gocryptfs, branch v2.0Mirror of gocryptfs source code on Githubhttp://nuetzlich.net/cgit/gocryptfs/atom?h=v2.02021-06-05T12:47:57+00:00Update README for v2.02021-06-05T12:47:57+00:00Jakob Unterwurzacher2021-06-05T12:47:57+00:00urn:sha1:c0e75302166c9a166526586690086dcd16eff2c2doc: add benchmark for v2.0, reformat table2021-06-05T12:46:49+00:00Jakob Unterwurzacher2021-06-05T12:46:49+00:00urn:sha1:5ed1a90c7efe6b4881021bb617777535fb3a5a37Add contrib/atomicrename2021-06-04T20:17:13+00:00Jakob Unterwurzacher2021-06-04T20:16:41+00:00urn:sha1:3a1f009c1ad281f37a7643b32a63057dd9c2a16e
$ ./contrib/atomicrename/atomicrename -h
atomicrename creates 100 "src" files in the current directory, renames
them in random order over a single "dst" file while reading the "dst"
file concurrently in a loop.
Progress and errors are reported as they occour in addition to a summary
printed at the end. cifs and fuse filesystems are known to fail, local
filesystems and nfs seem ok.
See https://github.com/hanwen/go-fuse/issues/398 for background info.
fido2: quote argument strings in debug output2021-06-03T20:03:21+00:00Jakob Unterwurzacher2021-06-03T20:01:04+00:00urn:sha1:015cd066e1a857efd3d820a1ac29b89829ac72ed
Tested using
gocryptfs -init -debug -fido2 "hello world" cipherdir
Output before:
callFidoCommand: executing "/usr/bin/fido2-cred" with args [fido2-cred -M -h -v hello world]
After:
callFidoCommand: executing "/usr/bin/fido2-cred" with args ["fido2-cred" "-M" "-h" "-v" "hello world"]
Related: https://github.com/rfjakob/gocryptfs/issues/571
fsck: mark temporary mount read-only2021-06-02T17:32:20+00:00Jakob Unterwurzacher2021-06-02T17:32:20+00:00urn:sha1:8f2be5d93cda2696fce7bc1a3f8a888a19321f09
We don't write during fsck, but somebody else might try
to.
fsck: clean up temporary mountpoint2021-06-02T17:31:55+00:00Jakob Unterwurzacher2021-06-02T17:28:20+00:00urn:sha1:307dfd7f71ee1d72113e2194e9b26a53b9a36c46
We used to leave directories like
/tmp/gocryptfs.fsck.104431245
behind. Let's clean up after ourselves.
fusefrontend: run acl Setxattr in user context2021-06-02T17:10:36+00:00Jakob Unterwurzacher2021-06-02T17:10:36+00:00urn:sha1:a38e5988bae3319a2c1c6745064f5785a0971d05
The result of setting an acl depends on who runs the
operation!
Fixes fuse-xfstests generic/375
(see https://github.com/rfjakob/fuse-xfstests/wiki/results_2021-05-19)
fusefrontend: catch ReadAt integer overflow2021-06-02T16:20:05+00:00Jakob Unterwurzacher2021-06-02T16:20:05+00:00urn:sha1:b23e21f61fc51ffa9c1c823778553925e1cc115e
Discovered by xfstests generic/564 .
Failure was:
generic/564 - output mismatch (see /opt/fuse-xfstests/results//generic/564.out.bad)
--- tests/generic/564.out 2021-05-08 21:11:05.307395966 +0200
+++ /opt/fuse-xfstests/results//generic/564.out.bad 2021-05-19 19:01:16.912888879 +0200
@@ -31,7 +31,7 @@
source range beyond 8TiB returns 0
destination range beyond 8TiB returns EFBIG
-copy_range: File too large
+copy_range: Function not implemented
nametransform: check name validity on encryption2021-06-02T12:29:48+00:00Jakob Unterwurzacher2021-06-02T12:21:30+00:00urn:sha1:04858ddd222bbf7156f33f99cfb293a9b1e15ec8
xfstests generic/523 discovered that we allowed to set
xattrs with "/" in the name, but did not allow to read
them later.
With this change we do not allow to set them in the first
place.
go.mod: update go-fuse to get acl fixes2021-05-30T07:34:03+00:00Jakob Unterwurzacher2021-05-30T07:34:03+00:00urn:sha1:242cdf966f262b2e20785eb0ff49ac55a8bd4636
Done using:
go get github.com/hanwen/go-fuse/v2@master
go mod tidy