| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2008-09-06 | match libc sha2(3) API changes for kernel; ok millert@ | Damien Miller | |
| 2008-06-09 | add myself to copyright | Damien Miller | |
| 2008-06-09 | Implement the AES XTS mode of operation for the crypto(9) framework. | Damien Miller | |
| XTS is a "tweaked" AES mode that has properties that are desirable for block device encryption and it is specified in the IEEE P1619-2007 standard for this purpose. prodded by & ok hshoexer@ | |||
| 2007-09-13 | Here too: Convert MALLOC/FREE to malloc/free and use M_ZERO where applicable. | Hans-Joerg Hoexer | |
| error spotting and ok krw@ | |||
| 2007-09-10 | Make the hmac ipad/opad globals "const" and fixup the crypto functions | Henric Jungheim | |
| to match. ok deraadt@ | |||
| 2007-05-27 | make the #defines in rijndael.h a bit more meaningful | Ted Unangst | |
| ok djm and with a hint from henning | |||
| 2007-02-19 | minimum blocksize for ESP is 32 bit, so adjust blocksize of NULL | Hans-Joerg Hoexer | |
| encryption accordingly. Makes NULL encryption useable with ESP. Noticed by Martin Hedenfalk <martin.hedenfalk at gmail.com>. ok markus@ | |||
| 2005-05-25 | AESCTR support for ESP (RFC 3686); ok hshoexer | Markus Friedl | |
| 2004-12-20 | Allow the setkey function of a transform to fail, eg. when an insufficient | Hans-Joerg Hoexer | |
| number of key bits is supplied. Only AES and DES/3DES might fail. ok and help markus@ | |||
| 2004-12-15 | minimum key length of aes is 128 bit, not 64. | Hans-Joerg Hoexer | |
| ok markus | |||
| 2004-06-26 | Ansification of defalte-/lsz-stubs. | Hans-Joerg Hoexer | |
| ok jfb@ | |||
| 2004-05-07 | Replace RSA-derived md5 code with code derived from Colin Plumb's PD version. | Todd C. Miller | |
| This moves md5.c out of libkern and into sys/crypto where it belongs (as requested by markus@). Note that md5.c is still mandatory (dev/rnd.c uses it). Verified with IPsec + hmac-md5 and tcp md5sig. OK henning@ and hshoexer@ | |||
| 2003-12-26 | - use 1/2 space for rijndael context in ipsec | Markus Friedl | |
| - rijndael_set_key_enc_only() sets up context for encryption only - rijndael_set_key() always sets up full context - rijndaelKeySetupDec() gets back original protoype - uvm: use _enc_only() interface with hshoexer@, ok deraadt@ | |||
| 2003-07-24 | hmac-sha2-{256,384,512} support in AH/ESP auth. markus ok | Jun-ichiro itojun Hagino | |
| 2003-02-19 | lzs is lzs, lzs is not deflate | Jason Wright | |
| 2003-02-15 | skeleton support for LZS compression | Jason Wright | |
| 2002-11-12 | Add a CRYPTO_NULL xform (it's a do nothing, but nice for measuring the | Jason Wright | |
| bandwidth of the kernel API). It's only available from userland and then only if kern.cryptodevallowsoft=1. | |||
| 2002-08-16 | fix size in MALLOC/bzero call, from sam@errno.com, ok deraadt@ | Daniel Hartmeier | |
| 2002-04-22 | KNF | Theo de Raadt | |
| 2002-03-05 | export MD5/SHA1 via /dev/crypto; ok provos@, beck@ | Markus Friedl | |
| tested with cryptosoft and kern.cryptodevallowsoft=1 | |||
| 2001-08-28 | Getting closer to working userland MAC. | ben | |
| 2001-08-24 | switch to the optimised AES reference code from | Markus Friedl | |
| http://www.esat.kuleuven.ac.be/~rijmen/rijndael/rijndael-fst-3.0.zip the same code is used by ssh, so please make sure to update usr.sbin/ssh/rijndael.c if you change this code. tested on sparc (jason) and with swap encryption (me); ok deraadt@, provos@ | |||
| 2001-08-17 | Add RC4 support. | ben | |
| 2001-08-08 | remove IPCOMP. derradt@ ok. | Jean-Jacques Bernard-Gundol | |
| 2001-07-05 | #ifdef IPCOMP stuff properly | Theo de Raadt | |
| 2001-07-05 | Support for compression. angelos@ ok. | Jean-Jacques Bernard-Gundol | |
| 2001-06-27 | Indentation. | Angelos D. Keromytis | |
| 2001-06-25 | Update copyright; you can use this with or without fee (unless your | Angelos D. Keromytis | |
| name is Theo Deraadt) | |||
| 2001-06-23 | merge crypto/crypto{dev,}.h to crypto/cryptodev.h, to avoid name conflicts ↵ | Theo de Raadt | |
| inside OpenSSL codebase | |||
| 2001-06-16 | KNF | Theo de Raadt | |
| 2001-06-13 | ivmask has been deprecated. | Angelos D. Keromytis | |
| 2001-05-05 | Use the M_CRYPTO_DATA and M_CRYPTO_OPS malloc types. | Angelos D. Keromytis | |
| 2000-11-17 | *HMAC96->*HMAC | Angelos D. Keromytis | |
| 2000-10-09 | AES alias for Rijndael, also adjust the name. | Angelos D. Keromytis | |
| 2000-06-18 | Add Rijndael (128-bit blocksize) in the software crypto driver. | Angelos D. Keromytis | |
| Hacking at OpenBSD Crypto 2000 :-) | |||
| 2000-03-17 | Cryptographic services framework, and software "device driver". The | Angelos D. Keromytis | |
| idea is to support various cryptographic hardware accelerators (which may be (detachable) cards, secondary/tertiary/etc processors, software crypto, etc). Supports session migration between crypto devices. What it doesn't (yet) support: - multiple instances of the same algorithm used in the same session - use of multiple crypto drivers in the same session - asymmetric crypto No support for a userland device yet. IPsec code path modified to allow for asynchronous cryptography (callbacks used in both input and output processing). Some unrelated code simplification done in the process (especially for AH). Development of this code kindly supported by Network Security Technologies (NSTI). The code was writen mostly in Greece, and is being committed from Montreal. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |