Changes in files.opencrypto

8835ffd08237019b1c2cfd70d4eab20f517cd01d - opencrypto: Switch from legacy rijndael API to new aes API.

Mon, 29 Jun 2020 23:34:48 +0000

opencrypto: Switch from legacy rijndael API to new aes API.While here, apply various rijndael->aes renames, reduce the sizeof aesxcbc_ctx by 480 bytes, and convert some malloc->kmem.Leave in the symbol enc_xform_rijndael128 for now, though, so thisdoesn't break any kernel ABI. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

b203ba408862889e7b619a097444641a17dab02c - Make crypto/rijindael optional again as cprng_strong does no longer

Wed, 22 Apr 2020 09:15:39 +0000

Make crypto/rijindael optional again as cprng_strong does no longerdepend on it. Dependency is explicitly declared in files.foo if acomponent requires it. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

9d7a921fe157d2e3e445ee5a434db7460df1ad2e - Split the module glue out from the rest of opencrypto/ocryptodev to

Mon, 27 Jan 2020 17:09:17 +0000

Split the module glue out from the rest of opencrypto/ocryptodev tomake rump happy.Rump doesn't have compat modules (the compat code is included in therelevant librump*.so), so there's no module compat_50 listed inlink_set_modules, and thus ocryptodev's MODULE(...) can't "require"it.This fixes the problem of "built-in module compat_50 not found" whenstarting up rump_allserver (or rump_server with -l rumpdev_opencrypto).XXX This does not resolve the long-standing "crypto: unable toXXX register devsw, error 17" message noted at line 78 ofXXX sys/rump/dev/lib/libopencrypto/opencrypto_component.c List of files: /netbsd-src/sys/opencrypto/files.opencrypto

d91f98a8715141154279122ae81737cb65179572 - Merge the [pgoyette-compat] branch

Sun, 27 Jan 2019 02:08:33 +0000

Merge the [pgoyette-compat] branch List of files: /netbsd-src/sys/opencrypto/files.opencrypto

c7023dc15029944536ab2262be8a3a45df02130d - make the default values of q_maxlen build parameters.

Wed, 24 May 2017 10:05:09 +0000

make the default values of q_maxlen build parameters. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

3afd44cf0839c97e6c0d6f2263af3d909b2e7745 - First step of random number subsystem rework described in

Sat, 19 Nov 2011 22:51:18 +0000

First step of random number subsystem rework described in<20111022023242.BA26F14A158@mail.netbsd.org>. This change includesthe following: An initial cleanup and minor reorganization of the entropy pool code in sys/dev/rnd.c and sys/dev/rndpool.c. Several bugs are fixed. Some effort is made to accumulate entropy more quickly at boot time. A generic interface, "rndsink", is added, for stream generators to request that they be re-keyed with good quality entropy from the pool as soon as it is available. The arc4random()/arc4randbytes() implementation in libkern is adjusted to use the rndsink interface for rekeying, which helps address the problem of low-quality keys at boot time. An implementation of the FIPS 140-2 statistical tests for random number generator quality is provided (libkern/rngtest.c). This is based on Greg Rose's implementation from Qualcomm. A new random stream generator, nist_ctr_drbg, is provided. It is based on an implementation of the NIST SP800-90 CTR_DRBG by Henric Jungheim. This generator users AES in a modified counter mode to generate a backtracking-resistant random stream. An abstraction layer, "cprng", is provided for in-kernel consumers of randomness. The arc4random/arc4randbytes API is deprecated for in-kernel use. It is replaced by "cprng_strong". The current cprng_fast implementation wraps the existing arc4random implementation. The current cprng_strong implementation wraps the new CTR_DRBG implementation. Both interfaces are rekeyed from the entropy pool automatically at intervals justifiable from best current cryptographic practice. In some quick tests, cprng_fast() is about the same speed as the old arc4randbytes(), and cprng_strong() is about 20% faster than rnd_extract_data(). Performance is expected to improve. The AES code in src/crypto/rijndael is no longer an optional kernel component, as it is required by cprng_strong, which is not an optional kernel component. The entropy pool output is subjected to the rngtest tests at startup time; if it fails, the system will reboot. There is approximately a 3/10000 chance of a false positive from these tests. Entropy pool _input_ from hardware random numbers is subjected to the rngtest tests at attach time, as well as the FIPS continuous-output test, to detect bad or stuck hardware RNGs; if any are detected, they are detached, but the system continues to run. A problem with rndctl(8) is fixed -- datastructures with pointers in arrays are no longer passed to userspace (this was not a security problem, but rather a major issue for compat32). A new kernel will require a new rndctl. The sysctl kern.arandom() and kern.urandom() nodes are hooked up to the new generators, but the /dev/*random pseudodevices are not, yet. Manual pages for the new kernel interfaces are forthcoming. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

