Age | Commit message (Collapse) | Author | |
---|---|---|---|
2016-12-20 | This commit removes bio_status() calls after a BIOCLOCATE since the | Patrick Wildt | |
bio status will never be updated on a BIOCLOCATE. In addition with missed zeroing of the passed bio struct, this could lead to a print of uninitialized memory. While there, properly zero the bio struct before passing it to ioctl(). ok mikeb@ | |||
2016-11-27 | Document bioctl -d as a "detach" rather than a "delete" operation. | Stefan Sperling | |
ok tb@ danj@ deraadt@ | |||
2016-10-20 | optarg is declared in unistd.h and usage is __dead. From Jan Stary. | Theo Buehler | |
ok natano | |||
2016-09-21 | Document auto rounds. | Joel Sing | |
2016-09-21 | Add support for automatically selecting the number of rounds to use with | Joel Sing | |
bcrypt pbkdf, based on system performance. This is based on the bcrypt autorounds code we have in libc. Discussed with djm@ and tedu@. | |||
2016-09-21 | Be clearer with the description of bioctl(8)'s -r option. | Joel Sing | |
ok jmc@ | |||
2016-09-19 | Update for bcrypt pbkdf. | Joel Sing | |
2016-09-19 | Switch softraid crypto from PKCS5 PBKDF2 to bcrypt PBKDF. | Joel Sing | |
New volumes will be created with bcrypt PBKDF, however existing volumes will continue to use PKCS5 PBKDF2 until a passphrase change is made. If you're booting from softraid crypto, ensure that your boot loader has been upgraded to a version that supports bcrypt prior to changing your passphrase. Also be aware that once the passphrase has been changed, an older version of bioctl(8) (one that does not support bcrypt PBKDF) will not be able to "unlock" the volume. Partly based on a diff from djm@. | |||
2016-09-10 | Teach bioctl derive_key() how to handle bcrypt_pbkdf. | Joel Sing | |
Part of a diff from djm@ | |||
2016-09-10 | Ugh, too many initialisms... | Joel Sing | |
2016-09-10 | Clean up some softraid crypto code - rename struct sr_crypto_kdf_pbkdf2 to | Joel Sing | |
sr_crypto_pbkdf (since it is useable for more than just pkcs5_pbkdf2) and embed a struct sr_crypto_genkdf within it, rather than redeclaring the same fields. Rename SR_CRYPTOKDFT_PBKDF2 to SR_CRYPTOKDFT_PCKS5_PBKDF2 and add SR_CRYPTOKDFT_BCRYPT_PBKDF for upcoming changes. | |||
2016-09-08 | When changing the passphrase, keep the previous number of rounds, unless | Joel Sing | |
specified otherwise. Part of a diff from halex@ | |||
2016-09-08 | Shuffle some code to make futher changes easier - pass the KDF type into | Joel Sing | |
derive_key_pkcs(), check the type and rounds in one place, unify the rounds too small error. | |||
2016-09-08 | When changing a passphrase, use bio_kdf_generate() so that we generate a | Joel Sing | |
new salt and respect the specified number of rounds. Before changing your softraid crypto passphrase ensure that you are running a kernel with r1.131 of softraid_crypto.c, otherwise the volume will become unusable. Same diff also from djm@ and halex@ | |||
2016-05-13 | overzealous use of errx() hides useful information about errors. | Ted Unangst | |
ok benno millert | |||
2016-04-04 | Remove caveat about only supporting 512-byte sectors. | Kenneth R Westerback | |
2016-02-04 | Fix an unitialized variable; pointed out by jsg@. | Masao Uebayashi | |
2015-10-22 | halex removed the -p restriction, so do not document it; | Jason McIntyre | |
from kirill bychkov | |||
2015-09-12 | obvious macros fixes: | Ingo Schwarze | |
* use .Cm for fixed argument strings * properly use .Ar on individual arguments * drop redundant .Bk | |||
2015-07-18 | remove the restriction to disallow the use of a passphrase file during | Alexander Hall | |
initial creation of a crypto volume ok phessler | |||
2015-05-30 | fix usage(); | Jason McIntyre | |
2015-05-29 | Initial addition of ``Patrol Read'' support in bio(4), biocto(8), and | Masao Uebayashi | |
mfi(4). Based on FreeBSD, but done without mfiutil(8). OK deraadt@ | |||
2015-05-11 | explicit_bzero(3) on private data, in case of core dumps (and being a good ↵ | Martin Pelikan | |
example) ok florian jsing | |||
2015-04-11 | Re-enable the RAID 5 discipline for softraid(4). | Joel Sing | |
The RAID 5 implementation has been largely rewritten during the last two hackathons in Dunedin - it now needs further testing and usage. | |||
2015-03-18 | Sort getopt() string. | Masao Uebayashi | |
2015-02-28 | Reduce usage of predefined strings in manpages. | Anthony J. Bentley | |
Predefined strings are not very portable across troff implementations, and they make the source much harder to read. Usually the intended character can be written directly. No output changes, except for two instances where the incorrect escape was used in the first place. tweaks + ok schwarze@ | |||
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt | |
possible. Annotate <sys/param.h> lines with their current reasons. Switch to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where sensible to avoid pulling in the pollution. These are the files confirmed through binary verification. ok guenther, millert, doug (helped with the verification protocol) | |||
2014-10-08 | tedu the tedu code that tedu forgot to tedu when he tedued the other part | Joel Sing | |
of this tedu code. | |||
2014-07-20 | Make sure the correct errno is reported by warn* or err* and not | Philip Guenther | |
the errno of an intervening cleanup operation like close/unlink/etc. Diff from Doug Hogan (doug (at) acyclic.org) | |||
2014-04-22 | malloc/memset -> calloc. from peter malone | Ted Unangst | |
2014-01-18 | Disable the RAID 5 discipline in bioctl, as the current softraid RAID 5 | Joel Sing | |
discipline will more than likely eat data if a drive is lost. Discussed with krw@ | |||
2014-01-18 | Remove the RAID 4 discipline from softraid. Anyone sensible would use RAID | Joel Sing | |
5 instead of RAID 4, assuming both were functional. Discussed with krw@ | |||
2014-01-18 | Remove -Wbounded: it is now the compiler default. | Martynas Venckus | |
2013-11-22 | Whole bunch of (unsigned char) casts carefully added for ctype calls. | Theo de Raadt | |
Careful second audit by millert | |||
2013-11-11 | oops, forgot a #ifdef AOE in last commit | Theo de Raadt | |
2013-11-04 | substantial namespace cleanup. Might go a little bit too far, but we | Theo de Raadt | |
can expose some of the kernel structures with split .h files if need be. Discussed with various, including jsing. | |||
2013-10-31 | Make sure -v output is properly aligned with the normal output. | Mark Kettenis | |
2013-10-23 | Add support for displaying the cache write policy of RAID volumes to bioctl(8) | Mark Kettenis | |
and make mfi(4) pass up the necessary information. Adding support for other RAID controllers is left as an excercise to the reader. ok deraadt@ | |||
2013-08-11 | capitalize RAID in one spot. | Brad Smith | |
2013-07-16 | Add missing .Mt macros for AUTHORS email addresses. | Ingo Schwarze | |
From Jan Stary <hans at stare dot cz>. ok jmc@ | |||
2012-09-22 | last stage of rfc changes, using consistent Rs/Re blocks, and moving the | Jason McIntyre | |
references into a STANDARDS section; | |||
2012-09-10 | Only keep track of the bio(4) cookie, not an entire bio_locate struct. | Joel Sing | |
2012-09-06 | move pkcs5_pbkdf5 function to libutil so everybody can play with it | Ted Unangst | |
ok deraadt jsing matthew | |||
2012-06-28 | prevent salt_len overflow; reported by andrew nelless, ok otto, tedu | Mike Belopuhov | |
2012-04-19 | clear memory before passing to ioctl routines instead of praying it | Theo de Raadt | |
will be ok and not break things upon return. ok claudio | |||
2012-01-29 | use Pp, not blank lines; | Jason McIntyre | |
2012-01-29 | Add CAVEAT that only 512-byte sector devices are supported. | Kenneth R Westerback | |
ok jsing@ jmc@ | |||
2012-01-29 | Remove -Werror so that we do not break builds on systems running with | Joel Sing | |
WARNINGS=yes. Found the hard way by nicm@ ok nicm@ | |||
2012-01-22 | If no controller name is provided, use the program name as a prefix. Also, | Joel Sing | |
exit with an "unknown error" if a bio(4) error is reported but no status message has been provided. | |||
2012-01-20 | Teach bioctl(8) about the new status interface for bio(4). With the | Joel Sing | |
exception of a few messages specific to softraid(4) CRYPTO, there should be no functional change for drivers that do not yet implement the interface (which is currently all of them). |