1. 19 Jul, 2018 1 commit
  2. 18 Jul, 2018 2 commits
  3. 17 Jul, 2018 1 commit
  4. 11 Jul, 2018 4 commits
  5. 07 Jul, 2018 1 commit
    • joerichey@google.com's avatar
      Don't implicitly discard const · e8b68903
      joerichey@google.com authored
      As poptGetOptArg() returns "const char *", assigning it to a
      "const char *" varible triggers a warning on Clang:
      "incompatible-pointer-types-discards-qualifiers".
      e8b68903
  6. 03 May, 2018 1 commit
  7. 30 Apr, 2018 1 commit
  8. 26 Apr, 2018 3 commits
  9. 25 Apr, 2018 6 commits
  10. 24 Apr, 2018 3 commits
  11. 19 Apr, 2018 4 commits
  12. 16 Apr, 2018 1 commit
  13. 12 Apr, 2018 2 commits
  14. 11 Apr, 2018 1 commit
  15. 06 Apr, 2018 1 commit
    • Milan Broz's avatar
      Check cipher before writing metadata (LUKS2). · 187170ec
      Milan Broz authored
      Some ciphers and key sizes created on-disk metadata that cannot be used.
      Use the same test for length-preserving cipher as LUKS1.
      
      Also check if key for integrity algorithm is not too small.
      
      Fixes #373.
      187170ec
  16. 31 Mar, 2018 1 commit
    • Milan Broz's avatar
      veritysetup: add support for --check-at-most-once option. · fef5121c
      Milan Broz authored
      The kernel 4.17 will include a new dm-verity flag that
      instructs kernel to verify data blocks only once.
      
      This patch adds support for it to libcryptsetup and veritysetup.
      
      This flag can be dangerous; if you can control underlying device
      (you can change its content after it was verified) it will no longer
      prevent reading tampered data and also it does not prevent to silent
      data corrruptions that appears after the block was once read.
      fef5121c
  17. 25 Mar, 2018 2 commits
  18. 23 Mar, 2018 2 commits
  19. 08 Mar, 2018 1 commit
    • Milan Broz's avatar
      Support detached header for cryptsetup-reencrypt. · a22a24bc
      Milan Broz authored
      This patch allows encryption/decryption of the whole device,
      IOW add encryption later with detached header.
      
      This operation can be dangerous, there is no fixed bindings between
      the specific LUKS header and data device (encrypted data device
      contains no magic signatures).
      a22a24bc
  20. 01 Mar, 2018 1 commit
  21. 28 Feb, 2018 1 commit