redoctober

mirror of https://github.com/cloudflare/redoctober.git synced 2026-02-10 23:10:42 +00:00

Author	SHA1	Message	Date
Nick Sullivan	bb80f777b2	Add new features to UI - Delegate restrictions - Encryption labels	2015-04-09 18:50:30 -07:00
Nick Sullivan	4f3bab44ae	Merge pull request #38 from cloudflare/nick/delegationmodel Changes to delegation model	2015-04-09 17:17:12 -07:00
Nick Sullivan	8e910c2035	Changes to delegation model - decryption can happen by non-admins - encrypted files can be given labels - delegation can limit decryption to specific users and labels	2015-04-09 17:15:44 -07:00
Nick Sullivan	e24e3f3244	Merge pull request #33 from cloudflare/nick/splitauthority Add support for left/right groups	2015-02-10 09:48:17 -08:00
Nick Sullivan	3ab7fe305a	Update travis for the modern age	2015-02-09 19:00:54 -08:00
Nick Sullivan	8c21db7ba4	Add support for left/right groups LeftOwners and RightOwners can now be used as either disjoint or overlapping sets of users for encrypting a message. Default behavior is to set them to Owners given a non-empty Owners set. One member from each group are required to decrypt the message.	2015-02-09 18:51:33 -08:00
Nick Sullivan	c372a02990	Merge pull request #32 from kisom/kyle/show-delegates Decrypt returns the list of users used for delegation	2014-09-14 20:57:25 -07:00
Kyle Isom	91cd67f267	Decrypt returns the list of users used for delegation When decrypting a chunk of data, red october will now report the users whose keys were used in the decryption.	2014-09-14 19:13:37 -07:00
John Graham-Cumming	886bd0d623	Merge pull request #31 from streeter/patch-1 Add some commas for readability	2014-07-08 19:35:50 +01:00
Chris Streeter	2f7dce12c7	Add some commas for readability	2014-07-08 11:04:34 -07:00
Albert Strasheim	95e4a88036	Update README.md for embedded index.html. Add index.html example.	2014-03-02 09:19:08 -08:00
Nick Sullivan	fe77e044a3	Merge pull request #26 from cloudflare/cleanup2 Allow index.html to be overridden again.	2014-03-01 12:17:03 -08:00
Nick Sullivan	8fa387dcaa	Merge pull request #28 from grittygrease/master Merge pull request #1 from grittygrease/server-reload-fix	2014-03-01 12:15:24 -08:00
Nick Sullivan	322fdb5829	Fix bad formatting.	2014-03-01 12:13:48 -08:00
Nick Sullivan	f2d6851c22	Merge pull request #1 from grittygrease/server-reload-fix Add support for unmarshalling ECC passvault	2014-03-01 12:05:13 -08:00
Nick Sullivan	21b4c55a92	Merge pull request #27 from grittygrease/server-reload-fix Add support for unmarshalling ECC passvault	2014-03-01 11:59:39 -08:00
Nick Sullivan	522f2f23b9	Add support for unmarshalling ECC passvault - Minor readme fixes - Add structure for EC Public key unmarshal	2014-03-01 11:55:10 -08:00
Albert Strasheim	b31541d534	Allow index.html to be overridden again.	2014-03-01 10:54:46 -08:00
John Graham-Cumming	1a0f762b70	Merge pull request #25 from cloudflare/cleanup1 Deprecate -static parameter. Embed HTML instead.	2014-03-01 18:24:30 +00:00
Albert Strasheim	d9c8ab3ef8	Deprecate -static parameter. Embed HTML instead.	2014-03-01 09:32:51 -08:00
Nick Sullivan	cd72cb6ed4	Merge pull request #21 from ewalk153/patch-1 corrected typo in instructions for "run the server"	2014-02-05 21:16:31 -08:00
Nick Sullivan	a52e56ab54	Merge pull request #22 from kisom/ecdsa Add ECC support	2014-01-16 14:14:06 -08:00
Kyle	de5b1817c7	SHA256 the ECDH shared key This ensures the shared key is a more uniform distribution than just taking the bytes from the shared X.	2014-01-10 16:27:14 -07:00
Nick Sullivan	f88722f3ee	Add a step to get "go vet" in travis.ci build	2014-01-10 11:43:38 -08:00
Nick Sullivan	f243f78b7c	Update travis.ci to use Go tip	2014-01-10 11:22:28 -08:00
Kyle	1916f385ed	Move {En,De}cryptCBC and MakeRandom to symcrypt. The symcrypt package now contains common secret-key code that is redefined in a number of packages.	2014-01-10 03:58:43 -07:00
Kyle	a696c85bba	Cleanups based on feedback from pull request.	2014-01-10 03:09:55 -07:00
