diff options
| author | Niels Provos <provos@cvs.openbsd.org> | 1999-12-30 18:21:57 +0000 |
|---|---|---|
| committer | Niels Provos <provos@cvs.openbsd.org> | 1999-12-30 18:21:57 +0000 |
| commit | ac9765a7a6c39d899034549875b6a686f6e5809b (patch) | |
| tree | 0d52c83a90b15b132501490343b4b78a30a23f5f /sys/conf | |
| parent | d042358131e2c7d91a210c2130f757b04476c1d3 (diff) | |
swap encryption for UVM, option UVM_SWAP_ENCRYPT. needs to be enabled
via sysctl.
Pages are encrypted with the Blowfish encryption algorithm, the key
is initialized randomly on first swap out, ensuring that entropy has
accumulated in the kernel randomness pool. Eventually, swap encryption
will be decided on a process by process basis, e.g. a process that reads from
a cryptographic filesystem will enable swap encrypt for its pages. okay
art@ and deraadt@.
Diffstat (limited to 'sys/conf')
| -rw-r--r-- | sys/conf/files | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/sys/conf/files b/sys/conf/files index 32d0ad4eef8..a7be83fcea4 100644 --- a/sys/conf/files +++ b/sys/conf/files @@ -1,4 +1,4 @@ -# $OpenBSD: files,v 1.142 1999/12/27 21:41:13 fgsch Exp $ +# $OpenBSD: files,v 1.143 1999/12/30 18:21:56 provos Exp $ # $NetBSD: files,v 1.87 1996/05/19 17:17:50 jonathan Exp $ # @(#)files.newconf 7.5 (Berkeley) 5/10/93 @@ -504,7 +504,7 @@ file netinet/ip_ah_old.c inet & ipsec file netinet/ip_ah_new.c inet & ipsec file netinet/ip_rmd160.c inet & ipsec file netinet/ip_sha1.c inet & ipsec -file netinet/ip_blf.c inet & ipsec +file netinet/ip_blf.c (inet & ipsec) | uvm_swap_encrypt file netinet/ip_cast.c inet & ipsec file netinet/ip_skipjack.c inet & ipsec file netinet/libdeslite/ecb_enc.c inet & ipsec @@ -666,6 +666,7 @@ file uvm/uvm_pdaemon.c uvm file uvm/uvm_pglist.c uvm file uvm/uvm_stat.c uvm file uvm/uvm_swap.c uvm +file uvm/uvm_swap_encrypt.c uvm & uvm_swap_encrypt file uvm/uvm_unix.c uvm file uvm/uvm_user.c uvm file uvm/uvm_vnode.c uvm |