Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | better message on bad password | Joey Hess | 2016-08-31 |
| | |||
* | added --store-directory | Joey Hess | 2016-08-31 |
| | |||
* | Added basic test suite. | Joey Hess | 2016-08-30 |
| | |||
* | Improve time estimates, taking into account the number of cores. | Joey Hess | 2016-08-30 |
| | | | | | This only affects time estimates while keysafe is generating hashes; it does not affect cost estimates to brute-force. | ||
* | make server default to only listening to localhost | Joey Hess | 2016-08-29 |
| | | | | | This way, the tor hidden service using it will be the only way it's exposed. | ||
* | --server needs a port | Joey Hess | 2016-08-22 |
| | |||
* | http client, and --server | Joey Hess | 2016-08-20 |
| | |||
* | wording | Joey Hess | 2016-08-19 |
| | |||
* | done for the day! | Joey Hess | 2016-08-19 |
| | |||
* | avoid displaying messages while progress bar is displayed | Joey Hess | 2016-08-19 |
| | |||
* | chunking | Joey Hess | 2016-08-19 |
| | | | | | This changed the storage format, not that it matters because nobody is using it yet. | ||
* | rename shard -> share | Joey Hess | 2016-08-19 |
| | | | | This makes it clearer that it's not a chunk of data, but a Shamir share. | ||
* | minor prompt flow | Joey Hess | 2016-08-18 |
| | |||
* | untested moving of upload queues on to servers | Joey Hess | 2016-08-18 |
| | | | | | | | | | | | There needs to be a 1:1 mapping between upload queues and servers, otherwise using the upload queue risks two shards for the same object being uploaded to the same server. Also, fixed storeShards to give up on StoreAlreadyExists, rather than trying another storage location. Otherwise, on a name collision, the shards would be rejected by the servers, and be stored to their upload queues. | ||
* | add support for multiple storage locattions | Joey Hess | 2016-08-18 |
| | | | | also, server upload queues in ~/.keysafe | ||
* | obscure name | Joey Hess | 2016-08-17 |
| | |||
* | allow configuring N and M | Joey Hess | 2016-08-17 |
| | | | | | User has to remember they did this and use the same configuration on restore. | ||
* | probe knownTunings on restore | Joey Hess | 2016-08-17 |
| | |||
* | save restored secret key to gpg or file | Joey Hess | 2016-08-17 |
| | |||
* | simplify | Joey Hess | 2016-08-17 |
| | | | | | Don't need to check key server for --gpgkeyid backup, because the same switch has to be provided at restore time. | ||
* | refactor | Joey Hess | 2016-08-17 |
| | |||
* | make storage to use configurable on command line | Joey Hess | 2016-08-17 |
| | |||
* | progress display for storing | Joey Hess | 2016-08-17 |
| | |||
* | add progress bars to restore | Joey Hess | 2016-08-17 |
| | | | | also, restore actually works! | ||
* | improve layout | Joey Hess | 2016-08-16 |
| | |||
* | allow shorter name | Joey Hess | 2016-08-16 |
| | |||
* | improve cost table | Joey Hess | 2016-08-16 |
| | |||
* | add cost estimates | Joey Hess | 2016-08-16 |
| | |||
* | key selection working | Joey Hess | 2016-08-16 |
| | |||
* | more command line interface improvements | Joey Hess | 2016-08-16 |
| | |||
* | improve options to select secret key to backup/restore | Joey Hess | 2016-08-16 |
| | |||
* | add --benchmark | Joey Hess | 2016-08-16 |
| | |||
* | switch to random salt byte to make decryption expensive | Joey Hess | 2016-08-16 |
| | |||
* | prompt for name | Joey Hess | 2016-08-12 |
| | |||
* | add --gui option | Joey Hess | 2016-08-12 |
| | |||
* | option parsing | Joey Hess | 2016-08-12 |
| | |||
* | improve output slightly | Joey Hess | 2016-08-12 |
| | |||
* | add checksum to encrypted data | Joey Hess | 2016-08-12 |
| | | | | Needed to verify decryption puzzles | ||
* | zero-pad size of padded bytes | Joey Hess | 2016-08-11 |
| | |||
* | disable decryption puzzle, at least for now | Joey Hess | 2016-08-11 |
| | | | | | | | | It only adds 1 minute GPU time to each crack attempt, on top of the 10 minutes CPU time needed to argon2 the password. Since my implementation of the AES puzzle is currently really slow, this is not worth it. Will revisit when I have a faster AES library to use, or a better puzzle. | ||
* | don't use IV as puzzle after all | Joey Hess | 2016-08-11 |
| | | | | | | | | Not a good idea to use IV, because all the parts of the IV that are 0 will not obscure the data in the first block at all. Instead, sha256 the password to generate the IV, and keep the puzzle as part of the key. | ||
* | guessing puzzle answers | Joey Hess | 2016-08-11 |
| | |||
* | round-tripping now working, except for guessing the puzzle | Joey Hess | 2016-08-11 |
| | |||
* | write via temp file | Joey Hess | 2016-08-11 |
| | | | | | avoids short reads, and also if a backup program came along while the write was happening, avoids short backups | ||
* | obscure shard timestamps | Joey Hess | 2016-08-11 |
| | |||
* | show brute force cost estimate | Joey Hess | 2016-08-11 |
| | |||
* | show store successes/failures | Joey Hess | 2016-08-11 |
| | |||
* | pluggable object storage layer | Joey Hess | 2016-08-11 |
| | |||
* | Shard data type | Joey Hess | 2016-08-11 |
| | |||
* | more todo | Joey Hess | 2016-08-11 |
| |