Llewellyn/Tomb
1
0
Fork 0
mirror of https://github.com/Llewellynvdm/Tomb.git synced 2024-11-05 21:07:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
756 Commits 15 Branches 26 Tags 8 MiB
7e88c5d07b
Commit Graph

756 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jaromil
6bb1385c69 Security fix to setkey 
Now there is no more writing of cleartext secrets in any tempfile,
the last case was in setkey and is now eliminated. Tempfile creation
is cleaner. Related to issue #162
 2014-11-22 01:40:26 +01:00
Jaromil
52e80b6042 correct docs on opening tombs without Tomb 2014-11-22 00:32:25 +01:00
Jaromil
f2efa69001 Read setting of pinentry-program in gpg-agent.conf 
also fixes the check if the tomb is already open
 2014-11-22 00:23:57 +01:00
Jaromil
0d485bf51d Documentation for -k cleartext and --unsafe 2014-11-21 22:50:45 +01:00
Jaromil
4d82b20199 small fix to whitespace and leftover newline tests 2014-11-21 22:32:38 +01:00
Jaromil
e48c7c4a85 Added new --unsafe mode: -k cleartext 
Using the 'cleartext' name for a key will read it from stdin and
expect it to be unencrypted. This is an unsafe mode of operation,
but useful i.e. to open remote tombs by piping the key over ssh,
or using a different software than Tomb to de/crypt keys.

This commit also renames the flag --unsecure-dev-mode into --unsafe
and includes a minor fix to the last opened date shown on open.

Addressing issue #161
 2014-11-21 22:25:43 +01:00
Jaromil
b7f4e3a7fd Use print for non-escaped piping of secret 
after fixing issue #154 with echo here we revert to using print with
options -R -n which sort the same effect. Print is preferred since it
executes the built-in command without any possible ambiguity. We don't
want to expose secrets to an external executable in case of a simple
attack that would change the env PATH to use a rootkitted echo.
 2014-11-20 15:53:45 +01:00
Jaromil
489b3582cb Disable escapes when piping secrets 
Switched to use echo with -E flag to disable escapes in keys: escape
strings were discarded cryptsetup tomb operations when they were present
in the decoded key random passphrase. Issue #154

The solution adopted here includes wrapping all cryptsetup operations to
unify the behaviour adopted.

