=========================================================== .___ __ __ _________________ __ __ __| _/|__|/ |_ / ___\_` __ \__ \ | | \/ __ | | \\_ __\ / /_/ > | \// __ \| | / /_/ | | || | \___ /|__| (____ /____/\____ | |__||__| /_____/ \/ \/ grep rough audit - static analysis tool v2.8 written by @Wireghoul =================================[justanotherhacker.com]=== tomb-2.8+dfsg1/doc/literate/shocco-135- tomb-2.8+dfsg1/doc/literate/shocco:136:# We're about to create a ton of shit under our `$WORK` directory. Register tomb-2.8+dfsg1/doc/literate/shocco-137-# an `EXIT` trap that cleans everything up. This guarantees we don't leave ############################################## tomb-2.8+dfsg1/doc/literate/shocco-145-# make the code and doc formatting phases a bit easier. The result of this tomb-2.8+dfsg1/doc/literate/shocco:146:# pipeline is written to a temp file under the `$WORK` directory so we can tomb-2.8+dfsg1/doc/literate/shocco-147-# take a few passes over it. ############################################## tomb-2.8+dfsg1/doc/literate/shocco-181- tomb-2.8+dfsg1/doc/literate/shocco:182: # Accumulate comment lines into `$docsbuf` and code lines into tomb-2.8+dfsg1/doc/literate/shocco:183: # `$codebuf`. Only lines matching `/#(?: |$)/` are considered doc tomb-2.8+dfsg1/doc/literate/shocco-184- # lines. ############################################## tomb-2.8+dfsg1/doc/literate/shocco-191- tomb-2.8+dfsg1/doc/literate/shocco:192: # If we have stuff in both `$docsbuf` and `$codebuf`, it means tomb-2.8+dfsg1/doc/literate/shocco:193: # we're at some kind of boundary. If `$codehead` isn't set, we're at tomb-2.8+dfsg1/doc/literate/shocco:194: # the first comment/doc line, so store the buffer to `$codehead` and tomb-2.8+dfsg1/doc/literate/shocco:195: # keep going. If `$codehead` *is* set, we've crossed into another code tomb-2.8+dfsg1/doc/literate/shocco-196- # block and are ready to output both blocks and then straight pipe ############################################## tomb-2.8+dfsg1/extras/android/tomb-712- for d in $_deps; do tomb-2.8+dfsg1/extras/android/tomb:713: _print "`which $d`" tomb-2.8+dfsg1/extras/android/tomb-714- done ############################################## tomb-2.8+dfsg1/extras/android/tomb-836- TOMBKEYFILE=$keyfile tomb-2.8+dfsg1/extras/android/tomb:837: TOMBKEY="`cat $TOMBKEYFILE`" tomb-2.8+dfsg1/extras/android/tomb-838- fi ############################################## tomb-2.8+dfsg1/extras/android/tomb-1038- tomb-2.8+dfsg1/extras/android/tomb:1039: { is_valid_key "`cat $tmpnewkey`" } || { tomb-2.8+dfsg1/extras/android/tomb-1040- _failure "Error: the newly generated keyfile does not seem valid." } ############################################## tomb-2.8+dfsg1/extras/android/tomb-1107- _message "calculating iterations" tomb-2.8+dfsg1/extras/android/tomb:1108: pbkdf2_iter=`tomb-kdb-pbkdf2-getiter $microseconds` tomb-2.8+dfsg1/extras/android/tomb-1109- _message "encoding the password" tomb-2.8+dfsg1/extras/android/tomb-1110- # We use a length of 64bytes = 512bits (more than needed!?) tomb-2.8+dfsg1/extras/android/tomb:1111: tombpass=`tomb-kdb-pbkdf2 $pbkdf2_salt $pbkdf2_iter 64 <<<"${tombpass}"` tomb-2.8+dfsg1/extras/android/tomb-1112- ############################################## tomb-2.8+dfsg1/extras/android/tomb-1159- tomb-2.8+dfsg1/extras/android/tomb:1160: [[ "`file $imagefile`" =~ "JPEG" ]] || { tomb-2.8+dfsg1/extras/android/tomb-1161- _warning "Encode failed: ::1 image file:: is not a jpeg image." $imagefile ############################################## tomb-2.8+dfsg1/extras/android/tomb-1457- # load the key contents (set global variable) tomb-2.8+dfsg1/extras/android/tomb:1458: TOMBKEY="`cat $TOMBKEYFILE`" tomb-2.8+dfsg1/extras/android/tomb-1459- ############################################## tomb-2.8+dfsg1/extras/android/tomb-1463- _warning "Dumping contents to screen:" tomb-2.8+dfsg1/extras/android/tomb:1464: print "`cat $TOMBKEY`" tomb-2.8+dfsg1/extras/android/tomb-1465- _warning "--" ############################################## tomb-2.8+dfsg1/extras/android/tomb-1692- tomb-2.8+dfsg1/extras/android/tomb:1693: luksdump="`_sudo cryptsetup luksDump ${nstloop}`" tomb-2.8+dfsg1/extras/android/tomb-1694- tombdump=(`print $luksdump | awk ' ############################################## tomb-2.8+dfsg1/extras/android/tomb-1820-# tomb-2.8+dfsg1/extras/android/tomb:1821:# Execution of code inside a tomb may present a security risk, e.g., tomb-2.8+dfsg1/extras/android/tomb-1822-# if the tomb is shared or compromised, an attacker could embed ############################################## tomb-2.8+dfsg1/extras/android/tomb-1925- # list all open tombs