Skip to content

Simplify and fix PAM configuration, and update documentation

Pre-release
Pre-release

Choose a tag to compare

View all tags
@josephlr josephlr released this 31 Mar 23:20
· 150 commits to master since this release
v0.3.0
dad0c11
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

While this release includes some potentially breaking changes, we don't expect this to break users in practice.

Potentially breaking changes to pam_fscrypt module:

  • #281: Remove the drop_caches and lock_policies options. The lock_policies behavior is now unconditional, while the correct drop_caches setting is now auto-detected. Existing PAM files that specify these options will continue to work, but these options will now be ignored.
  • #278: Prioritize over other session modules. The pam_fscrypt session hook is now inserted into the correct place in the PAM stack when pam_fscrypt is configured using Debian's / Ubuntu's PAM configuration framework.

Non-breaking changes:

  • #261: Add Bash completions for fscrypt
  • #275: Fix an error message
  • #263: Correctly detect "incompletely locked" v1-encrypted directories on kernel versions 5.10 and later

Other:

  • #244: Improve Ubuntu installation instructions
  • #264, #269: Minor README updates
  • #256, #257, #267, #277, #283: CI updates, including switching from Travis CI to GitHub Actions
Assets 2
Loading