summaryrefslogtreecommitdiffstats
path: root/src/cryptsetup (follow)
Commit message (Collapse)AuthorAgeFilesLines
* cryptsetup-generator: fix the kernel command line strategy for luks.uuidHarald Hoyer2013-03-011-46/+99
| | | | | | If rd.luks.uuid or luks.uuid is specified on the kernel command, only generate units for these UUIDs. Additionally use the information in /etc/crypttab unless rd.luks.crypttab=0 or luks.crypttab=0 is specified.
* added some missing include for a5c32cff1f56afe6f0c6c70d91a88a7a8238b2d7Harald Hoyer2013-02-141-0/+1
|
* cryptsetup: accept both "read-only" and "readonly" spellingsMichal Schmidt2013-01-311-1/+1
| | | | | | | | | | | Mukund Sivaraman pointed out that cryptsetup(5) mentions the "read-only" option, while the code understands "readonly". We could just fix the manpage, but for consistency in naming of multi-word options it would be prettier to have "read-only". So let's accept both spellings. BZ: https://bugzilla.redhat.com/show_bug.cgi?id=903463
* cryptsetup-generator: state file name in error messagesMichal Schmidt2012-11-231-2/+2
|
* cryptsetup-generator: use log_oom() everywhereMichal Schmidt2012-11-231-13/+9
|
* cryptsetup: fix nofail supportTom Gundersen2012-11-211-1/+1
| | | | | | | This was documented in the man page and supported in the generator, but systemd-cryptestup itself would fail with this option. systemd-cryptsetup should ignore 'nofail', as it does with 'noauto'.
* cryptsetup: fix inverted comparison in pass_volume_keyDave Reisner2012-11-061-1/+2
|
* cryptsetup: hash=plain means don't use a hashDave Reisner2012-11-061-2/+7
| | | | | | | | | "plain" is a semantic value that cryptsetup(8) uses to describe a plain dm-crypt volume that does not use a hash. Catch this value earlier and ensure that a NULL params.hash is passed to crypt_format to avoid passing an invalid hash type to the libcryptsetup backend. FDO bug #56593.
* fix a couple of issues found with llvm-analyzeLennart Poettering2012-08-081-2/+2
|
* cryptsetup: add keyfile-size= supportTom Gundersen2012-08-031-7/+15
| | | | | | | | This is useful e.g. if the keyfile is a raw device, where only parts of it should be read. It is typically used whenever the keyfile-offset= option is specified. Tested-by: Erik Westrup <erik.westrup@gmail.com>
* log.h: new log_oom() -> int -ENOMEM, use itShawn Landden2012-07-262-9/+7
| | | | | | also a number of minor fixups and bug fixes: spelling, oom errors that didn't print errors, not properly forwarding error codes, few more consistency issues, et cetera
* use "Out of memory." consistantly (or with "\n")Shawn Landden2012-07-252-6/+6
| | | | | | | | glibc/glib both use "out of memory" consistantly so maybe we should consider that instead of this. Eliminates one string out of a number of binaries. Also fixes extra newline in udev/scsi_id
* unit: rename BindTo= to BindsTo=Lennart Poettering2012-07-131-1/+1
| | | | | | | | all other dependencies are in 3rd person. Change BindTo= accordingly to BindsTo=. Of course, the dependency is widely used, hence we parse the old name too for compatibility.
* util: rename join() to strjoin()Lennart Poettering2012-07-131-5/+5
| | | | This is to match strappend() and the other string related functions.