Worth noting that this problem possibly breaks all tombs and keys
created using the unstable Tomb from git development in the past 2
months. Regression tests with previous stable releases are OK.
 2014-11-20 09:59:11 +01:00
Jaromil
9180b214af fix renaming in kdf 2014-11-17 17:32:59 +01:00
gdrooid
6ce45a6f84 [i18n] Update translation files. 2014-11-16 17:30:59 +01:00
Jaromil
09b9bcb469 actual tomber sourcecode inclusion 2014-11-16 16:45:28 +01:00
Jaromil
02e72893c2 more documentation including a way to open tombs without Tomb 2014-11-16 16:16:25 +01:00
Jaromil
a568cdf546 imported python tomber into extras 
more documentation updates
 2014-11-16 15:21:11 +01:00
Jaromil
ced2e5fcb8 fixes to Makefiles informed by issue #154 2014-11-16 14:04:05 +01:00
Jaromil
bbb290c81a documentation updates 2014-11-16 13:55:51 +01:00
Jaromil
a0db66b18e added also explicit stdout redirection to command -v 2014-11-16 13:11:42 +01:00
Jaromil
9f39d671a0 reverted to use command -v instead of hash 
according to analysis made with @gdrooid
 2014-11-16 12:38:31 +01:00
Jaromil
da46cbcd31 using zsh hash function instead of command -v to check for bins in path, using plain 2>/dev/null redirection everywhere 2014-11-16 11:37:30 +01:00
Jaromil
982c7591f2 avoid gettext being a requirement and list optional tools found in version output 2014-11-16 11:34:35 +01:00
Jaromil
aa35441d69 this should fix lo_mount() as reported in #154 2014-11-16 11:09:43 +01:00
Jaromil
d4c4a82d73 more detailed help messages and exclude videos from index 2014-11-15 04:14:40 +01:00
Jaromil
39ab5871d5 updated ChangeLog on upcoming release 2014-11-15 03:14:58 +01:00
Jaromil
e5be8bb36d installs also translated strings 2014-11-15 03:14:42 +01:00
Jaromil
249c3cec1d work also without gettext. versioning 2014-11-15 03:14:03 +01:00
Jaromil
8c8ab3fc5c removed some minor debugging tests 2014-11-15 02:41:10 +01:00
Jaromil
edbd950120 switched to zsh/regex and zsh/mapfile 
many operations moved to builtin zsh internals, improving speed
also fixes to the username detection and to the losetup check
 2014-11-15 02:38:53 +01:00
Dani
219962e651 Merge pull request #160 from gdrooid/master 
[i18n] Updated pot and po files.
 2014-11-14 21:53:57 +01:00
gdrooid
3effdc2171 [i18n] Updated pot and po files. 2014-11-14 21:50:57 +01:00
Jaromil
f4f4837ff4 updates to the manpage 2014-11-14 20:23:16 +01:00
Jaromil
4ce8771e99 Correct wrapping of cli argument arrays 
Fixes also piping to ssh for remote tomb commands
This fix was suggested by @brianmay on #139
 2014-11-14 20:12:30 +01:00
Jaromil
82e0533892 message fix 2014-11-14 19:43:26 +01:00
Jaromil
a7d7fad6a8 last minor fix to use _plot() instead of is_valid_tomb() on tomb creation commands 2014-11-14 19:27:57 +01:00
Jaromil
949a8c19e7 correct rendering of dev mapper filename and use of is_valid_tomb 2014-11-14 19:13:48 +01:00
Jaromil
50ce03d5f5 reactivated KDF test 2014-11-14 18:52:44 +01:00
Jaromil
18f2cf25d0 fixed tests to use only one dummypass 2014-11-14 18:52:16 +01:00
Jaromil
106c4ab32e fixed resize 2014-11-14 18:51:33 +01:00
Jaromil
98ab49315a fixes to _tmp_create and its usage 2014-11-14 18:42:11 +01:00
Jaromil
3eff8aeebe isolated functions to speed up test environment 2014-11-14 17:43:53 +01:00
Jaromil
828579e10d better parses for bind-hooks 
rw global vars VERSION etc facilitate re-source in test environment
 2014-11-14 17:42:49 +01:00
Jaromil
9097a69631 indentation and small fix for umount to avoid warnings and correct check 2014-11-14 14:25:49 +01:00
Dani
d53727c6ee Merge pull request #157 from gdrooid/cleanup 
[i18n] Update .pot generation script
 2014-11-13 21:15:39 +01:00
gdrooid
7fecf71a81 [i18n] Don't add debug messages to translation files. 2014-11-12 20:11:29 +01:00
gdrooid
e32bce2c1f [i18n] Remove warning message when generating the pot file. 2014-11-12 19:19:51 +01:00
gdrooid
83d53b204e [i18n] Fix pot generation to avoid a lot of manual work. 2014-11-12 19:18:37 +01:00
Jaromil
c73f00eb19 adjusting strings to facilitate translation 2014-11-04 16:45:57 +01:00
Jaromil
943a46ef60 removed create_tomb, left deprecation notice 2014-11-04 16:45:37 +01:00
Jaromil
181f0fc636 revert to swish-e again 2014-11-04 16:45:08 +01:00
hellekin
6c71f2c94b [cleanup] Process subcommands 2014-11-04 15:33:12 +01:00
hellekin
8df1575a44 [cleanup] Replace 'test' with [[ expr ]] 2014-11-04 15:33:12 +01:00
hellekin
b857122d7d [cleanup] _load_key 2014-11-04 15:32:46 +01:00