0a8dabda408caecd7c2b235c32771918880cfde4 - pull in AES-GCM/GMAC support from OpenBSD

Thu, 26 May 2011 21:50:02 +0000

pull in AES-GCM/GMAC support from OpenBSDThis is still somewhat experimental. Tested between 2 similar boxesso far. There is much potential for performance improvement. For now,I've changed the gmac code to accept any data alignment, as the "char *"pointer suggests. As the code is practically used, 32-bit alignmentcan be assumed, at the cost of data copies. I don't know whetherbytewise access or copies are worse performance-wise. For efficientimplementations using SSE2 instructions on x86, even stricteralignment requirements might arise. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

ebc232a582a6fe08a6e1d8012078e86bbf667016 - copy AES-XCBC-MAC support from KAME IPSEC to FAST_IPSEC

Tue, 24 May 2011 19:10:08 +0000

copy AES-XCBC-MAC support from KAME IPSEC to FAST_IPSECFor this to fit, an API change in cryptosoft was adopted from OpenBSD(addition of a "Setkey" method to hashes) which was done for GCM/GMACsupport there, so it might be useful in the future anyway.tested against KAME IPSECAFAICT, FAST_IPSEC now supports as much as KAME. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

3d2cef1770e64eb29a8a1caa4c0142fabd29a489 - support camellia-cbc by swcrypt

Thu, 05 May 2011 17:44:39 +0000

support camellia-cbc by swcrypt List of files: /netbsd-src/sys/opencrypto/files.opencrypto

c3a6a9f41e204e5b3af74693b7248b97ded631c4 - make the compatibility code conditional on COMPAT_50

Sat, 19 Feb 2011 16:26:34 +0000

make the compatibility code conditional on COMPAT_50 List of files: /netbsd-src/sys/opencrypto/files.opencrypto

36ea3668b9f6d4e68038b81347085971cae7dd3f - Fixes PR kern/41069 and PR kern/41070.

Wed, 25 Mar 2009 01:26:12 +0000

Fixes PR kern/41069 and PR kern/41070.Extends the Opencrypto API to allow the destination buffer size to bespecified when its not the same size as the input buffer (i.e. foroperations like compress and decompress).The crypto_op and crypt_n_op structures gain a u_int dst_len field.The session_op structure gains a comp_alg field to specify a compressionalgorithm.Moved four ioctls to new ids; CIOCGSESSION, CIOCNGSESSION, CIOCCRYPT,and CIOCNCRYPTM.Added four backward compatible ioctls; OCIOCGSESSION, OCIOCNGSESSION,OCIOCCRYPT, and OCIOCNCRYPTM.Backward compatibility is maintained in ocryptodev.h and ocryptodev.c whichimplement the original ioctls and set dst_len and comp_alg to 0.Adds user-space access to compression features.Adds software gzip support (CRYPTO_GZIP_COMP).Adds the fast version of crc32 from zlib to libkern. This should be generallyuseful and provide a place to start normalizing the various crc32 routinesin the kernel. The crc32 routine is used in this patch to support GZIP.With input and support from tls@NetBSD.org. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

e5bd2a127ea1fc825e57705ff3c9a95eefe8405a - Rework opencrypto to use a spin mutex (crypto_mtx) instead of "splcrypto"

Mon, 04 Feb 2008 00:35:34 +0000

Rework opencrypto to use a spin mutex (crypto_mtx) instead of "splcrypto"(actually splnet) and condvars instead of tsleep/wakeup. Fix a fewmiscellaneous problems and add some debugging printfs while there.Restore set of CRYPTO_F_DONE in crypto_done() which was lost at somepoint after this code came from FreeBSD -- it made it impossible to waitproperly for a condition.Add flags analogous to the "crp" flags to the key operation's krp struct.Add a new flag, CRYPTO_F_ONRETQ which tells us a request finished beforethe kthread had a chance to dequeue it and call its callback -- this wasletting requests stick on the queues before even though done and copiedout.Callers of crypto_newsession() or crypto_freesession() must now take themutex. Change netipsec to do so. Dispatch takes the mutex itself asneeded.This was tested fairly extensively with the cryptosoft backend and lightlywith a new hardware driver. It has not been tested with FAST_IPSEC; I amunable to ascertain whether FAST_IPSEC currently works at all in our tree.pjd@FreeBSD.ORG, ad@NetBSD.ORG, and darran@snark.us pointed me in theright direction several times in the course of this. Remaining bugsare mine alone. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

31a62606eaa51591634375de6fadf7b66b0e8d17 - Merge kernel and userland rmd160 and sha2 implementation.

Fri, 27 Oct 2006 21:20:48 +0000

Merge kernel and userland rmd160 and sha2 implementation.XXX: We still install rmd160.h and sha2.h in /usr/include/crypto, unlikethe other hash functions which get installed in /usr/include for compatibility. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

cfc81086d9b272bb42e2043edf16509079ae8d7b - swcr -> swcrypto

Fri, 25 Nov 2005 16:41:31 +0000

swcr -> swcrypto List of files: /netbsd-src/sys/opencrypto/files.opencrypto

7bc6d90c9db2c18b843e470c15b242381db5da7c - - De-couple the software crypto implementation from the rest of the

Fri, 25 Nov 2005 16:16:46 +0000

- De-couple the software crypto implementation from the rest of the framework. There is no need to waste the space if you are only using algoritms provided by hardware accelerators. To get the software implementations, add "pseudo-device swcr" to your kernel config.- Lazily initialize the opencrypto framework when crypto drivers (either hardware or swcr) register themselves with the framework. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

bcfcddbac11df339e70d9360f947446d811f22dd - nuke trailing whitespace

Sat, 26 Feb 2005 22:31:44 +0000

nuke trailing whitespace List of files: /netbsd-src/sys/opencrypto/files.opencrypto

01c51dab616b2fabe8a7485bc2df2eb47390879b - Split opencrypto configuration into an attribute, usable by inkernel

Wed, 31 Dec 2003 16:44:26 +0000

Split opencrypto configuration into an attribute, usable by inkernelclients, and a pseudo-device for userspace access.The attribute is named `opencrypto'. The pseudo-device is renamed to"crypto", which has a dependency on "opencrypto". The sys/conf/majorsentry and pseudo-device attach entrypoint are updated to match thenew pseudo-device name.Fast IPsec (sys/netipsec/files.ipsec) now lists a dependency on the"opencrypto" attribute. Drivers for crypto accelerators (ubsec,hifn775x) also pull in opencrypto, as providers of opencrypto transforms. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

1f93975cf860b2155a0849d579b43d51543a2bd2 - Move the Skipjack algorithm from sys/opencrypto to sys/crypto/skipjack.

Sun, 16 Nov 2003 12:07:50 +0000

Move the Skipjack algorithm from sys/opencrypto to sys/crypto/skipjack.There are now no cryptographic algorithms in sys/opencrypto, which,according to the comment formerly in files.opencrypto, was the originalintent. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

24b18cc20aa7829827c1f4b3be5da8c804f33f1c - Use the Blowfish in crypto/blowfish, which has hooks for using tuned

Wed, 27 Aug 2003 00:05:26 +0000

Use the Blowfish in crypto/blowfish, which has hooks for using tunedassembly for the transform. List of files: /netbsd-src/sys/opencrypto/files.opencrypto

6de9ce04371ce0bf3c8ea1c5ee6bcb63e24e0cd1 - Move the opencrypto CAST-128 implementation to crypto/cast128, removing

Tue, 26 Aug 2003 16:37:36 +0000

Move the opencrypto CAST-128 implementation to crypto/cast128, removingthe old one. Rename the functions/structures from cast_* to cast128_*.Adapt the KAME IPsec to use the new CAST-128 code, which has a simplerAPI and smaller footprint. List of files: /netbsd-src/sys/opencrypto/files.opencrypto