summaryrefslogtreecommitdiff
path: root/sys/dev/rnd.c
AgeCommit message (Expand)Author
2014-10-24obvious sizes for freeTed Unangst
2014-10-20typo; deraadtTed Unangst
2014-10-20use SHA512 to hash entropy instead of MD5Ted Unangst
2014-09-15update comments to reflect chacha20. from Max FillingerTed Unangst
2014-07-17zero entropy bufTed Unangst
2014-07-12add a size argument to free. will be used soon, but for now default to 0.Ted Unangst
2014-06-14Change return value of getentropy() to int 0 for success. MaximumTheo de Raadt
2014-06-13Add new getentropy() system call. Code and pressure from matthew.Theo de Raadt
2014-02-05tiny style adjustmentsTed Unangst
2014-01-22Emit a warning if no entropy was supplied by the boot loader.Joel Sing
2014-01-19Refactor rnd startup so arc4random/arc4random_buf can create a chacha stateTheo de Raadt
2014-01-19With the earlier initialization of the random subsystem, random_hostseed()Theo de Raadt
2014-01-19In random_start() we can assume the msg buffer is mapped, all systems doTheo de Raadt
2013-12-28Put the entropy_pool[] into the ELF .openbsd.randomdata segment.Theo de Raadt
2013-12-22spacing; Loganaden VelvindronTheo de Raadt
2013-12-11Revert change to sha256: ramdisks don't build with this and the obviousPhilip Guenther
2013-12-11update a few RC4 references to ChaCha. thanks sthenTed Unangst
2013-12-11md5 smells bad. switch to sha256. ok deraadt matthew mikebTed Unangst
2013-11-02replace rc4 with ChaCha20 here, too; ok djm, tedu, deraadtMarkus Friedl
2013-10-30replace workq_add_task with the task api.David Gwynne
2013-07-09Fix a pair of aesthetic nits in dev/rnd.c:Bret Lambert
2013-03-25reseed the random pool with 'dmesg' when more devices are attachedMarkus Friedl
2012-06-24Change arc4random_uniform() to calculate ``2**32 % upper_bound'' asMatthew Dempsky
2011-07-06Add a new kqfilter for random which returns ARC4_MAIN_MAX_BYTES for readNicholas Marriott
2011-01-11bring back carrying over state from the previous RC4 instance whenDamien Miller
2011-01-11all the bzeros in rnd are important, use explicit_bzeroTed Unangst
2011-01-10update the documentation regarding the *4 vs *6 decision for early RC4Theo de Raadt
2011-01-10move comment block regarding ARC4_MAIN_MAX_BYTESTheo de Raadt
2011-01-10randomread does its own rekeying now, so we don't need the large buf function.Ted Unangst
2011-01-10OK, this is getting silly, but we might as well zero the entropy bufferTheo de Raadt
2011-01-10zero another intermediate key storage areaTheo de Raadt
2011-01-09be more careful with nanotime() calls in early entropy storage, sinceTheo de Raadt
2011-01-08split randomattach into random_init() and random_start(), so that weTheo de Raadt
2011-01-08spacesTheo de Raadt
2011-01-08switch back from PAGE_SIZE for the sake of sparcTheo de Raadt
2011-01-08destatic. ok deraadtTed Unangst
2011-01-07some minor improvements to rnd.Ted Unangst
2011-01-07substantial rewrite. put a very thin mutex at the entropy-collectionTheo de Raadt
2011-01-07since randomwrite() also has no blocking operations at all, we need toTheo de Raadt
2011-01-06For very large operations in randomread(), use a local rc4 instanceTheo de Raadt
2011-01-06make all /dev/*random nodes respond; in fact, don't even worry aboutTheo de Raadt
2011-01-04in arc4_stir() only grab 64 bytes from the MD5 output. Grabbing moreTheo de Raadt
2011-01-01Do not fold the MD5 in half. This might have made sense to someone whenTheo de Raadt
2011-01-01comment cleanupTheo de Raadt
2010-12-31make randomattach do the parts of it's job in the right order, then moveTheo de Raadt
2010-12-31cleanup the ioctl functionTheo de Raadt
2010-12-31delete includes we do not needTheo de Raadt
2010-12-31further improvements describing what we are doingTheo de Raadt
2010-12-31all random nodes have been arc4-based for a while, so none of them everTheo de Raadt
2010-12-30be more cynical about boot-time entropy, and fold time and entropy data in.Theo de Raadt