Use multiple crypto keys per volume. Each key is used to encrypt at - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	djm <djm@openbsd.org>	2008-06-14 03:01:00 +0000
committer	djm <djm@openbsd.org>	2008-06-14 03:01:00 +0000
commit	75b43c32ab0f1206c3be694e5d3d64e75441cec1 (patch)
tree	05ded98f0cef00b53207933326f445979a28ee98 /usr.bin/cvs/commit.c
parent	Run cvs_remove_force only if -f has been specified. (diff)
download	wireguard-openbsd-75b43c32ab0f1206c3be694e5d3d64e75441cec1.tar.xz wireguard-openbsd-75b43c32ab0f1206c3be694e5d3d64e75441cec1.zip

Use multiple crypto keys per volume. Each key is used to encrypt at

most 0.5TB of disk. This is well below P1619-2007's recommendation for AES-XTS of 1TB/key, but small enough so we can test that we actually use multiple keys with inexpensive hardware. We allocate 32 keys, so this will do for volumes up to 16TB. Fix a crypto session leak in sr_crypto_free_resources() much debugging help mshoexer@; ok hshoexer@ marco@

Diffstat (limited to 'usr.bin/cvs/commit.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: