Jaromil
1d815a1f7e
More refactoring of how keys, passwords and secrets are stored
...
includes a working loopback and tempfile cleanup in endgame()
and several changes in order to avoid saving anything on disk
WIP addressing #124 and #126
2014-08-25 21:07:47 +02:00
Jaromil
f794b78795
Merge pull request #123 from gdrooid/i18n
...
Install and use translations.
2014-08-19 18:48:49 +02:00
Jaromil
31ab169e2f
Merge pull request #122 from gdrooid/master
...
Substitute /dev/null redirection with closing stdin/err. Cleanup some obsolete functions.
2014-08-17 21:10:18 +02:00
Jaromil
7bd21e4419
remove newline from decrypted key's secret, fixes #125
2014-08-17 21:05:22 +02:00
gdrooid
22f3ab09e5
Close std(out|err) instead of redirecting to /dev/null.
2014-08-15 01:43:52 +02:00
gdrooid
6c4bc38e6a
Small fixes/Remove dead options
2014-08-15 01:43:52 +02:00
Jaromil
9d718d0ebb
signal traps for endgame cleanups
2014-08-14 09:58:15 +02:00
gdrooid
7d434787b6
Install and use translations.
2014-08-11 23:01:58 +02:00
Jaromil
f7b83de6ca
cleanup implicitly exhumed key and move get_lukskey() closer to caller funcs
2014-08-06 11:21:08 +02:00
Jaromil
5158c380fe
refactoring of the way password and keys are handled internally
...
this change uses an hidden global variable within tomb to store the
decrypted key material, avoiding using one tempfile in RAM, avoiding
running the decryption more than once (which means sanity for KDF
usage) and overall simplifying the code also avoiding duplicates.
2014-08-06 07:43:25 +02:00
Jaromil
534476a849
fixes to piping keys stdin/out in image steganography
...
Also started refactoring code around key handling and
added some documentation.
2014-08-05 17:05:49 +02:00
Jaromil
b7e89e5246
fix to exhume key (steg) to correctly print on stdout when -k -
...
addressing issue #118
2014-08-03 19:54:43 +02:00
Jaromil
b425f82f99
Merge pull request #114 from gdrooid/master
...
Indent everything with spaces
2014-07-21 20:06:07 +02:00
Jaromil
da349afeda
Security fix for use in multi-user environments
...
The tomb mount is now readable by the opening uid only (711 r-x--x--x);
directory access is preserved to allow sharing access to certain subdirs.
Review and fix contributed by Morten Langlo
2014-07-14 18:58:09 +02:00
gdrooid
79fdca5342
Align everything with spaces.
2014-07-13 17:35:28 +02:00
gdrooid
2282782bc2
Remove trailing spaces.
2014-07-13 16:51:13 +02:00
Jaromil
f6885729ac
documentation updates for release
2014-06-09 12:22:33 +02:00
Jaromil
9bc0bd762b
Merge pull request #112 from reiven/master
...
fixed 'non interactive' e2fsck on resize, proposal for #111
2014-06-08 20:37:07 +02:00
Jaromil
108a4c00fc
setkey now works also in dev-mode
...
includes some minor code refactoring mostly around setkey
2014-06-08 20:30:35 +02:00
Federico Reiven
d2982307a8
fixed 'non interactive' e2fsck on resize, proposal for #111
2014-06-08 15:05:25 -03:00
Jaromil
052a86de0c
fixes to key password handling
...
refactoring of the code using ask_key_password for better support
of dev-mode password supplied from CLI. This also fixes all uses of
passwd command to change a key's password.
2014-06-08 19:33:35 +02:00
Jaromil
ba9d7e03fc
make sure sbin is in PATH
...
this helps find cryptsetup
2014-06-01 22:19:49 +02:00
Jaromil
85fe8fdc01
Merge pull request #107 from gdrooid/master
...