tomb-2.8+dfsg1/extras/android/tomb:1926: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/extras/android/tomb-1927- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/extras/android/tomb-1930- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/extras/android/tomb:1931: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/extras/android/tomb-1932- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/extras/android/tomb-1948- # which doesn't work when tomb filename contain dots tomb-2.8+dfsg1/extras/android/tomb:1949: # tombsince=`date --date=@${mapper[(ws:.:)3]} +%c` tomb-2.8+dfsg1/extras/android/tomb-1950- ############################################## tomb-2.8+dfsg1/extras/android/tomb-1984- # Now check hooks (TODO Android) tomb-2.8+dfsg1/extras/android/tomb:1985:# mounted_hooks=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/extras/android/tomb-1986-# for h in ${mounted_hooks}; do tomb-2.8+dfsg1/extras/android/tomb-1987-# _message "::1 tombname:: hooks ::2 hookname:: on ::3 hookdest::" \ tomb-2.8+dfsg1/extras/android/tomb:1988:# $tombname "`basename ${h[(ws:;:)1]}`" ${h[(ws:;:)2]} tomb-2.8+dfsg1/extras/android/tomb-1989-# done ############################################## tomb-2.8+dfsg1/extras/android/tomb-2075- tomb-2.8+dfsg1/extras/android/tomb:2076: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/extras/android/tomb-2077- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/extras/android/tomb-2092- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/extras/android/tomb:2093: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/extras/android/tomb-2094- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/extras/android/tomb-2199- _verbose "Checking for index: ::1::" ${t} tomb-2.8+dfsg1/extras/android/tomb:2200: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/extras/android/tomb-2201- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/extras/android/tomb-2242- tomb-2.8+dfsg1/extras/android/tomb:2243: local oldtombsize=$(( `stat -c %s "$TOMBPATH" 2>/dev/null` / 1048576 )) tomb-2.8+dfsg1/extras/android/tomb-2244- local mounted_tomb=`mount_list | ############################################## tomb-2.8+dfsg1/extras/android/tomb-2323- else tomb-2.8+dfsg1/extras/android/tomb:2324: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/extras/android/tomb-2325- fi ############################################## tomb-2.8+dfsg1/extras/android/tomb-2335- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/extras/android/tomb:2336: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/extras/android/tomb-2337- ############################################## tomb-2.8+dfsg1/extras/android/tomb-2364- # check if there are binded dirs and close them tomb-2.8+dfsg1/extras/android/tomb:2365: bind_tombs=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/extras/android/tomb-2366- for b in ${bind_tombs}; do ############################################## tomb-2.8+dfsg1/extras/android/tomb-2369- _message "Closing tomb bind hook: ::1 hook::" $bind_mount tomb-2.8+dfsg1/extras/android/tomb:2370: _sudo umount "`print - ${bind_mount}`" || { tomb-2.8+dfsg1/extras/android/tomb-2371- [[ -n $SLAM ]] && { tomb-2.8+dfsg1/extras/android/tomb-2372- _success "Slamming tomb: killing all processes using this hook." tomb-2.8+dfsg1/extras/android/tomb:2373: slam_tomb "`print - ${bind_mount}`" || _failure "Cannot slam the bind hook ::1 hook::" $bind_mount tomb-2.8+dfsg1/extras/android/tomb:2374: umount "`print - ${bind_mount}`" || _failure "Cannot slam the bind hook ::1 hook::" $bind_mount tomb-2.8+dfsg1/extras/android/tomb-2375- } || { ############################################## tomb-2.8+dfsg1/extras/android/tomb-2413- # $1 = tomb mount point tomb-2.8+dfsg1/extras/android/tomb:2414: if [[ -z `fuser -m "$1" 2>/dev/null` ]]; then tomb-2.8+dfsg1/extras/android/tomb-2415- return 0 ############################################## tomb-2.8+dfsg1/extras/android/tomb-2426- fuser -s -m "$1" -k -M -$s tomb-2.8+dfsg1/extras/android/tomb:2427: if [[ -z `fuser -m "$1" 2>/dev/null` ]]; then tomb-2.8+dfsg1/extras/android/tomb-2428- return 0 ############################################## tomb-2.8+dfsg1/extras/dismissed/tomb-open-91- sleep .5 tomb-2.8+dfsg1/extras/dismissed/tomb-open:92: c=`expr $c + 1` tomb-2.8+dfsg1/extras/dismissed/tomb-open-93- if [ $c -gt 60 ]; then ############################################## tomb-2.8+dfsg1/extras/dismissed/tomb-open-108- sleep .5 tomb-2.8+dfsg1/extras/dismissed/tomb-open:109: c=`expr $c + 1` tomb-2.8+dfsg1/extras/dismissed/tomb-open-110- if [ $c -gt 30 ]; then ############################################## tomb-2.8+dfsg1/extras/dismissed/tomb-open-133- tomb-2.8+dfsg1/extras/dismissed/tomb-open:134: mtmp=`$TOMBEXEC mktemp tomb` tomb-2.8+dfsg1/extras/dismissed/tomb-open-135- sudo mount /dev/$usbpart $mtmp ############################################## tomb-2.8+dfsg1/extras/dismissed/tomb-open-157- tombname=${1} tomb-2.8+dfsg1/extras/dismissed/tomb-open:158: tombbase=`basename $tombname` tomb-2.8+dfsg1/extras/dismissed/tomb-open:159: tombmap=`mount -l | awk "/\[${tombbase}\]\$/"' { print $1 } '` tomb-2.8+dfsg1/extras/dismissed/tomb-open:160: tombmount=`mount -l | awk "/\[${tombbase}\]\$/"' { print $3 } '` tomb-2.8+dfsg1/extras/dismissed/tomb-open-161- if [ -x ./tomb-status ]; then # launch from build dir ############################################## tomb-2.8+dfsg1/extras/dismissed/tomb-open-174- tomb-2.8+dfsg1/extras/dismissed/tomb-open:175: tombdir=`dirname $1` tomb-2.8+dfsg1/extras/dismissed/tomb-open:176: tombfile=`basename $1` tomb-2.8+dfsg1/extras/dismissed/tomb-open-177- tombname=${tombfile%%\.*} ############################################## tomb-2.8+dfsg1/extras/dismissed/undertaker-134- ###get mountpoint for device tomb-2.8+dfsg1/extras/dismissed/undertaker:135: mountpoint=`egrep "^${device} " /etc/mtab|cut -d ' ' -f2` tomb-2.8+dfsg1/extras/dismissed/undertaker-136- undertaker_scheme ${print_path[@]} file ${mountpoint}/${keypath} ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-520- tomb-2.8+dfsg1/extras/gtomb/gtomb:521: tombname=`echo "$tombname" | cut -c1-16` tomb-2.8+dfsg1/extras/gtomb/gtomb-522- ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-555- disindex) tomb-2.8+dfsg1/extras/gtomb/gtomb:556: tombloc=`"$TOMBPATH" list "$tombname" --get-mountpoint` tomb-2.8+dfsg1/extras/gtomb/gtomb-557- touch "$tombloc/.noindex" ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-561- enindex) tomb-2.8+dfsg1/extras/gtomb/gtomb:562: tombloc=`"$TOMBPATH" list "$tombname" --get-mountpoint` tomb-2.8+dfsg1/extras/gtomb/gtomb-563- rm -f "$tombloc/.noindex" ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-567- binds) tomb-2.8+dfsg1/extras/gtomb/gtomb:568: tombloc=`"$TOMBPATH" list "$tombname" --get-mountpoint` tomb-2.8+dfsg1/extras/gtomb/gtomb-569- bindhooks=`zenity \ ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-579- posts) tomb-2.8+dfsg1/extras/gtomb/gtomb:580: tombloc=`"$TOMBPATH" list "$tombname" --get-mountpoint` tomb-2.8+dfsg1/extras/gtomb/gtomb-581- posthooks=`zenity \ ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-613- _sudo tomb-2.8+dfsg1/extras/gtomb/gtomb:614: tombname=`echo "$tombname" | cut -c1-16` tomb-2.8+dfsg1/extras/gtomb/gtomb-615- "$TOMBPATH" close "$tombname" ############################################## tomb-2.8+dfsg1/extras/gtomb/gtomb-638- _sudo tomb-2.8+dfsg1/extras/gtomb/gtomb:639: tombname=`echo "$tombname" | cut -c1-16` tomb-2.8+dfsg1/extras/gtomb/gtomb-640- "$TOMBPATH" slam "$tombname" ############################################## tomb-2.8+dfsg1/extras/kdf-keys/test.sh-6- while read line; do tomb-2.8+dfsg1/extras/kdf-keys/test.sh:7: pass=`cut -f1 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh:8: salt=`cut -f2 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh:9: iter=`cut -f3 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh:10: keylen=`cut -f4 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh:11: expected=`cut -f5 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh:12: hexsalt=`cut -f6 <<<$line` tomb-2.8+dfsg1/extras/kdf-keys/test.sh-13- #TODO: check! tomb-2.8+dfsg1/extras/kdf-keys/test.sh:14: derived=`./tomb-kdb-pbkdf2 $hexsalt $iter $keylen <<<$pass` tomb-2.8+dfsg1/extras/kdf-keys/test.sh-15- if [[ $derived != $expected ]]; then ############################################## tomb-2.8+dfsg1/extras/kdf-keys/test.sh-28- for pwd in $passwords; do tomb-2.8+dfsg1/extras/kdf-keys/test.sh:29: results+=`./tomb-kdb-pbkdf2 $hexsalt $iter $keylen <<<$pwd` tomb-2.8+dfsg1/extras/kdf-keys/test.sh-30- done ############################################## tomb-2.8+dfsg1/extras/test/80_steganography.sh-25- test_expect_success 'Testing tomb and steganographic: piping keys using -k -' ' tomb-2.8+dfsg1/extras/test/80_steganography.sh:26: tkey=`tt exhume $tomb_img --unsafe --tomb-pwd $DUMMYPASS` && tomb-2.8+dfsg1/extras/test/80_steganography.sh-27- print "$tkey" | tt open -k - $tomb --unsafe --tomb-pwd $DUMMYPASS && ############################################## tomb-2.8+dfsg1/extras/test/80_steganography.sh-53- test_expect_success 'Testing tomb with GnuPG keys and steganographic: piping keys using -k -' ' tomb-2.8+dfsg1/extras/test/80_steganography.sh:54: tkey=`tt exhume $tomb_img --unsafe --tomb-pwd $DUMMYPASS` && tomb-2.8+dfsg1/extras/test/80_steganography.sh-55- print "$tkey" | tt open -k - $tomb -g && ############################################## tomb-2.8+dfsg1/extras/test/runtests-282- tt -k /tmp/test.tomb.key --unsafe --tomb-pwd ${dummypass} open /tmp/test.tomb tomb-2.8+dfsg1/extras/test/runtests:283: rnd2=`cat $HOME/$bindtest` tomb-2.8+dfsg1/extras/test/runtests-284- if [ "$rnd" = "$rnd2" ]; then ############################################## tomb-2.8+dfsg1/extras/test/runtests-330- OLDT="/tmp/tomb-regression/tomb" tomb-2.8+dfsg1/extras/test/runtests:331: version=`${OLDT} -v |& awk 'NR==1 {print $3}'` tomb-2.8+dfsg1/extras/test/runtests-332- _message "tomb version: $version" ############################################## tomb-2.8+dfsg1/extras/test/runtests-552- # test piping keys using -k - tomb-2.8+dfsg1/extras/test/runtests:553: tkey=`tt --unsafe --tomb-pwd ${dummypass} exhume /tmp/tomb.jpg` tomb-2.8+dfsg1/extras/test/runtests-554- print "$tkey" | tt --unsafe --tomb-pwd ${dummypass} open -k - /tmp/test.tomb ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-233- # Force HOME to _USER's HOME if necessary tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:234: local home=`_get_home $_USER` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-235- [[ $home == $HOME ]] || { ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-562- # Tomb file may be a LUKS FS (or we are creating it) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:563: [[ "`file $1`" =~ "luks encrypted file" ]] || { tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-564- _warning "File is not yet a tomb: ::1 tomb file::" $1 } ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-586- # checks if Tomb already mounted (or we cannot alter it) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:587: local maphash=`realpath $TOMBPATH | sha256sum -z` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-588- local nextloop=`losetup -f` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:589: TOMBMAPPER="tomb.$TOMBNAME.${maphash[(w)1]}.`basename $nextloop`" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-590- local mounted_tombs=(`list_tomb_mounts`) ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-592- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:593: usedmapper=`basename "${t[(ws:;:)1]}"` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-594- [[ "${usedmapper%.*}" == "${TOMBMAPPER%.*}" ]] && ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-857- for d in $_deps; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:858: _print "`which $d`" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-859- done ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1104- } tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1105: gpgpopt+=(`_recipients_arg "--try-secret-key" $recipients`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1106- } ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1372- for gpg_id in ${recipients[@]}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1373: _warning " `_gpg_fingerprint "$gpg_id"` :: `_gpg_uid "$gpg_id"`" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1374- done tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1375- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1376: gpgopt+=(`_recipients_arg "$recipients_opt" $recipients`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1377- else ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1445- _message "calculating iterations" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1446: pbkdf2_iter=`tomb-kdb-pbkdf2-getiter $microseconds` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1447- _message "encoding the password" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1448- # We use a length of 64bytes = 512bits (more than needed!?) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1449: tombpass=`tomb-kdb-pbkdf2 $pbkdf2_salt $pbkdf2_iter 64 <<<"${tombpass}"` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1450- ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1505- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:1506: [[ "`file $imagefile`" =~ "JPEG" ]] || { tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-1507- _warning "Encode failed: ::1 image file:: is not a jpeg image." $imagefile ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2199- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2200: luksdump="`_sudo cryptsetup luksDump ${TOMBLOOP}`" tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2201- tombdump=(`print $luksdump | awk ' ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2282- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2283: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2284- ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2316-# tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2317:# Execution of code inside a tomb may present a security risk, e.g., tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2318-# if the tomb is shared or compromised, an attacker could embed ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2423- # list all open tombs tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2424: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2425- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2428- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2429: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2430- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2446- # which doesn't work when tomb filename contain dots tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2447: # tombsince=`date --date=@${mapper[(ws:.:)3]} +%c` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2448- ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2456- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2457: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2458- } ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2481- # Now check hooks tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2482: mounted_hooks=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2483- for h in ${mounted_hooks}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2484- _message "::1 tombname:: hooks ::2 hookname:: on ::3 hookdest::" \ tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2485: $tombname "`basename ${h[(ws:;:)1]}`" ${h[(ws:;:)2]} tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2486- done ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2582- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2583: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2584- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2599- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2600: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2601- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2706- _verbose "Checking for index: ::1::" ${t} tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2707: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2708- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2757- tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2758: local oldtombsize=$(( `stat -c %s "$TOMBPATH" 2>/dev/null` / 1048576 )) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2759- ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2820- else tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2821: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2822- fi ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2832- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2833: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2834- ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2865- # check if there are binded dirs and close them tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2866: bind_tombs=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2867- for b in ${(f)"$(list_tomb_binds $tombname $tombmount)"}; do ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2923- found=0 tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2924: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2925- if [[ "${#mounted_tombs}" -gt 0 ]]; then ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2940- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2941: powner=`_get_username $puid` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2942- _verbose "process found: $pnum $pcmd ($powner)" ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2958- else tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2959: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2960- fi ############################################## tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2981- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb:2982: powner=`_get_username $puid` tomb-2.8+dfsg1/.pc/include-kdf-binaries.patch/tomb-2983- _verbose "process found: $pnum $pcmd ($powner)" ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-235- # Force HOME to _USER's HOME if necessary tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:236: local home=`_get_home $_USER` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-237- [[ $home == $HOME ]] || { ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-564- # Tomb file may be a LUKS FS (or we are creating it) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:565: [[ "`file $1`" =~ "luks encrypted file" ]] || { tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-566- _warning "File is not yet a tomb: ::1 tomb file::" $1 } ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-588- # checks if Tomb already mounted (or we cannot alter it) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:589: local maphash=`realpath $TOMBPATH | sha256sum -z` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-590- local nextloop=`losetup -f` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:591: TOMBMAPPER="tomb.