summaryrefslogtreecommitdiff
path: root/sys/crypto
AgeCommit message (Collapse)Author
2000-05-27use rijndael instead of blowfish because of faster key setup.Niels Provos
break swap paritions into sections, each section has own encryption key. if a section's key becomes unreferenced, erase it.
2000-04-28crypto_dispatch() only returns an error if the argument it wasAngelos D. Keromytis
provided was NULL or no callback was specified.
2000-04-28avoid using void * when we are talking about pointersTheo de Raadt
2000-04-24use pmap_extract() instead of vtophys(); artTheo de Raadt
2000-04-23Correct bitmask.Angelos D. Keromytis
2000-04-23Change the type of freesession to take u_int64_t as argument.Angelos D. Keromytis
2000-04-20Don't include machine/pmap.h, vm/pmap.h does that for us.Artur Grabowski
2000-04-19split out mbuf scatter gather functionTheo de Raadt
2000-04-18Add a few newlines for readability.Angelos D. Keromytis
2000-03-29Better support for weird IV schemes (like ESP half-IV, or the swapAngelos D. Keromytis
encryption block-number IV).
2000-03-25Add CRD_F_IV_PRESENT, to indicate encryption requests where anAngelos D. Keromytis
explicit IV preceeds the data to be encrypted. Nice weather in Australia...
2000-03-20oh, and we need thisTheo de Raadt
2000-03-20move software crypto engine out of main crypto.cTheo de Raadt
2000-03-19split crypto driver front-end from software crypto engineTheo de Raadt
2000-03-17Cryptographic services framework, and software "device driver". TheAngelos D. Keromytis
idea is to support various cryptographic hardware accelerators (which may be (detachable) cards, secondary/tertiary/etc processors, software crypto, etc). Supports session migration between crypto devices. What it doesn't (yet) support: - multiple instances of the same algorithm used in the same session - use of multiple crypto drivers in the same session - asymmetric crypto No support for a userland device yet. IPsec code path modified to allow for asynchronous cryptography (callbacks used in both input and output processing). Some unrelated code simplification done in the process (especially for AH). Development of this code kindly supported by Network Security Technologies (NSTI). The code was writen mostly in Greece, and is being committed from Montreal.
2000-02-28move crypto codeTheo de Raadt