Message formatting inconsistencies
2014-05-11 09:28:01 +02:00
gdrooid
47d13addb2
message formatting fix
2014-05-06 08:12:19 +02:00
reiven
ff1ee165c2
fixed incorrect help for dig command
2014-05-05 13:12:42 -03:00
gdrooid
ee3caecafd
message formatting fix
2014-04-30 17:31:28 +02:00
gdrooid
c49606f2dc
documentation fix
2014-04-28 14:56:21 +02:00
Jaromil
9009fba9f5
re-fix for .gnupg home dir
2014-04-25 23:16:47 +02:00
Jaromil
cf66907fa2
fixes a nasty bug on forge when run without /home/jrml/.gnupg
...
thanks to Giuliana Dieni for debbugging
2014-04-04 14:52:40 +02:00
Jaromil
db42a8fd3f
documentation for a new minor release
2014-02-24 16:09:28 +01:00
Jaromil
12f49bf2ff
another fix to key handling
...
ultimately removing the case in which we guess if the key is near
the tomb: that is not anymore in documentation and we stop encouraging
to keep the key near the tomb.
2014-02-21 22:40:06 +01:00
Jaromil
7fb404d97c
documentation update for minor bugfix release
2014-02-20 11:12:21 +01:00
Jaromil
a7d330997e
fixed correct handling and deletion of keys when taken from stdin
2014-02-19 12:08:26 +01:00
Jaromil
10baee25a6
Resize now appends directly to tomb file
...
this avoids creating a delta file in ram, filling it eventually.
fixes #99
2014-01-13 00:17:24 +01:00
Jaromil
9991405124
sanitized the way key filenames are set
...
there was some inconsistency in the way load_keys was accepting
different parameters or guessing from the tomb filename.
fixes #98
2014-01-13 00:09:37 +01:00
Jaromil
325633d2fb
correct documentation on -s option
...
somewhere mentioned as --size, but the option is really just -s
fixes #100
2014-01-12 23:40:45 +01:00
Jaromil
f9805731f1
Merge pull request #101 from hellekin/swap
...
Better support for multiple swap partitions, avoids warning if swap is encrypted.
2014-01-12 14:35:17 -08:00
Jaromil
39bfce25f8
Change default cipher specification
...
new default is "aes-xts-plain64:sha256"
manpage now includes note on how to tune it
fixes #102
2014-01-12 23:32:23 +01:00
hellekin
42a51c53fc
Support encrypted swaps
2013-12-16 18:23:10 -03:00
hellekin
15517e0141
Support multiple swaps
2013-12-16 18:20:52 -03:00
hellekin
7f2fd4d60c
Support encrypted swap
2013-12-16 17:41:49 -03:00
hellekin
0e49dfc7a0
Detect non-partition swaps
2013-12-16 16:34:39 -03:00
Jaromil
8e9cc7d5c2
more post-hooks documentation and second argument passed with mountpoint
2013-09-19 15:37:21 +02:00
Jaromil
0ca70509cf
fix to engrave usage of qrencode
2013-09-18 02:19:14 +02:00
Jaromil
8f25001f57
fixed versioning and extras reorganization
2013-09-08 16:10:19 +02:00
Jaromil
fa75d0f7bc
check if loop mount is possible
...
if not abort gracefully with an explanation
(10x to Bucciarati and sdonk)
2013-09-05 12:45:40 +02:00
Jaromil
914ac9594e
last fixes and documentation for release
...
manual page updates and improvements to kdf argument handling
2013-06-20 12:46:20 +02:00
Jaromil
064b9c964c
Improved swish indexing
...
swish-e usage for indexing of file contents is stable
2013-06-20 10:30:54 +02:00
Jaromil
f3c18819d2
documentation and test improvements
...
also renamed 'backup' command into 'engrave'
2013-06-20 10:26:12 +02:00
Jaromil
551a7839f5
important fix for backward compatibility to 1.2
...
a grave bug has been affecting 1.3 and 1.3.1 releases, which makes keys
created with those versions incompatible with other Tomb versions.
This bug is now fixed and Tomb should be able again to open old tombs.
A script to sanitize keys will be released soon.
2013-06-20 00:45:23 +02:00