* cryptsetup: add keyfile-offset= supportTom Gundersen2012-07-091-1/+10
| | | | | | | | | | | | | | | | | This is useful if your keyfile is a block device, and you want to use a specific part of it, such as an area between the MBR and the first partition. This feature is documented in the Arch wiki[0], and has been supported by the Arch initscripts, so would be nice to get this into systemd. This requires libcryptsetup >= 1.4.2 (released 12.4.2012). Acked-by: Paul Menzel <paulepanter@users.sourceforge.net> [0]: <https://wiki.archlinux.org/index.php/System_Encryption_with_LUKS# Storing_the_key_between_MBR_and_1st_partition>
* man: add reference to crypttab(5) from cryptsetup unitsLennart Poettering2012-06-271-1/+1
|
* man: document systemd-cryptsetupLennart Poettering2012-06-271-0/+1
|
* cryptsetup: fix escaping when generating cryptsetup unitsLennart Poettering2012-06-251-1/+1
|
* units: rename cryptsetup@.service to systemd-cryptsetup@.serviceLennart Poettering2012-06-251-1/+1
| | | | It's also our own code, hence should have the prefix.
* cryptsetup: allow configuration of LUKS disks via the kernel cmdlineLennart Poettering2012-06-221-2/+149
| | | | This generalizes a bit of the functionality already available in dracut.
* mkdir: append _label to all mkdir() calls that explicitly set the selinux ↵Kay Sievers2012-05-311-3/+3
| | | | context
* manager: rework generator logicLennart Poettering2012-05-231-2/+2
| | | | | | | | | | | | | | | | | | | | Previously generated units were always placed at the end of the search path. With this change there will be three unit dirs instead of one, to place generated entries at the beginning, in the middle and at the end of the search path: beginning: for units that need to override all configuration, regardless of user or vendor. Example use: system-update-generator uses this to temporarily redirect default.target. middle: for units that need to override vendor configuration, but not vendor configuration. Example use: /etc/fstab should override vendor supplied configuration (think /tmp), but should not override native user configuration. end: does not override anything but is available as well. Possible usage might be to convert D-Bus bus service files to native units but allowing vendor supplied native units to win.
* units: remove service sysv_path variable and replace it by generic unit_pathLennart Poettering2012-05-221-4/+3
| | | | | | UnitPath= is also writable via native units and may be used by generators to clarify from which file a unit is generated. This patch also hooks up the cryptsetup and fstab generators to set UnitPath= accordingly.
* log: make sure generators never log into the journal to avoid activation ↵Lennart Poettering2012-05-221-1/+1
| | | | | | deadlocks This makes all generators log to kmsg by default.
* mount: replace PID1 internal fstab parser with generatorLennart Poettering2012-05-221-0/+1
| | | | | | Bit by bit we should remove non-unit parsing from PID 1 and move into generators, to clean up our code base a bit and clearly separate parsers.
* cryptsetup: support discards (TRIM)Matthew Monaco2012-05-211-0/+6
|
* cryptsetup: a few simplificationsLennart Poettering2012-05-211-20/+24
|
* util: split-out path-util.[ch]Kay Sievers2012-05-081-0/+1
|
* mount: don't fail if fstab doesn't existLennart Poettering2012-04-221-1/+2
|
* relicense to LGPLv2.1 (with exceptions)Lennart Poettering2012-04-122-8/+8
| | | | | | | | | | | | | | We finally got the OK from all contributors with non-trivial commits to relicense systemd from GPL2+ to LGPL2.1+. Some udev bits continue to be GPL2+ for now, but we are looking into relicensing them too, to allow free copy/paste of all code within systemd. The bits that used to be MIT continue to be MIT. The big benefit of the relicensing is that closed source code may now link against libsystemd-login.so and friends.
* rename basic.la to shared.la and put selinux deps in shared-selinx.laKay Sievers2012-04-101-0/+1
| | | | | Only 34 of 74 tools need libselinux linked, and libselinux is a pain with its unconditional library constructor.
* core: switch all log targets to go directly to the journal, instead via syslogLennart Poettering2012-01-121-1/+1
|
* build-sys: add stub makefiles to subdirsLennart Poettering2012-01-051-0/+1
|
* cryptsetup: split off cryptsetup into its own subdirLennart Poettering2012-01-032-0/+827