Kyle	46b93b7fba	Update core_test to check for DefaultRecordType. In the passvault, the default type of public key cryptography is selected via a variable. The core test has been changed where it relies on RSA specifically to check for the default record type.	2014-01-09 19:23:44 -07:00
Kyle	4e4ac735ef	Add ECCRecord support to keycache. This commit adds ECC cases to functions checking for RSA records. Additionally, the rsaEncryptedKey variable is changed to pubEncryptedKey to reflect a general use of public key crypto.	2014-01-09 19:22:09 -07:00
Kyle	db0b10e671	Add ECC support to cryptor. There are a few changes made here: * Comments have been updated to reflect the presence of ECC records. * Variables named rsa* have been renamed pub* to reflect the general use of public key cryptography, instead of RSA specifically. * An if statement for RSA keys now handles both RSA and ECC keys.	2014-01-09 19:20:06 -07:00
Kyle	5ea44c0ffb	Add ECC support to passvault. This adds code to handle ECC records; the RSA code remains intact. While old password records are not affected, new records use ECC. Due to the use of public keys to encrypt a KEK that is then used to encrypt data, there is no visible change to end users. A user with an RSA key can interact and share a secret with a user who has an ECC key. The bulk of this commit simply adds cases for handling EC records.	2014-01-09 19:18:16 -07:00
Kyle	689f0e6fdc	Add ECDH package. The package encrypts data using ECDHE with AES-128-CBC-HMAC-SHA1; this matches the other components. The curve used is P256 to match the use of AES-128. The Go ECDSA package is used; no signatures are done, but it presents usable PublicKey and PrivateKey types that are useful for this system.	2014-01-09 19:16:02 -07:00
Kyle	c0d375d4bf	Begin adding ECDSA support.	2014-01-09 06:53:48 -07:00
Eric Walker	c29cd8aa5f	corrected typo in instructions for "run the server" Keygen instructions suggestion using the folder named "cert". Server run instructions use the folder "certs". This change harmonizes the two to be "cert".	2013-12-02 10:38:11 +01:00
Nick Sullivan	f0b03d58b7	Update README.md Fix issue #20	2013-11-27 17:58:00 -08:00
Nick Sullivan	f37bb41abd	Merge pull request #19 from grittygrease/32bit-compatible Fix passvault on 32-bit systems	2013-11-27 10:58:45 -08:00
Nick Sullivan	8cc69edefe	Fix passvault on 32-bit systems The passvault's id is created with math.rand as a native int. If the vault is created on a 64-bit system, it breaks compatibility with 32-bit systems. - Generate vaults with 32-bit ids. - Update testcode	2013-11-27 10:55:24 -08:00
Albert Strasheim	056cc550df	Add travis-ci build status to README.	2013-11-27 07:58:58 -08:00
Albert Strasheim	60a1cf5bd4	Merge pull request #18 from cloudflare/alberts/travis-ci Added travis-ci configuration file.	2013-11-27 07:57:21 -08:00
Albert Strasheim	3d90b62ea9	Added travis-ci configuration file.	2013-11-27 07:53:59 -08:00
Nick Sullivan	7e9a8d64cf	Merge pull request #17 from cloudflare/govet-testcode Govet testcode	2013-11-26 12:20:19 -08:00
Nick Sullivan	0dc73c5c3a	Merge pull request #1 from grittygrease/govet-testcode Make testcode play nice with go vet	2013-11-26 12:17:33 -08:00
Nick Sullivan	669d7279c2	Make testcode play nice with go vet	2013-11-26 12:15:37 -08:00
Albert Strasheim	bd1c3db2d2	Merge pull request #16 from cloudflare/alberts/droneio Add drone.io build status.	2013-11-26 11:53:15 -08:00
Albert Strasheim	c570a1f456	Add drone.io build status.	2013-11-26 11:49:53 -08:00
Albert Strasheim	9a5e256780	Merge pull request #15 from cloudflare/alberts/issue14 Tweak error returns to work with older Go. Fixes #14	2013-11-26 11:38:40 -08:00
Albert Strasheim	984f95ae17	Tweak error returns to work with older Go. Fixes #14	2013-11-26 11:34:16 -08:00
John Graham-Cumming	3bb2a1f2b0	Merge pull request #13 from majek/fix_default_vault_location By default vault should not be stored in /tmp!	2013-11-26 07:07:12 -08:00
John Graham-Cumming	5e00bad1ed	Merge pull request #11 from majek/better_readme2 Rewritten readme	2013-11-26 07:06:31 -08:00
Marek Majkowski	15f4b5bc80	By default vault should not be stored in /tmp!	2013-11-26 06:37:14 -08:00

1 2

82 Commits