| Age | Commit message (Collapse) | Author | 
|---|
|  | We used to do validation using lists of mandatory feature flags.
With the introduction of XChaCha20Poly1305, this became too
simplistic, as it uses a different IV length, hence disabling
GCMIV128.
Add a dedicated function, Validate(), with open-coded validation
logic.
The validation and creation logic also gets XChaCha20Poly1305
support, and gocryptfs -init -xchacha now writes the flag into
gocryptfs.conf. | 
|  | Mount flag only at the moment, not saved to gocryptfs.conf.
https://github.com/rfjakob/gocryptfs/issues/452 | 
|  | And store it in gocryptfs.conf (=remove DirIV feature flag). | 
|  |  | 
|  |  | 
|  | readpassword.Trezor() is not implemented yet and returns
a hardcoded dummy key. | 
|  | ...but keep it disabled by default for new filesystems.
We are still missing an example filesystem and CLI arguments
to explicitely enable and disable it. | 
|  | This will be re-enabled once it is implemented. | 
|  |  | 
|  | Through base64.RawURLEncoding.
New command-line parameter "-raw64". | 
|  |  | 
|  | GCM-SIV is not yet finalized, and the reference implemenation is
painfully slow at about 2 MB/s. Switch to AES-SIV. | 
|  |  | 
|  | The plan is to drop support for the oldest filesystem versions
in gocryptfs v1.0. For now, we only warn the user. | 
|  | This should make things saner and more extensible. It prepares
the infrastructure for "required feature flags" that will be used
to deprecate old gocryptfs version. |