fscrypt.git/security/keyring.go, branch v0.2.5

Fix various typos and grammatical errors (#141)

2019-09-09T02:46:59Z

These were found by a combination of manual review and a custom script that checks for common errors. Also removed an outdated sentence from the comment for setupBefore().

feat(spell-check): add make command for spell check.

2018-09-01T19:47:27Z

* Remove spelling mistakes in the repository * Add travis script to check for typos. * Add command to Makefile to check for typos. * Fixes #71

Ensure keyring privilege changes are reversible

2018-08-23T18:00:34Z

This change makes sure that, when we set the ruid and euid in order to get the user keyring linked into the current process keyring, we will always be able to reverse these changes (using a suid of 0). This fixes an issue where "su " would result in a system error when called by an unprivileged user. It also explains exactly how and why we are making these privilege changes.

Fix lint

2017-09-29T10:08:03Z

security: Add check option to UserKeyringID

2017-09-29T09:52:56Z

security: Change user keyring lookup algorithm

2017-09-01T07:53:07Z

Now instead of spawning a seperate thread we alternate between changing the euid and ruid to both find the keyring and link it to the process keyring. Note that we also ensure that the user keyring is linked into the root keyring whenever possible.

security: Error if privilege reset goes wrong

2017-08-31T19:09:26Z

Fixed linter issues

2017-08-31T18:29:30Z

security: Rewrite of keryings and permissions

2017-08-31T00:51:05Z

The keyring lookup functions no longer read from /proc/keys. Now they simply spawn a thread, drop privs, and check with GetKeyringID and KEY_SPEC_USER_KEYRING. See userKeyringID() for more info. The privileges functions have also been changed. Now the concept of setting privileges is seperate form the concept of setting up the keyrings.

security: fscrypt now possesses the user keyring

2017-08-24T06:46:54Z