| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2017-10-19 | util: Add better user lookup functions | Joseph Richey | |
| When looking up users in fscrypt, we often want to proceed even if the requested uid doesn't appear to be a valid user on the system. This mainly occurs when a user is deleted, but they still have a login protector on disk. Thus, GetUser() with a bad uid creates a fake user with a pretty placeholder name. The corresponding call sites of util.EffectiveUser are changed (often simplifying logic). Various documentation is updated and typos are fixed. | |||
| 2017-09-29 | security: Add check option to UserKeyringID | Joseph Richey | |
| 2017-09-01 | security: Change user keyring lookup algorithm | Joseph Richey | |
| Now instead of spawning a seperate thread we alternate between changing the euid and ruid to both find the keyring and link it to the process keyring. Note that we also ensure that the user keyring is linked into the root keyring whenever possible. | |||
| 2017-09-01 | security: No more permenant privilege dropping | Joseph Richey | |
| This was creating an issue becasuse fully dropping privileges required spawning a goroutine and using rutime.DropOSThread(). | |||
| 2017-08-30 | pam: Handle holds data for calling and PAM users | Joe Richey | |
| The functions are now changed to (Start|Stop)AsPamUser to indicate that they handle privilege modification and keyring setup. | |||
| 2017-08-23 | pam_fscrypt: Session accounting completed | Joe Richey joerichey@google.com | |
| 2017-08-23 | Added some documentation and improved security API | Joe Richey joerichey@google.com | |
| 2017-08-22 | pam_fscrypt: lock all PAM policies w/ flag | Joe Richey joerichey@google.com | |
| 2017-08-17 | cmd/fscrypt: purge command now clears cache | Joe Richey joerichey@google.com | |
| 2017-07-17 | Small fixes so "make lint" doesn't complain. | Joe Richey joerichey@google.com | |
| 2017-07-17 | pam: Added missing documentation (fix "make lint") | Joe Richey joerichey@google.com | |
| 2017-07-17 | pam: Add Go wrappers around PAM functions | Joe Richey joerichey@google.com | |
| This commit provides a Go interface to the PAM functions. | |||
 |
index : fscrypt.git | |
| Go tool for managing Linux filesystem encryption |
| aboutsummaryrefslogtreecommitdiff |