey@google.com
joerichey@google.com

2017-06-28T20:57:55+00:00

2c52eca8727df744d093703bbcbd87fc39d57d30

This commit changes all the internal import paths from `fscrypt/foo` to
`github.com/google/fscrypt/foo` so that it can be built once we release
externaly. The documentation in README.md is updated accordingly.

Also, the README has a note noting that we do not make any guarantees
about project stability before 1.0 (when it ships with Ubuntu).

Change-Id: I6ba86e442c74057c8a06ba32a42e17f94833e280





This commit changes all the internal import paths from `fscrypt/foo` to
`github.com/google/fscrypt/foo` so that it can be built once we release
externaly. The documentation in README.md is updated accordingly.

Also, the README has a note noting that we do not make any guarantees
about project stability before 1.0 (when it ships with Ubuntu).

Change-Id: I6ba86e442c74057c8a06ba32a42e17f94833e280







cmd/fscrypt: add metadata command
2017-06-28T22:15:21+00:00

Joe Richey joerichey@google.com
joerichey@google.com

2017-06-21T17:27:59+00:00

8392dfe41f76538aec79231855fd9a952963bdf8

This command adds in the "fscrypt metadata" command. This command allows
advanced users to manipulate the metadata directly instead of just
creating a policy or protector as an option when encrypting a directory.

As some of these methods will require certain flags, error handling for
this case is also added. As the change passphrase method must indicate
when a old vs new password is necessary, additional KeyFuncs are added
which add this indicator.

Change-Id: Ibc92872088fae078df3c0eebd4f0cfcb7252d781





This command adds in the "fscrypt metadata" command. This command allows
advanced users to manipulate the metadata directly instead of just
creating a policy or protector as an option when encrypting a directory.

As some of these methods will require certain flags, error handling for
this case is also added. As the change passphrase method must indicate
when a old vs new password is necessary, additional KeyFuncs are added
which add this indicator.

Change-Id: Ibc92872088fae078df3c0eebd4f0cfcb7252d781