libgocryptfs/internal/configfile
Sebastian Lackner f3c777d5ea main: Add '-devrandom' commandline option
Allows to use /dev/random for generating the master key instead of the
default Go implementation. When the kernel random generator has been
properly initialized both are considered equally secure, however:

* Versions of Go prior to 1.9 just fall back to /dev/urandom if the
  getrandom() syscall would be blocking (Go Bug #19274)

* Kernel versions prior to 3.17 do not support getrandom(), and there
  is no check if the random generator has been properly initialized
  before reading from /dev/urandom

This is especially useful for embedded hardware with low-entroy. Please
note that generation of the master key might block indefinitely if the
kernel cannot harvest enough entropy.
2017-11-21 23:37:06 +01:00
..
config_test tests: update config_test example files 2016-06-16 23:19:05 +02:00
config_file.go main: Add '-devrandom' commandline option 2017-11-21 23:37:06 +01:00
config_test.go main: Add '-devrandom' commandline option 2017-11-21 23:37:06 +01:00
feature_flags.go full stack: implement HKDF support 2017-03-05 21:59:55 +01:00
scrypt.go exitcodes: pull all exit code definitions into the package 2017-05-07 22:16:22 +02:00
scrypt_test.go configfile: rename "kdf.go" -> "scrypt.go" 2017-02-25 18:51:17 +01:00