Commit Graph

427 Commits

Author SHA1 Message Date
Jaromil
8a21eb6145 Literate code documentation
facilitates code audit
2013-05-28 00:25:27 +02:00
Jaromil
110ae83cd1 Relevant improvements to key password handling
now keys are verified in load_key() honoring commanline args
ask_key_password() will challenge user verifying using gnupg
drop_key() should be called after key has been used

this commit removes quite som duplicate code in password handling.
2013-05-27 22:49:44 +02:00
Jaromil
f37f7dd51d Tomb size lower limit
Most filesystems can't deal with less than 10 MiB space
closes issue #68
2013-05-27 21:35:28 +02:00
Jaromil
568cc43ab6 Size unit is now MiB
More precise megabyte calculation as in IEC 2000 mebibyte
Cleans up use of dd/dcfldd
Solves issue #87
2013-05-27 21:24:17 +02:00
BoySka
4aa00fe5f6 Merge pull request #89 from HalosGhost/patch-1
Make: add DESTDIR variable for easy packaging
2013-05-26 13:41:54 -07:00
Sam Stuewe
300f041670 Make syntax more explicit and clean; Add DESTDIR variable for easy packaging
--TODO--
* Add kdf installation
* Add zsh completion installation
2013-05-26 16:09:21 -04:00
Jaromil
2bb6704190 added simple makefile for manpage install 2013-05-25 16:39:42 +02:00
Jaromil
ad59dec3da documentation updates 2013-05-25 16:29:19 +02:00
Jaromil
c20ca3a920 whitespace cleanup 2013-05-25 15:05:21 +02:00
Jaromil
37792ffdc5 cleanup of the main script
improved binary check, made resize optional
and set aside old install command (was already unused)
2013-05-25 15:04:16 +02:00
Jaromil
5f5fb06d43 documentation updates 2013-05-20 13:19:51 +02:00
Jaromil
3eb93acc18 Directory reorganization
This commit re-organizes all the source distribution contents to
present users with the simple script, while moving the rest in extras.
Also autoconf/automake scripts were removed, back to minimalism.

The rationale of this change is that Tomb really only consists of a
script and users with no extra needs should just be presented with
it with no need for anything else. Any other thing on top of the Tomb
script is an extra and can be even distributed separately or integrated
in distributions.
2013-05-18 17:29:37 +02:00
Jaromil
f5ccff8027 new lookup for mounted tombs fully adopted
now tomb close looks up bind hooks correctly

this commit includes backward compatibility fix for Debian 6
2013-05-15 13:53:28 +02:00
Jaromil
148be7283b fixed lookup for mounted tombs
better parsing of mount output when looking for mounted tombs and bind hooks

