gocryptfs/internal/nametransform, branch v2.0

gocryptfs/internal/nametransform, branch v2.0 Mirror of gocryptfs source code on Github http://nuetzlich.net/cgit/gocryptfs/atom?h=v2.0 2021-06-02T12:29:48+00:00 nametransform: check name validity on encryption 2021-06-02T12:29:48+00:00 Jakob Unterwurzacher 2021-06-02T12:21:30+00:00 urn:sha1:04858ddd222bbf7156f33f99cfb293a9b1e15ec8 xfstests generic/523 discovered that we allowed to set xattrs with "/" in the name, but did not allow to read them later. With this change we do not allow to set them in the first place. nametransform: make `gocryptfs.diriv` and `gocryptfs.xxx.name` files world-readable 2021-01-10T07:07:10+00:00 Jakob Unterwurzacher 2021-01-10T07:06:09+00:00 urn:sha1:bed60101f4925eb2cce736301f5cc45ad267c187 Make `gocryptfs.diriv` and `gocryptfs.xxx.name` files world-readable to make encrypted backups easier when mounting via fstab. Having the files follow chmod/chown of their parent does not seem to be worth the hassle. The content of the diriv files is not secret, and both diriv and name files are protected by the perms of the parent dir. Fixes https://github.com/rfjakob/gocryptfs/issues/539 nametransform: move permission constants to perms.go 2021-01-10T06:27:04+00:00 Jakob Unterwurzacher 2021-01-10T06:27:04+00:00 urn:sha1:f3394ae286d65492483579e038acb33edd8ca274 Prep for https://github.com/rfjakob/gocryptfs/issues/539 syscallcompat: retry ops on EINTR 2020-10-13T22:35:16+00:00 Jakob Unterwurzacher 2020-10-13T22:35:16+00:00 urn:sha1:af4c1fb7a3f428ff704af22294ad955d05ed41dd Retry operations that have been shown to throw EINTR errors on CIFS. Todo: Solution for this pain in the back: warning: unix.Getdents returned errno 2 in the middle of data rm: cannot remove 'linux-3.0.old3/Documentation/ABI/removed': Input/output error Progress towards fixing https://github.com/rfjakob/gocryptfs/issues/483 . v2api/reverse: implement Lookup for longname 2020-08-02T17:33:12+00:00 Jakob Unterwurzacher 2020-08-02T17:33:12+00:00 urn:sha1:84ed139cd2cede9b773fe7892a0bc2515fc1f00f badname: stop trying to decrypt at length 22 2020-06-06T10:49:45+00:00 Jakob Unterwurzacher 2020-06-06T10:49:45+00:00 urn:sha1:261cf12829dcef31f1a02559b898e5067a03af31 At least 16 bytes due to AES --> at least 22 characters in base64 Added auto decryption of invalid file names 2020-06-06T10:20:31+00:00 DerDonut 2020-05-19T11:34:58+00:00 urn:sha1:a8230d271f394e130a8190d554eef2a86bc962d7 Changed invalid file decoding and decryption. Function DecryptName now shortens the filename until the filename is decodable and decryptable. Will work with valid **and** invalid Base64URL delimiter (valid delimiter [0-9a-zA-z_\\-]. If the filename is not decryptable at all, it returns the original cipher name with flag suffix Changed cli tests to generate decryptable and undecryptable file names with correct encrypted content. Replacing #474, extends #393 Fix spelling mistakes found by misspell 2020-05-09T22:25:49+00:00 Jakob Unterwurzacher 2020-05-09T22:25:49+00:00 urn:sha1:ead7008a08f9ace4591ebbc03e63fdc7ef37e502 https://github.com/client9/misspell nametransform: update comment & simplify tests 2020-04-18T14:14:48+00:00 Jakob Unterwurzacher 2020-04-18T14:14:48+00:00 urn:sha1:f6b1c680b3f7c7d5cd842cca3117f5ee2f0f2fad The comment still mentioned CBC, which has been removed a long time ago. The test definition can be rewritten using slice literals, saving sume stuttering. Show undecryptable filenames if they match supplied glob 2020-02-28T21:17:59+00:00 orcas 2019-09-14T16:32:54+00:00 urn:sha1:9ec042f2f62bc95154d6c8b3215a2e7853f8f5c6 Resolves https://github.com/rfjakob/gocryptfs/issues/393