utilities/Tomb
utilities/Tomb
1
0
Fork 0
mirror of https://github.com/dyne/Tomb synced 2024-10-18 15:42:17 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
480 commits 21 branches 27 tags 12 MiB
Commit graph

79 commits

Author SHA1 Message Date
Jaromil 5d9caf01e0 Cleanup and normalization of functions handling secrets 
also now using a dash - after print and gettext options to avoid
parsing printed strings as options.
 2014-08-25 23:32:32 +02:00
Jaromil 1d815a1f7e More refactoring of how keys, passwords and secrets are stored 
includes a working loopback and tempfile cleanup in endgame()
and several changes in order to avoid saving anything on disk
WIP addressing #124 and #126
 2014-08-25 21:07:47 +02:00
Jaromil f794b78795 Merge pull request #123 from gdrooid/i18n 
Install and use translations.
 2014-08-19 18:48:49 +02:00
Jaromil 31ab169e2f Merge pull request #122 from gdrooid/master 
Substitute /dev/null redirection with closing stdin/err. Cleanup some obsolete functions.
 2014-08-17 21:10:18 +02:00
Jaromil 7bd21e4419 remove newline from decrypted key's secret, fixes #125 2014-08-17 21:05:22 +02:00
gdrooid 22f3ab09e5 Close std(out|err) instead of redirecting to /dev/null. 2014-08-15 01:43:52 +02:00
gdrooid 6c4bc38e6a Small fixes/Remove dead options 2014-08-15 01:43:52 +02:00
Jaromil 9d718d0ebb signal traps for endgame cleanups 2014-08-14 09:58:15 +02:00
gdrooid 7d434787b6 Install and use translations. 2014-08-11 23:01:58 +02:00
Jaromil f7b83de6ca cleanup implicitly exhumed key and move get_lukskey() closer to caller funcs 2014-08-06 11:21:08 +02:00
Jaromil 5158c380fe refactoring of the way password and keys are handled internally 
this change uses an hidden global variable within tomb to store the
decrypted key material, avoiding using one tempfile in RAM, avoiding
running the decryption more than once (which means sanity for KDF
usage) and overall simplifying the code also avoiding duplicates.
 2014-08-06 07:43:25 +02:00
Jaromil 534476a849 fixes to piping keys stdin/out in image steganography 
Also started refactoring code around key handling and
added some documentation.
 2014-08-05 17:05:49 +02:00
Jaromil b7e89e5246 fix to exhume key (steg) to correctly print on stdout when -k - 
addressing issue #118
 2014-08-03 19:54:43 +02:00
Jaromil b425f82f99 Merge pull request #114 from gdrooid/master 
Indent everything with spaces
 2014-07-21 20:06:07 +02:00
Jaromil da349afeda Security fix for use in multi-user environments 
The tomb mount is now readable by the opening uid only (711 r-x--x--x);
directory access is preserved to allow sharing access to certain subdirs.