fixes parsing also for Debian 7 where somehow mount output has changed
2013-05-15 12:00:23 +02:00
Jaromil
85e36178df flag .noindex for tombs to exclude from search index
better manpage documentation for the search index command
2013-04-23 15:45:31 +02:00
Jaromil
6bda7e914e continuing manual documentation 2013-04-16 18:11:26 +02:00
Jaromil
d769a09d25 fix to tomb search
correctly searches across multiple mounted tombs
2013-04-16 13:40:25 +02:00
Jaromil
fc84c27a49 small fix in password processing 2013-03-31 10:25:57 +02:00
Jaromil
a5d09a0559 create command restored for backward compatibility
the new mechanism to create tombs is in place (dig/forge/lock), but we
still wrap it with a create command for backward compatibility.
2013-03-30 18:59:34 +01:00
Jaromil
825f7ed687 Security check for extra keyslots
when a tomb is opened we check if other slots besides the master (0)
are enabled and if so we warn the user that there can be a backdoor.
LUKS permits the presence of multiple keys that can open a single
volume, but this weakens the security of it and we are not really
interested in implementing it.
2013-03-30 18:44:05 +01:00
Jaromil
12a7760895 new index and search commands
now it is possible to index all filenames contained in tombs using
updatedb(8) and then automatically search for them using locate in all
open tombs. Documentation was updated accordingly.
2013-03-30 17:29:51 +01:00
Jaromil
2b6a38f1d7 more information on who opened the tomb last time and when
also cleanups in uid/git handling and new tty and host info
2013-03-29 12:51:43 +01:00
Jaromil
b042824263 more user manual documentation 2013-03-29 12:47:44 +01:00
Jaromil
266319eee8 documentation for the new mechanism
skeleton for the user manual
2013-03-25 12:02:56 +01:00
Jaromil
cc3cfccd21 fix to password check (return code of gpg parsed using --status-fd 2013-03-22 23:39:25 +01:00
Jaromil
32cf477b58 cleaned up old create_tomb and updated terminal help 2013-03-22 22:31:29 +01:00
Jaromil
342c121fa2 completed new create procedure 2013-03-22 22:22:55 +01:00
Jaromil
84d4385696 new creation system in 3 steps and some tips in documentation 2013-03-22 21:13:59 +01:00
boyska
b9b7927e81 Better debian packaging 2013-02-16 15:58:43 +01:00
boyska
235a93537c --without-gtk supported 2013-02-16 15:58:43 +01:00
boyska
42f239a8d6 TEST: kdf=null, passwd added
some cleanup: first usage of try-always block, which makes cleanup actions
much cleaner
2013-02-16 15:58:43 +01:00
boyska
48f8bf28fc KDF: now ./configure has --without-gcrypt 2013-02-16 15:58:42 +01:00
boyska
6003623fe5 KDF: modularize code to support kdf everywhere 2013-02-16 15:58:42 +01:00
boyska
25512c5864 chown of the tomb is done immediately 2013-02-16 15:58:42 +01:00
boyska
419ad9a2bc Unit tests, through --unsecure-dev-mode
other similar options are introduced to make testing possible
2013-02-16 15:58:42 +01:00
boyska
2e6a3df756 Add KDF support #82
Include pbkdf2 tools inside tomb
It also supports parameters (itertime).
2013-02-16 15:55:25 +01:00
boyska
6bb655df0b tomb-open fix awk for name containing paths 2013-02-16 15:55:25 +01:00
boyska
75497a2382 reintroduce --ignore-swap (-f is also supported) 2013-02-16 15:55:25 +01:00
boyska
d117fbd916 tomb-open: fix wrong functions and indentation
(I love vim = command)
2013-02-16 15:55:24 +01:00
boyska
199ce8008c undertaker: fix tomb binary detection 2013-02-16 15:55:24 +01:00
Jaromil
df2348381e global vars aren't needed: we use option_is_set in message functions 2013-02-16 11:39:16 +01:00
BoySka
7a16c7f187 Stupid fix: abort after 3 attempts missing 2013-02-16 11:19:30 +01:00
BoySka
18febabbe5 check_priv: 3 attempts, error if wrong password 2013-02-16 11:19:30 +01:00
Jaromil
957e820c29 fixed chown of user permissions on tombs and added optional cipher (xts-plain etc.) 2012-07-10 10:31:14 +02:00
Jaromil
c46596987c fixes cryptsetup and gpg binary paths on debian 2012-06-14 12:45:27 +02:00
Jaromil
c188c47679 fix gpg check and update the verbose mode 2012-02-07 21:05:29 +01:00
boyska
634720b40c Merge: changed legacy code, added modelines 2012-02-02 23:45:07 +01:00
boyska
d57994fcc3 FIX (tries) #77: slam wasn't slamming
That's because fuser behaves differently on debian.
(Why, debian, why???)
2012-02-02 00:31:44 +01:00
boyska
86fc6e67a8 Python: building improvement & docs 2012-02-01 23:27:18 +01:00
boyska
a6da0dbb93 Merge branch 'qtgui' basic ftrs for create/open
Create is quite good, but has no support for automatic-key-on-usb
Open is very raw, it only supports opening while explicitly choosing
where to get the key from

Python wrapper for tomb is in a distinct library, called "tomblib":
it currently supports tomb, basic undertaker, and parsing output
messages
2012-01-29 19:18:41 +01:00