| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2001-07-04 | Add tests for segment lengths and total lengths bigger than the chip can handle. | Jason Wright | |
| Also, add a missing test for *2pages failure on destination buffers. | |||
| 2001-07-02 | - More vtophys death: packet buffer lists are is bus_dma(9) memory as is | Jason Wright | |
| the mac buffer - also, reenable aggregation code (accidentally removed) | |||
| 2001-06-29 | move definitions around a bit and define a few more constants | Jason Wright | |
| 2001-06-29 | allocate contexts during attach since we can't mess with them during | Jason Wright | |
| interrupts (the space allocation is wasteful, but more data will be moved into the allocation soon). | |||
| 2001-06-23 | Correctly handle the IV_PRESENT flag. | Angelos D. Keromytis | |
| 2001-06-23 | Conform to new prototype for crypto_register() | Angelos D. Keromytis | |
| 2001-06-23 | merge crypto/crypto{dev,}.h to crypto/cryptodev.h, to avoid name conflicts ↵ | Theo de Raadt | |
| inside OpenSSL codebase | |||
| 2001-06-18 | kill a debug message that makes UBSEC_DEBUG useless | Theo de Raadt | |
| 2001-06-14 | OOPS | Theo de Raadt | |
| 2001-06-14 | hackish auto-IV mode for IOV operations | Theo de Raadt | |
| 2001-06-12 | Make pci_mapreg_map take an extra argument where we can | Niklas Hallqvist | |
| put a size limitation of the PCI region to map. That makes the PERC 3/Di raid controller usable, as it publishes too much PCI memory for us to map in the kernel virtual memory. As we only access the first 256 byte it is of no use to map 128MB of kvm. | |||
| 2001-06-08 | Put back bus_dmaification of context's (seems to have been fixed by | Jason Wright | |
| recent changes to cryptosoft.c). So, mcr and pktbuf handling to go... | |||
| 2001-05-30 | Un-bus_dma(9) mcr1 context and mcr operations (causes problems under load). | Jason Wright | |
| Reimplement mcr2 bus_dma handling. | |||
| 2001-05-23 | - relax alignment constraints | Jason Wright | |
| - make sure dma_map is set to NULL on failure | |||
| 2001-05-23 | bus_dmaify mcr handling (just leaves buffer lists and mac buffer to go...) | Jason Wright | |
| 2001-05-22 | - delay allocation of rng handling structures | Jason Wright | |
| - if an rng operation is already in progress, don't setup a new timeout. | |||
| 2001-05-22 | - Don't poll the rng more than 100 times a second | Jason Wright | |
| - bus_dmaify mcr2 operations (rng) - start bus_dma of mcr1 operations (context; mcr and pktbufs to go) ... more to come ... | |||
| 2001-05-14 | kill agregate messages; reported by stephen@etunnels.com | Theo de Raadt | |
| 2001-05-14 | use real uio | Theo de Raadt | |
| 2001-05-13 | use criov_copydata for grabbing iv for next packet | Jason Wright | |
| 2001-05-13 | initial cut at /dev/crypto support. takes original mbuf "try, and discard | Theo de Raadt | |
| if we fail" semantics and extends to two varients of data movement: mbuf, or an iovec style block. | |||
| 2001-05-13 | Initial support for Broadcom 5820, which is very much like the 5805 except | Jason Wright | |
| that the packet context structure for ipsec has changed (added two fields and, annoyingly, rearranged several of them). The MCR2 operations (only RNG is used at this point) are supported, too. | |||
| 2001-04-29 | When expanding the session table, only copy the number of sessions already | Jason Wright | |
| there to the new table; from stephen@etunnels.com (PR 1801). | |||
| 2001-04-06 | typo in error message | Jason Wright | |
| 2001-03-28 | Allow tdbi's to appear in mbufs throughout the stack; this allows | Angelos D. Keromytis | |
| security properties of the packets to be pushed up to the application (not done yet). Eventually, this will be turned into a packet attributes framework. Make sure tdbi's are free'd/cleared properly whenever drivers (or NFS) does weird things with mbufs. | |||
| 2001-03-25 | Fix potential dangling mbuf and potential double free. Thanks to Dawson and team | Constantine Sapuntzakis | |
| 2001-02-02 | The read/write indication bit in DMAERR reg is bit 1, not bit 0 | Jason Wright | |
| also, add a mask for the address portion of DMAERR and use it | |||
| 2001-01-31 | before copying the packet header, make sure we actually got the mbuf | Jason Wright | |
| 2001-01-29 | grab rng stuff more often (now 6400bytes/sec) | Jason Wright | |
| document the other mcr2 operations and fix a printf (luckily it's never been called =) | |||
| 2001-01-29 | - add infrastructure for dealing with the key generator (MCR2) | Jason Wright | |
| - add support for the onboard rng using that structure - add a interrupt status mask (differs for 5501 and 5601) - reorganize slightly to take into account that MCR1 isn't the only reason for interrupts. | |||
| 2001-01-11 | oops | Theo de Raadt | |
| 2001-01-11 | move ich to auich at mickey's request | Theo de Raadt | |
| 2000-11-17 | *HMAC96->*HMAC | Angelos D. Keromytis | |
| Bear in mind, you will need to recompile both isakmpd/ipsecadm and your kernel --- otherwise things won't work together. Naturally, all these changes will not be folded into -STABLE, since they would break binary compatibility. | |||
| 2000-09-21 | style | Jason Wright | |
| 2000-08-19 | - introduce new function ubsec_mcopy() which copies the header and trailer | Jason Wright | |
| of one mbuf into another since ubsec doesn't copy data through - get all of the offsets right for the !nicealign case - style fixes Authentication/Encryption on the same packet now appears to work reliably | |||
| 2000-08-17 | use destination lengths when trimming the output packet (cut and pasto) | Jason Wright | |
| 2000-08-17 | - auth+enc sorta works: fixup all of the offsets for encryption/authentication | Jason Wright | |
| - also check for cases that ubsec cannot handle (and should not happen anyway) - actually use the destination length to trim the packet in the output descriptor - don't copy the IV into the packet unless it doesn't already have one (old debugging code...) - style fixes | |||
| 2000-08-15 | use pci_mapreg_map, deallocate resources on failure in attachment; jason@ ok | Michael Shalayeff | |
| 2000-08-15 | Put the bcopy back in place for the decryption CRD_F_EXPLICIT_IV case (missed | Jason Wright | |
| this yesterday when fixing the encryption side of this case). Only used for old IPSec xforms anyway. | |||
| 2000-08-15 | don't forget the initial swizzling with IPAD for inner state (fixes | Jason Wright | |
| auth-only mode which was broken with new session code). | |||
| 2000-08-15 | - Can't avoid one of those bcopy's so easily (only happens with old ESP | Jason Wright | |
| transforms... those with CRD_F_IV_EXPLICIT, so we can take the function call overhead there). - >> instead of << for coffset (auth+enc still isn't working, but this was an obvious bug). - #ifdef UBSEC_DEBUG out the auth-only debugging code | |||
| 2000-08-13 | do iv copying by hand, to avoid bcopy overhead | Theo de Raadt | |
| 2000-08-13 | fix session code | Theo de Raadt | |
| 2000-08-13 | not completely working session code from jason | Theo de Raadt | |
| 2000-08-13 | indent | Theo de Raadt | |
| 2000-08-12 | mcr aggregation now works, best i have seen yet is 5 (huh?) | Theo de Raadt | |
| 2000-08-11 | move mcr out of q; and write prelim mcr aggregation code, which does not yet | Theo de Raadt | |
| work for some reason or another, so it is currently disabled. | |||
| 2000-07-31 | since byte order bugs are gone, interrupts work ok | Theo de Raadt | |
| 2000-07-29 | remove the (unused) sc_intrmask, and be more careful about initializing | Jason Wright | |
| the BS_CTRL register... The BE32 & BE64 bits do NOT do what they imply, so leave the bits set, and add the ones we want. This allows ubsec to interop with our software implementation (at least for encryption). More work to be done in this driver though... Many thanks to Jimmy Ruane at Broadcom for the pointer about BE32 & BE64! | |||
| 2000-07-20 | work around broken A0 5805 silicon that fails to set the status result word ↵ | Theo de Raadt | |
| in the mcr | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |