diff options
-rw-r--r-- | CHANGELOG | 42 | ||||
-rw-r--r-- | changes/bug_all_backends | 3 | ||||
-rw-r--r-- | changes/bug_fix-deps | 1 | ||||
-rw-r--r-- | changes/bug_fix-pip-install | 1 | ||||
-rw-r--r-- | changes/bug_modifiable_timeout | 3 | ||||
-rw-r--r-- | changes/feature_add-action-validation | 1 | ||||
-rw-r--r-- | changes/feature_add-mac-authentication | 1 | ||||
-rw-r--r-- | changes/feature_add-sqlcipher-api | 3 | ||||
-rw-r--r-- | changes/feature_add-status-to-initscript | 1 | ||||
-rw-r--r-- | changes/feature_blank-server | 1 | ||||
-rw-r--r-- | changes/feature_change-symmetric-encryption-method-to-aes-256-ctr | 1 | ||||
-rw-r--r-- | changes/feature_encode-all-u1db-data-in-couch-backend | 1 | ||||
-rw-r--r-- | changes/feature_encrypt-storage-key-with-kdf | 6 | ||||
-rw-r--r-- | changes/feature_improve-test-coverage | 1 | ||||
-rw-r--r-- | changes/feature_initscript-enhancements | 5 | ||||
-rw-r--r-- | changes/feature_remove-strict-dependency-on-leap.common | 1 | ||||
-rw-r--r-- | changes/feature_split-soledad-client-and-server | 1 | ||||
-rw-r--r-- | changes/feature_use-raw-sqlcipher-key-with-scrypt-as-kdf | 1 | ||||
-rw-r--r-- | soledad/setup.py | 2 | ||||
-rw-r--r-- | soledad_server/setup.py | 2 |
20 files changed, 44 insertions, 34 deletions
diff --git a/CHANGELOG b/CHANGELOG new file mode 100644 index 00000000..72229567 --- /dev/null +++ b/CHANGELOG @@ -0,0 +1,42 @@ +0.2.1 Jun 28: +Client: + o Do not list the backends in the __init__'s __all__ to allow not + supporting couch on the client side until the code is diveded into + client and server. o Fix bad dependencies in setup.py. + o Fix broken pip install + o Database request have default timeout too high, a + soledad.SOLEDAD_TIMEOUT variable has been added in order to have + more control over this. Fixes #2713 + o Add validation and authorization of actions upon interaction with + server. + o Add MAC authentication to encrypted representation of documents. + o Add SQLCipher API to SQLCipher backend (allow for use of raw keys, + add better encrypted db assertion, add cipher, kdf_iter, + cipher_page_size and rekey PRAGMAS). + o Change symmetric encryption method to AES-256 CTR mode. + o Change the local storage of the storage secret: + * Use scrypt to derive a key for the encryption of the storage + secret. + * Store secret in a file called 'soledad.json' by default. + * Also store the salt and encryption details, as defined in the + spec. + * This change is not backwards compatible (i.e. all previously + stored secrets are incompatible with this new encryption and + storage scheme). + o Improve tests coverage. + o Split soledad client and server into two different packages. + o Use scrypt to derive the key for local encryption. + +Server: + o Add a `status` option to Soledad init script. + o Allow to initialize soledad with a blank server + o b64 encode all U1DB data in couch backend to avoid utf8 encoding + problems. + * init.d script improvements: + * Add LSB (Linux Standards Base) 3.1 compliant header + * Remove unnecessary backslashes in variable definitions + * Replace environment variables with more standard upper-cased names + * Make a TWISTD_PATH environment variable to replace hard-coded + /usr/local/bin/twistd + * Pull environment variables together into one block o Remove strict + dependency on leap.common. diff --git a/changes/bug_all_backends b/changes/bug_all_backends deleted file mode 100644 index bfb7253d..00000000 --- a/changes/bug_all_backends +++ /dev/null @@ -1,3 +0,0 @@ - o Do not list the backends in the __init__'s __all__ to allow not - supporting couch on the client side until the code is diveded into - client and server.
\ No newline at end of file diff --git a/changes/bug_fix-deps b/changes/bug_fix-deps deleted file mode 100644 index 415386f8..00000000 --- a/changes/bug_fix-deps +++ /dev/null @@ -1 +0,0 @@ - o Fix bad dependencies in setup.py. diff --git a/changes/bug_fix-pip-install b/changes/bug_fix-pip-install deleted file mode 100644 index fcb58295..00000000 --- a/changes/bug_fix-pip-install +++ /dev/null @@ -1 +0,0 @@ - o Fix broken pip install diff --git a/changes/bug_modifiable_timeout b/changes/bug_modifiable_timeout deleted file mode 100644 index be690d5a..00000000 --- a/changes/bug_modifiable_timeout +++ /dev/null @@ -1,3 +0,0 @@ - o Database request have default timeout too high, a - soledad.SOLEDAD_TIMEOUT variable has been added in order to have - more control over this. Fixes #2713
\ No newline at end of file diff --git a/changes/feature_add-action-validation b/changes/feature_add-action-validation deleted file mode 100644 index 57d5b90c..00000000 --- a/changes/feature_add-action-validation +++ /dev/null @@ -1 +0,0 @@ - o Add validation and authorization of actions upon interaction with server. diff --git a/changes/feature_add-mac-authentication b/changes/feature_add-mac-authentication deleted file mode 100644 index ce5a4789..00000000 --- a/changes/feature_add-mac-authentication +++ /dev/null @@ -1 +0,0 @@ - o Add MAC authentication to encrypted representation of documents. diff --git a/changes/feature_add-sqlcipher-api b/changes/feature_add-sqlcipher-api deleted file mode 100644 index 94c5aa57..00000000 --- a/changes/feature_add-sqlcipher-api +++ /dev/null @@ -1,3 +0,0 @@ - o Add SQLCipher API to SQLCipher backend (allow for use of raw keys, add - better encrypted db assertion, add cipher, kdf_iter, cipher_page_size and - rekey PRAGMAS). diff --git a/changes/feature_add-status-to-initscript b/changes/feature_add-status-to-initscript deleted file mode 100644 index ff264091..00000000 --- a/changes/feature_add-status-to-initscript +++ /dev/null @@ -1 +0,0 @@ - o Add a `status` option to Soledad init script. diff --git a/changes/feature_blank-server b/changes/feature_blank-server deleted file mode 100644 index 6e68c992..00000000 --- a/changes/feature_blank-server +++ /dev/null @@ -1 +0,0 @@ - o Allow to initialize soledad with a blank server diff --git a/changes/feature_change-symmetric-encryption-method-to-aes-256-ctr b/changes/feature_change-symmetric-encryption-method-to-aes-256-ctr deleted file mode 100644 index 8c44436a..00000000 --- a/changes/feature_change-symmetric-encryption-method-to-aes-256-ctr +++ /dev/null @@ -1 +0,0 @@ - o Change symmetric encryption method to AES-256 CTR mode. diff --git a/changes/feature_encode-all-u1db-data-in-couch-backend b/changes/feature_encode-all-u1db-data-in-couch-backend deleted file mode 100644 index 03660557..00000000 --- a/changes/feature_encode-all-u1db-data-in-couch-backend +++ /dev/null @@ -1 +0,0 @@ - o b64 encode all U1DB data in couch backend to avoid utf8 encoding problems. diff --git a/changes/feature_encrypt-storage-key-with-kdf b/changes/feature_encrypt-storage-key-with-kdf deleted file mode 100644 index f3ccf401..00000000 --- a/changes/feature_encrypt-storage-key-with-kdf +++ /dev/null @@ -1,6 +0,0 @@ - o Change the local storage of the storage secret: - * Use scrypt to derive a key for the encryption of the storage secret. - * Store secret in a file called 'soledad.json' by default. - * Also store the salt and encryption details, as defined in the spec. - * This change is not backwards compatible (i.e. all previously stored - secrets are incompatible with this new encryption and storage scheme). diff --git a/changes/feature_improve-test-coverage b/changes/feature_improve-test-coverage deleted file mode 100644 index 54910185..00000000 --- a/changes/feature_improve-test-coverage +++ /dev/null @@ -1 +0,0 @@ - o Improve tests coverage. diff --git a/changes/feature_initscript-enhancements b/changes/feature_initscript-enhancements deleted file mode 100644 index 24ff239e..00000000 --- a/changes/feature_initscript-enhancements +++ /dev/null @@ -1,5 +0,0 @@ - o Add LSB (Linux Standards Base) 3.1 compliant header - o Remove unnecessary backslashes in variable definitions - o Replace environment variables with more standard upper-cased names - o Make a TWISTD_PATH environment variable to replace hard-coded /usr/local/bin/twistd - o Pull environment variables together into one block
\ No newline at end of file diff --git a/changes/feature_remove-strict-dependency-on-leap.common b/changes/feature_remove-strict-dependency-on-leap.common deleted file mode 100644 index f25dcbf3..00000000 --- a/changes/feature_remove-strict-dependency-on-leap.common +++ /dev/null @@ -1 +0,0 @@ - o Remove strict dependency on leap.common. diff --git a/changes/feature_split-soledad-client-and-server b/changes/feature_split-soledad-client-and-server deleted file mode 100644 index 0abab836..00000000 --- a/changes/feature_split-soledad-client-and-server +++ /dev/null @@ -1 +0,0 @@ - o Split soledad client and server into two different packages. diff --git a/changes/feature_use-raw-sqlcipher-key-with-scrypt-as-kdf b/changes/feature_use-raw-sqlcipher-key-with-scrypt-as-kdf deleted file mode 100644 index 385c1c84..00000000 --- a/changes/feature_use-raw-sqlcipher-key-with-scrypt-as-kdf +++ /dev/null @@ -1 +0,0 @@ - o Use scrypt to derive the key for local encryption. diff --git a/soledad/setup.py b/soledad/setup.py index f0d070da..cda7f9f7 100644 --- a/soledad/setup.py +++ b/soledad/setup.py @@ -62,7 +62,7 @@ trove_classifiers = ( setup( name='leap.soledad', - version='0.1.1', + version='0.2.1', url='https://leap.se/', license='GPLv3+', description='Synchronization of locally encrypted data among devices.', diff --git a/soledad_server/setup.py b/soledad_server/setup.py index 522c86ff..5e5fa058 100644 --- a/soledad_server/setup.py +++ b/soledad_server/setup.py @@ -59,7 +59,7 @@ trove_classifiers = ( setup( name='leap.soledad_server', - version='0.1.1', + version='0.2.1', url='https://leap.se/', license='GPLv3+', description='Synchronization of locally encrypted data among devices.', |