Review and fix contributed by Morten Langlo
 2014-07-14 18:58:09 +02:00
gdrooid 79fdca5342 Align everything with spaces. 2014-07-13 17:35:28 +02:00
gdrooid 2282782bc2 Remove trailing spaces. 2014-07-13 16:51:13 +02:00
Jaromil f6885729ac documentation updates for release 2014-06-09 12:22:33 +02:00
Jaromil 9bc0bd762b Merge pull request #112 from reiven/master 
fixed 'non interactive' e2fsck on resize, proposal for #111
 2014-06-08 20:37:07 +02:00
Jaromil 108a4c00fc setkey now works also in dev-mode 
includes some minor code refactoring mostly around setkey
 2014-06-08 20:30:35 +02:00
Federico Reiven d2982307a8 fixed 'non interactive' e2fsck on resize, proposal for #111 2014-06-08 15:05:25 -03:00
Jaromil 052a86de0c fixes to key password handling 
refactoring of the code using ask_key_password for better support
of dev-mode password supplied from CLI. This also fixes all uses of
passwd command to change a key's password.
 2014-06-08 19:33:35 +02:00
Jaromil ba9d7e03fc make sure sbin is in PATH 
this helps find cryptsetup
 2014-06-01 22:19:49 +02:00
Jaromil 85fe8fdc01 Merge pull request #107 from gdrooid/master 
Message formatting inconsistencies
 2014-05-11 09:28:01 +02:00
gdrooid 47d13addb2 message formatting fix 2014-05-06 08:12:19 +02:00
reiven ff1ee165c2 fixed incorrect help for dig command 2014-05-05 13:12:42 -03:00
gdrooid ee3caecafd message formatting fix 2014-04-30 17:31:28 +02:00
gdrooid c49606f2dc documentation fix 2014-04-28 14:56:21 +02:00
Jaromil 9009fba9f5 re-fix for .gnupg home dir 2014-04-25 23:16:47 +02:00
Jaromil cf66907fa2 fixes a nasty bug on forge when run without /home/jrml/.gnupg 
thanks to Giuliana Dieni for debbugging
 2014-04-04 14:52:40 +02:00
Jaromil db42a8fd3f documentation for a new minor release 2014-02-24 16:09:28 +01:00
Jaromil 12f49bf2ff another fix to key handling 
ultimately removing the case in which we guess if the key is near
the tomb: that is not anymore in documentation and we stop encouraging
to keep the key near the tomb.
 2014-02-21 22:40:06 +01:00
Jaromil 7fb404d97c documentation update for minor bugfix release 2014-02-20 11:12:21 +01:00
Jaromil a7d330997e fixed correct handling and deletion of keys when taken from stdin 2014-02-19 12:08:26 +01:00
Jaromil 10baee25a6 Resize now appends directly to tomb file 
this avoids creating a delta file in ram, filling it eventually.
fixes #99
 2014-01-13 00:17:24 +01:00
Jaromil 9991405124 sanitized the way key filenames are set 
there was some inconsistency in the way load_keys was accepting
different parameters or guessing from the tomb filename.

fixes #98
 2014-01-13 00:09:37 +01:00
Jaromil 325633d2fb correct documentation on -s option 
somewhere mentioned as --size, but the option is really just -s
fixes #100
 2014-01-12 23:40:45 +01:00
Jaromil f9805731f1 Merge pull request #101 from hellekin/swap 
Better support for multiple swap partitions, avoids warning if swap is encrypted.
 2014-01-12 14:35:17 -08:00
Jaromil 39bfce25f8 Change default cipher specification 
new default is "aes-xts-plain64:sha256"
manpage now includes note on how to tune it
fixes #102
 2014-01-12 23:32:23 +01:00
hellekin 42a51c53fc Support encrypted swaps 2013-12-16 18:23:10 -03:00
hellekin 15517e0141 Support multiple swaps 2013-12-16 18:20:52 -03:00
hellekin 7f2fd4d60c Support encrypted swap 2013-12-16 17:41:49 -03:00
hellekin 0e49dfc7a0 Detect non-partition swaps 2013-12-16 16:34:39 -03:00
Jaromil 8e9cc7d5c2 more post-hooks documentation and second argument passed with mountpoint 2013-09-19 15:37:21 +02:00
Jaromil 0ca70509cf fix to engrave usage of qrencode 2013-09-18 02:19:14 +02:00
Jaromil 8f25001f57 fixed versioning and extras reorganization 2013-09-08 16:10:19 +02:00
Jaromil fa75d0f7bc check if loop mount is possible 
if not abort gracefully with an explanation
(10x to Bucciarati and sdonk)
 2013-09-05 12:45:40 +02:00
Jaromil 914ac9594e last fixes and documentation for release 
manual page updates and improvements to kdf argument handling
 2013-06-20 12:46:20 +02:00
Jaromil 064b9c964c Improved swish indexing 
swish-e usage for indexing of file contents is stable
 2013-06-20 10:30:54 +02:00
Jaromil f3c18819d2 documentation and test improvements 
also renamed 'backup' command into 'engrave'
 2013-06-20 10:26:12 +02:00