In this release, pam_mount starts making use of the helper= option available in util-linux >= 2.20 so that umounting crypto mounts should work through just the umount(8) program. A crash in ehd_log was fixed as well.
This release restores keyfile support for non-crypto mounts. A new cryptmount library is shipped that contains the code shared among pam_mount and its utilities. libmount from util-linux 2.20 is now utilized in part as well.
This release restores support in mount.crypt for files >=4GB.
Networked volumes do not require a "server" attribute anymore, which allows integration with pam_winbind and Active Directory. Multiple diagnostics were added to umount.crypt to help determine details of potential failures.
Variable expansion was broadened to make it work with options for AUFS. A write to read-only memory affecting NT domain usernames was corrected.
This release fixes an unintialized variable that led to a crash, and support for manual keysize truncation has been corrected.
This release fixes an issue where mount.crypt did not pass an option to cryptsetup.
This release fixes a double free and first-time overriding of the "mntoptions" config item.
This release fixes an unexpected termination of the login procedure, and deals better with stale entries in /etc/cmtab.
Fixes negated case-insensitive matching for supplementary group check.
Starting with this release, crypto mounts are now tracked via /etc/cmtab. An off-by-one in the cryptomount password input has also been fixed.
Accumulated bug reports were addressed: an umount call inversion and terminating lingering processes were fixed.
Fixed segfaults in the program suite when used with cron.
Resolved a few leaking memory blocks and file descriptors in error-handling code paths.
Closed a leaking fd, resynchronize DTD with the XML configuration file and optionally make the DTD available for installation. A number of compile errors on BSD have been fixed.
pam_mount is a Pluggable Authentication Module that can mount volumes for a user session (login). Supports mounting local filesystems of any kind the normal mount utility supports, with extra code to better support CIFS, FUSE, various crypto, and more.
This release contains a few LUKS regression fixes.
Changes: Placeholders will now be expanded in the option list. Cipher type is passed to LUKS now. A few buglets have also been fixed.
New standalone crypto helper programs have been introduced and the shell programs be removed.
The crypto code was updated to work again and use the old defaults. Legacy truecrypt4 support has been removed.
This release fixes a regression and adds security-critical checks for user-defined volumes. All remaining fixed-size buffers have been replaced, and support for encfs 1.3.x has been added.
This version adds options to automatically kill processes using open mounts on logout. Several fixed-size buffers have been replaced by dynamic ones, removing limits on the config file.