| Age | Commit message (Collapse) | Author | 
|---|
|  | Prior to this commit, gocryptfs's reverse mode did not report correct
directory entry sizes for symbolic links, where the dentry size needs to
be the same as the length of a string containing the target path.
This commit corrects this issue and adds a test case to verify the
correctness of the implementation.
This issue was discovered during the use of a strict file copying program
on a reverse-mounted gocryptfs file system. | 
|  | internal/configfile/config_test.go:67: c declared and not used | 
|  | This test fails because Raw64 has been disabled for now. | 
|  | Raw64 is supported (but was disabled by default) since gocryptfs
v1.2. However, the implementation was buggy because it forgot
about long names and symlinks.
Disable it for now by default and enable it later, together
with HKDF. | 
|  | The symlink functions incorrectly hardcoded the padded
base64 variant. | 
|  | HashLongName() incorrectly hardcoded the call to base64.URLEncoding. | 
|  | ...but keep it disabled by default for new filesystems.
We are still missing an example filesystem and CLI arguments
to explicitely enable and disable it. | 
|  | This will be re-enabled once it is implemented. | 
|  | As we have dropped Go 1.4 compatibility already, and will add
a new feature flag for gocryptfs v1.3 anyway, this is a good
time to enable Raw64 as well. | 
|  | There is no security reason for doing this, but it will allow
to consolidate the code once we drop compatibility with gocryptfs v1.2
(and earlier) filesystems. | 
|  | Yields a nice reduction in code size. | 
|  | There are two independent backends, one for name encryption,
the other one, AEAD, for file content.
"BackendTypeEnum" only applies to AEAD (file content), so make that
clear in the name. | 
|  | Version 1.1 of the EME package (github.com/rfjakob/eme) added
a more convenient interface. Use it.
Note that you have to upgrade your EME package (go get -u)! | 
|  |  | 
|  | When filename encryption is active, every directory contains
a "gocryptfs.diriv" file. This file should also change the owner.
Fixes https://github.com/rfjakob/gocryptfs/issues/86 | 
|  |  | 
|  | This really only handles scrypt and no other key-derivation functions.
Renaming the files prevents confusion once we introduce HKDF.
renamed:    internal/configfile/kdf.go -> internal/configfile/scrypt.go
renamed:    internal/configfile/kdf_test.go -> internal/configfile/scrypt_test.go | 
|  | This makes it easier to use the package in external projects.
See https://github.com/rfjakob/gocryptfs/issues/79 | 
|  |  | 
|  | Old Go versions miss cipher.NewGCMWithNonceSize, which causes:
  internal/speed/speed.go:95: undefined: cipher.NewGCMWithNonceSize | 
|  | A crypto benchmark mode like "openssl speed".
Example run:
  $ ./gocryptfs -speed
  AES-GCM-256-OpenSSL 	 180.89 MB/s	(selected in auto mode)
  AES-GCM-256-Go      	  48.19 MB/s
  AES-SIV-512-Go      	  37.40 MB/s | 
|  |  | 
|  | These were currently passed to decryptPath() were it caused
a warning. | 
|  |  | 
|  | As suggested by
https://github.com/rfjakob/gocryptfs/issues/15#issuecomment-279130217 | 
|  | This used to hang at 100% CPU:
    cat /dev/zero | gocryptfs -init a
...and would ultimately send the box into out-of-memory.
The number 1000 is chosen arbitrarily and seems big enough
given that the password must be one line.
Suggested by @mhogomchungu in https://github.com/rfjakob/gocryptfs/issues/77 . | 
|  | From the comment:
// CheckTrailingGarbage tries to read one byte from stdin and exits with a
// fatal error if the read returns any data.
// This is meant to be called after reading the password, when there is no more
// data expected. This helps to catch problems with third-party tools that
// interface with gocryptfs. | 
|  |  | 
|  | We have to check if the input path is empty AFTER canonicalizing it,
too! | 
|  |  | 
|  | internal/ctlsock/ctlsock_serve.go:73:1: comment on exported const
ReadBufSize should be of the form "ReadBufSize ..." | 
|  |  | 
|  | The code was missing a "continue" in that branch.
Also improve the error messages a bit. | 
|  | Paths that start with ".." were previously accepted as-is. | 
|  | ...and while we are at it, also filenames starting with "-". | 
|  | Otherwise the next try to mount ends in
"ctlsock: listen unix ctl.sock: bind: address already in use" | 
|  | This used to incorrectly try to link twice and return EEXIST. | 
|  |  | 
|  | Speeds up the "ls -lR" benchmark from 2.6 seconds to 2.0. | 
|  | This prepares the code for the introduction of a path cache. | 
|  |  | 
|  | Reading partial JSON would cause a mess. Just kill the connection.
Also, stop using syscall.PathMax that is not defined on Darwin
( https://github.com/rfjakob/gocryptfs/issues/15#issuecomment-264253024 ) | 
|  |  | 
|  | Both are achieved by opening the socket from main and passing
it to the ctlsock package instead of passing the path. | 
|  | Also, always call build-without-openssl.bash from test.bash.
Failure was:
  internal/stupidgcm/without_openssl.go:29: missing return at end of function | 
|  | You used to be able to crash gocryptfs by passing "/foo"
of "foo/" to the ctlsock.
Fixes https://github.com/rfjakob/gocryptfs/issues/66 | 
|  | We want all panics to show up in the syslog. | 
|  | https://github.com/rfjakob/gocryptfs/issues/64 | 
|  | https://github.com/rfjakob/gocryptfs/issues/64 | 
|  | This prevents (unlikely) symlink race attacks |