$TOMBNAME.${maphash[(w)1]}.`basename $nextloop`" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-592- local mounted_tombs=(`list_tomb_mounts`) ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-594- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:595: usedmapper=`basename "${t[(ws:;:)1]}"` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-596- [[ "${usedmapper%.*}" == "${TOMBMAPPER%.*}" ]] && ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-859- for d in $_deps; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:860: _print "`which $d`" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-861- done ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1106- } tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1107: gpgpopt+=(`_recipients_arg "--try-secret-key" $recipients`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1108- } ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1374- for gpg_id in ${recipients[@]}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1375: _warning " `_gpg_fingerprint "$gpg_id"` :: `_gpg_uid "$gpg_id"`" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1376- done tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1377- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1378: gpgopt+=(`_recipients_arg "$recipients_opt" $recipients`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1379- else ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1447- _message "calculating iterations" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1448: pbkdf2_iter=`tomb-kdb-pbkdf2-getiter $microseconds` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1449- _message "encoding the password" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1450- # We use a length of 64bytes = 512bits (more than needed!?) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1451: tombpass=`tomb-kdb-pbkdf2 $pbkdf2_salt $pbkdf2_iter 64 <<<"${tombpass}"` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1452- ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1507- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:1508: [[ "`file $imagefile`" =~ "JPEG" ]] || { tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-1509- _warning "Encode failed: ::1 image file:: is not a jpeg image." $imagefile ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2201- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2202: luksdump="`_sudo cryptsetup luksDump ${TOMBLOOP}`" tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2203- tombdump=(`print $luksdump | awk ' ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2284- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2285: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2286- ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2318-# tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2319:# Execution of code inside a tomb may present a security risk, e.g., tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2320-# if the tomb is shared or compromised, an attacker could embed ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2425- # list all open tombs tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2426: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2427- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2430- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2431: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2432- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2448- # which doesn't work when tomb filename contain dots tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2449: # tombsince=`date --date=@${mapper[(ws:.:)3]} +%c` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2450- ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2458- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2459: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2460- } ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2483- # Now check hooks tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2484: mounted_hooks=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2485- for h in ${mounted_hooks}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2486- _message "::1 tombname:: hooks ::2 hookname:: on ::3 hookdest::" \ tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2487: $tombname "`basename ${h[(ws:;:)1]}`" ${h[(ws:;:)2]} tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2488- done ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2584- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2585: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2586- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2601- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2602: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2603- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2708- _verbose "Checking for index: ::1::" ${t} tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2709: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2710- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2759- tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2760: local oldtombsize=$(( `stat -c %s "$TOMBPATH" 2>/dev/null` / 1048576 )) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2761- ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2822- else tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2823: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2824- fi ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2834- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2835: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2836- ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2867- # check if there are binded dirs and close them tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2868: bind_tombs=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2869- for b in ${(f)"$(list_tomb_binds $tombname $tombmount)"}; do ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2925- found=0 tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2926: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2927- if [[ "${#mounted_tombs}" -gt 0 ]]; then ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2942- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2943: powner=`_get_username $puid` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2944- _verbose "process found: $pnum $pcmd ($powner)" ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2960- else tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2961: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2962- fi ############################################## tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2983- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb:2984: powner=`_get_username $puid` tomb-2.8+dfsg1/.pc/fix-typo-calling-pinentry_assuan_getpass.patch/tomb-2985- _verbose "process found: $pnum $pcmd ($powner)" ############################################## tomb-2.8+dfsg1/tomb-235- # Force HOME to _USER's HOME if necessary tomb-2.8+dfsg1/tomb:236: local home=`_get_home $_USER` tomb-2.8+dfsg1/tomb-237- [[ $home == $HOME ]] || { ############################################## tomb-2.8+dfsg1/tomb-564- # Tomb file may be a LUKS FS (or we are creating it) tomb-2.8+dfsg1/tomb:565: [[ "`file $1`" =~ "luks encrypted file" ]] || { tomb-2.8+dfsg1/tomb-566- _warning "File is not yet a tomb: ::1 tomb file::" $1 } ############################################## tomb-2.8+dfsg1/tomb-588- # checks if Tomb already mounted (or we cannot alter it) tomb-2.8+dfsg1/tomb:589: local maphash=`realpath $TOMBPATH | sha256sum -z` tomb-2.8+dfsg1/tomb-590- local nextloop=`losetup -f` tomb-2.8+dfsg1/tomb:591: TOMBMAPPER="tomb.$TOMBNAME.${maphash[(w)1]}.`basename $nextloop`" tomb-2.8+dfsg1/tomb-592- local mounted_tombs=(`list_tomb_mounts`) ############################################## tomb-2.8+dfsg1/tomb-594- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/tomb:595: usedmapper=`basename "${t[(ws:;:)1]}"` tomb-2.8+dfsg1/tomb-596- [[ "${usedmapper%.*}" == "${TOMBMAPPER%.*}" ]] && ############################################## tomb-2.8+dfsg1/tomb-859- for d in $_deps; do tomb-2.8+dfsg1/tomb:860: _print "`which $d`" tomb-2.8+dfsg1/tomb-861- done ############################################## tomb-2.8+dfsg1/tomb-1106- } tomb-2.8+dfsg1/tomb:1107: gpgpopt+=(`_recipients_arg "--try-secret-key" $recipients`) tomb-2.8+dfsg1/tomb-1108- } ############################################## tomb-2.8+dfsg1/tomb-1374- for gpg_id in ${recipients[@]}; do tomb-2.8+dfsg1/tomb:1375: _warning " `_gpg_fingerprint "$gpg_id"` :: `_gpg_uid "$gpg_id"`" tomb-2.8+dfsg1/tomb-1376- done tomb-2.8+dfsg1/tomb-1377- tomb-2.8+dfsg1/tomb:1378: gpgopt+=(`_recipients_arg "$recipients_opt" $recipients`) tomb-2.8+dfsg1/tomb-1379- else ############################################## tomb-2.8+dfsg1/tomb-1447- _message "calculating iterations" tomb-2.8+dfsg1/tomb:1448: pbkdf2_iter=`tomb-kdb-pbkdf2-getiter $microseconds` tomb-2.8+dfsg1/tomb-1449- _message "encoding the password" tomb-2.8+dfsg1/tomb-1450- # We use a length of 64bytes = 512bits (more than needed!?) tomb-2.8+dfsg1/tomb:1451: tombpass=`tomb-kdb-pbkdf2 $pbkdf2_salt $pbkdf2_iter 64 <<<"${tombpass}"` tomb-2.8+dfsg1/tomb-1452- ############################################## tomb-2.8+dfsg1/tomb-1507- tomb-2.8+dfsg1/tomb:1508: [[ "`file $imagefile`" =~ "JPEG" ]] || { tomb-2.8+dfsg1/tomb-1509- _warning "Encode failed: ::1 image file:: is not a jpeg image." $imagefile ############################################## tomb-2.8+dfsg1/tomb-2201- tomb-2.8+dfsg1/tomb:2202: luksdump="`_sudo cryptsetup luksDump ${TOMBLOOP}`" tomb-2.8+dfsg1/tomb-2203- tombdump=(`print $luksdump | awk ' ############################################## tomb-2.8+dfsg1/tomb-2284- tomb-2.8+dfsg1/tomb:2285: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/tomb-2286- ############################################## tomb-2.8+dfsg1/tomb-2318-# tomb-2.8+dfsg1/tomb:2319:# Execution of code inside a tomb may present a security risk, e.g., tomb-2.8+dfsg1/tomb-2320-# if the tomb is shared or compromised, an attacker could embed ############################################## tomb-2.8+dfsg1/tomb-2425- # list all open tombs tomb-2.8+dfsg1/tomb:2426: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/tomb-2427- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/tomb-2430- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/tomb:2431: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/tomb-2432- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/tomb-2448- # which doesn't work when tomb filename contain dots tomb-2.8+dfsg1/tomb:2449: # tombsince=`date --date=@${mapper[(ws:.:)3]} +%c` tomb-2.8+dfsg1/tomb-2450- ############################################## tomb-2.8+dfsg1/tomb-2458- tomb-2.8+dfsg1/tomb:2459: tombuser=`_get_username $tombuid` tomb-2.8+dfsg1/tomb-2460- } ############################################## tomb-2.8+dfsg1/tomb-2483- # Now check hooks tomb-2.8+dfsg1/tomb:2484: mounted_hooks=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/tomb-2485- for h in ${mounted_hooks}; do tomb-2.8+dfsg1/tomb-2486- _message "::1 tombname:: hooks ::2 hookname:: on ::3 hookdest::" \ tomb-2.8+dfsg1/tomb:2487: $tombname "`basename ${h[(ws:;:)1]}`" ${h[(ws:;:)2]} tomb-2.8+dfsg1/tomb-2488- done ############################################## tomb-2.8+dfsg1/tomb-2584- tomb-2.8+dfsg1/tomb:2585: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/tomb-2586- [[ ${#mounted_tombs} == 0 ]] && { ############################################## tomb-2.8+dfsg1/tomb-2601- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/tomb:2602: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/tomb-2603- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/tomb-2708- _verbose "Checking for index: ::1::" ${t} tomb-2.8+dfsg1/tomb:2709: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/tomb-2710- tombname=${t[(ws:;:)5]} ############################################## tomb-2.8+dfsg1/tomb-2759- tomb-2.8+dfsg1/tomb:2760: local oldtombsize=$(( `stat -c %s "$TOMBPATH" 2>/dev/null` / 1048576 )) tomb-2.8+dfsg1/tomb-2761- ############################################## tomb-2.8+dfsg1/tomb-2822- else tomb-2.8+dfsg1/tomb:2823: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/tomb-2824- fi ############################################## tomb-2.8+dfsg1/tomb-2834- for t in ${mounted_tombs}; do tomb-2.8+dfsg1/tomb:2835: mapper=`basename ${t[(ws:;:)1]}` tomb-2.8+dfsg1/tomb-2836- ############################################## tomb-2.8+dfsg1/tomb-2867- # check if there are binded dirs and close them tomb-2.8+dfsg1/tomb:2868: bind_tombs=(`list_tomb_binds $tombname $tombmount`) tomb-2.8+dfsg1/tomb-2869- for b in ${(f)"$(list_tomb_binds $tombname $tombmount)"}; do ############################################## tomb-2.8+dfsg1/tomb-2925- found=0 tomb-2.8+dfsg1/tomb:2926: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/tomb-2927- if [[ "${#mounted_tombs}" -gt 0 ]]; then ############################################## tomb-2.8+dfsg1/tomb-2942- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/tomb:2943: powner=`_get_username $puid` tomb-2.8+dfsg1/tomb-2944- _verbose "process found: $pnum $pcmd ($powner)" ############################################## tomb-2.8+dfsg1/tomb-2960- else tomb-2.8+dfsg1/tomb:2961: mounted_tombs=(`list_tomb_mounts $1`) tomb-2.8+dfsg1/tomb-2962- fi ############################################## tomb-2.8+dfsg1/tomb-2983- pcmd=$(_cat /proc/${pnum}/cmdline) tomb-2.8+dfsg1/tomb:2984: powner=`_get_username $puid` tomb-2.8+dfsg1/tomb-2985- _verbose "process found: $pnum $pcmd ($powner)"