| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the first cut of this diff was made with coccinelle using this spatch:
@rule@
type caddr_t;
expression m, off, len, cp;
@@
-m_copydata(m, off, len, (caddr_t)cp)
+m_copydata(m, off, len, cp)
i had fix it's opinionated idea of formatting by hand though, so
i'm not sure it was worth it.
ok deraadt@ bluhm@
|
| |
|
|
|
|
| |
conversion steps). it only contains kernel prototypes for 4 interfaces,
all of which legitimately belong in sys/systm.h, which are already included
by all enqueue_randomness() users.
|
| |
|
|
|
|
|
|
|
| |
this gets rid of the source annotation which doesn't really add
anything other than adding complexitiy. randomess is generally
good enough that the few extra bits that the source type would
add are not worth it.
ok mikeb@ deraadt@
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
by pre-allocating two cryptodesc objects and storing them in an array
instead of a linked list. If more than two cryptodesc objects are
required use mallocarray to fetch them. Adapt the drivers to the new
API.
This change results in one pool-get per ESP packet instead of three.
It also simplifies softraid crypto where more cryptodesc objects are
allocated than used.
From, with and ok markus@, ok bluhm@
"looks sane" mpi@
|
| |
|
|
| |
accelerator drivers. No longer used by anything. ok sthen@ mikeb@
|
| |
|
|
| |
ok guenther@, henning@
|
| |
|
|
|
|
|
| |
have any direct symbols used. Tested for indirect use by compiling
amd64/i386/sparc64 kernels.
ok tedu@ deraadt@
|
| | |
|
| |
|
|
| |
ok tedu
|
| |
|
|
| |
after discussions with beck deraadt kettenis.
|
| |
|
|
| |
ok guenther millert kettenis
|
| |
|
|
| |
failures to be neglected; ok markus
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the caller and the function that the function will not fail to allocate
memory and return a NULL pointer. However, m_dup_pkthdr() violates
this contract, making it possible for functions that pass M_WAITOK to
be surprised in ways that hurt.
Fix this by passing the wait flag all the way down the functions that
actually do the allocation for m_dup_pkthdr() so that we won't be
surprised.
man page update forthcoming
ok claudio@
|
| |
|
|
| |
ok claudio@
|
| |
|
|
| |
there was also a local buffer which was left around
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
the hardware crypto accelerator land. This fixes aes-ni, via xcrypt,
glxsb(4), hifn(4), safe(4) and ubsec(4) drivers.
Original commit message by angelos:
Don't keep the last blocksize-bytes of ciphertext for use as the next
plaintext's IV, in CBC mode. Use arc4random() to acquire fresh IVs per
message.
with and ok deraadt, ok markus, djm
|
| |
|
|
|
|
|
|
|
| |
are required to detect that.
Change the function to take a wait argument (used in nfs server, but
M_NOWAIT everywhere else for now) and to return an error
ok claudio@ henning@ krw@
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
(1) use correct (message) block size of 128 byte (instead of 64
bytes) for HMAC-SHA512/384 (RFC4634).
(2) RFC4868 specifies that HMAC-SHA-{256,384,512} is truncated to
nnn/2 bits, while we still use 96 bits. 96 bits have been
specified in draft-ietf-ipsec-ciph-sha-256-00 while
draft-ietf-ipsec-ciph-sha-256-01 changed it to 128 bits.
WARNING: this change makes IPsec with SHA-256 (the default)
incompatible with older OpenBSD versions and other IPsec-implementations
that share this bug.
ok+tests naddy, fries; requested by reyk/deraadt
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
with m_tag_copy_chain() failures.
Use m_defrag() to eliminate hand rolled defragging of mbufs and
some uses of M_DUP_PKTHDR().
Original diff from thib@, claudio@'s feedback integrated by me.
Tests kevlo@ claudio@, "reads ok" blambert@
ok thib@ claudio@, "m_defrag() bits ok" kettenis@
|
| |
|
|
|
| |
the original FreeBSD code for consistent behaviour between
c89/c99 compilers.
|
| |
|
|
|
|
|
| |
This should take care of the simpler ones (i.e., timeout values of
integer multiples of hz).
ok krw@, art@
|
| |
|
|
| |
ok deraadt@
|
| |
|
|
| |
"looks ok" markus@
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
loops because j is unsigned. Comments from Marco Hyman and Andreas
Gunnarson fixed my first version. Spotted by lint.
'go for it' deraadt@ for initial version.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
This moves md5.c out of libkern and into sys/crypto where it belongs (as
requested by markus@). Note that md5.c is still mandatory (dev/rnd.c uses it).
Verified with IPsec + hmac-md5 and tcp md5sig. OK henning@ and hshoexer@
|
| |
|
|
|
|
| |
This matches our SLIST behaviour and NetBSD's SIMPLEQ as well.
ok millert krw deraadt
|
| |
|
|
| |
jason is being a slacker
|
| |
|
|
|
|
| |
tested on alpha, i386, powerpc, sparc64, m68k.
ok miod@
|
| |
|
|
| |
on ppc now.
|
| |
|
|
| |
(Now modexp runs for non-1k/2k operations)
|
| |
|
|
|
|
|
|
| |
parts of memory... picky picky ;)
- zero the bignum memory after copying out the result (one less copy of
sensitive material floating around...)... Why don't vendors provide a
bit you can toggle that does this?
- Oh, and modexp now works.
|
| |
|
|
| |
a snapshot of work in progress (doesn't work correctly yet).
|
| | |
|
| |
|
|
| |
minutes ago (could have sworn I hit ^X^S).
|
| |
|
|
|
|
|
|
|
| |
- fix interrupt printing
- make shared structure entries volatile to ensure ordering
- swap the key, iv, and mackey arguments appropriately
- treat particle descriptor as two 32 elements (necessary for swabbing)
- set the endian control byte correctly and flip off swabbing on the packet data
(now works on macppc)
|
| |
|
|
|
|
| |
map structure.
- pull in some of sam's debugging stuff so that #define SAFE_DEBUG will compile
- set the dst <- src when uio && nicealign && uniform
|
| |
|
|
| |
also: let safe_uniform() check all of the elements
|
|
|
this is a completely hacked up version, complaints should be to me not sam =)
|
dlg
deraadt
jasper
patrick
naddy
mpi
jsg
mikeb
tedu
blambert
markus
krw
djm
jmc
brad
mickey
millert
grange
jason