Age | Commit message (Collapse) | Author | |
---|---|---|---|
2000-05-27 | use rijndael instead of blowfish because of faster key setup. | Niels Provos | |
break swap paritions into sections, each section has own encryption key. if a section's key becomes unreferenced, erase it. | |||
2000-04-28 | crypto_dispatch() only returns an error if the argument it was | Angelos D. Keromytis | |
provided was NULL or no callback was specified. | |||
2000-04-28 | avoid using void * when we are talking about pointers | Theo de Raadt | |
2000-04-24 | use pmap_extract() instead of vtophys(); art | Theo de Raadt | |
2000-04-23 | Correct bitmask. | Angelos D. Keromytis | |
2000-04-23 | Change the type of freesession to take u_int64_t as argument. | Angelos D. Keromytis | |
2000-04-20 | Don't include machine/pmap.h, vm/pmap.h does that for us. | Artur Grabowski | |
2000-04-19 | split out mbuf scatter gather function | Theo de Raadt | |
2000-04-18 | Add a few newlines for readability. | Angelos D. Keromytis | |
2000-03-29 | Better support for weird IV schemes (like ESP half-IV, or the swap | Angelos D. Keromytis | |
encryption block-number IV). | |||
2000-03-25 | Add CRD_F_IV_PRESENT, to indicate encryption requests where an | Angelos D. Keromytis | |
explicit IV preceeds the data to be encrypted. Nice weather in Australia... | |||
2000-03-20 | oh, and we need this | Theo de Raadt | |
2000-03-20 | move software crypto engine out of main crypto.c | Theo de Raadt | |
2000-03-19 | split crypto driver front-end from software crypto engine | Theo de Raadt | |
2000-03-17 | Cryptographic services framework, and software "device driver". The | Angelos D. Keromytis | |
idea is to support various cryptographic hardware accelerators (which may be (detachable) cards, secondary/tertiary/etc processors, software crypto, etc). Supports session migration between crypto devices. What it doesn't (yet) support: - multiple instances of the same algorithm used in the same session - use of multiple crypto drivers in the same session - asymmetric crypto No support for a userland device yet. IPsec code path modified to allow for asynchronous cryptography (callbacks used in both input and output processing). Some unrelated code simplification done in the process (especially for AH). Development of this code kindly supported by Network Security Technologies (NSTI). The code was writen mostly in Greece, and is being committed from Montreal. | |||
2000-02-28 | move crypto code | Theo de Raadt | |