wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

	Commit message (Collapse)	Author	Age	Files	Lines
*	make SWAP_KEY_GET symmetrical with SWAP_KEY_PUT by having it call	dlg	2015-05-06	1	-1/+8
\| \| \| \| \| \| \| \|	a function in uvm_swap_encrypt.c instead of doing stuff inline. lets me remove an extern from the header too. ok kettenis@
*	reduce the scope of things that include uvm_swap_encrypt.h.	dlg	2015-05-04	1	-1/+2
\| \| \| \| \| \| \| \| \| \|	uvm_meter.c needs it to route the sysctl, uvm_swap.c needs it to use the functionality, and uvm_swap_encrypt.c needs it to for obvious reasons. userland sysctl already includes it explicitely. everything else doesnt and shouldnt care. ok miod@
*	Remove some includes include-what-you-use claims don't	jsg	2015-03-14	1	-2/+1
\| \| \| \| \| \| \|	have any direct symbols used. Tested for indirect use by compiling amd64/i386/sparc64 kernels. ok tedu@ deraadt@
*	move arc4random prototype to systm.h. more appropriate for most code	tedu	2014-11-18	1	-2/+1
\| \| \| \|	to include that than rdnvar.h. ok deraadt dlg
*	remove uneeded proc.h includes	jsg	2014-09-14	1	-2/+1
\| \| \| \|	ok mpi@ kspillner@
*	for key material that is being being discarded, convert bzero() to	deraadt	2011-01-11	1	-3/+3
\| \| \| \| \|	explicit_bzero() where required ok markus mikeb
*	remove proc.h include from uvm_map.h. This has far reaching effects, as	tedu	2010-04-20	1	-1/+2
\| \| \| \| \| \|	sysctl.h was reliant on this particular include, and many drivers included sysctl.h unnecessarily. remove sysctl.h or add proc.h as needed. ok deraadt
*	turn a for (i = 0; i < size; i++) arc4random(); loop into arc4random_buf().	oga	2009-03-23	1	-14/+1
\| \| \| \| \| \| \| \|	Since that function is now so small (2 lines), inline it into it's only user. Shaves some bytes (104 on amd64). ok deraadt@, blambert@. djm@ liked an earlier diff.
*	encrypt swap by default. cheap, and why not. can be disabled by people	deraadt	2005-03-26	1	-2/+2
\| \| \| \| \|	who have machines that hit swap a lot. decided after survey of developers, we found that most turned this on. ok various
*	ansi + some knf, no binary change	hshoexer	2004-11-29	1	-19/+15
\| \| \| \|	ok deraadt
*	- use 1/2 space for rijndael context in ipsec	markus	2003-12-26	1	-12/+15
\| \| \| \| \| \| \| \|	- rijndael_set_key_enc_only() sets up context for encryption only - rijndael_set_key() always sets up full context - rijndaelKeySetupDec() gets back original protoype - uvm: use _enc_only() interface with hshoexer@, ok deraadt@
*	inital -> initial	nate	2002-07-02	1	-7/+7
\|
*	Replace inclusion of <vm/foo.h> with the correct <uvm/bar.h> when necessary.	miod	2001-11-06	1	-3/+1
\| \| \| \|	(Look ma, I might have broken the tree)
*	switch to the optimised AES reference code from	markus	2001-08-24	1	-6/+6
\| \| \| \| \| \| \|	http://www.esat.kuleuven.ac.be/~rijmen/rijndael/rijndael-fst-3.0.zip the same code is used by ssh, so please make sure to update usr.sbin/ssh/rijndael.c if you change this code. tested on sparc (jason) and with swap encryption (me); ok deraadt@, provos@
*	remove vm_conf.h; art@ ok	mickey	2001-08-06	1	-2/+2
\|
*	$OpenBSD$	niklas	2001-01-29	1	-0/+2
\|
*	Convert bzero to memset(X, 0..) and bcopy to memcpy.	art	2000-09-07	1	-2/+2
\| \| \| \| \|	This is to match (make diffs smaller) the code in NetBSD. new gcc inlines those functions, so this could also be a performance win.
*	put in own ctl level for swapencrypt.	provos	2000-06-14	1	-0/+43
\|
*	use rijndael instead of blowfish because of faster key setup.	provos	2000-05-27	1	-69/+135
\| \| \| \| \|	break swap paritions into sections, each section has own encryption key. if a section's key becomes unreferenced, erase it.
*	use encrypted blocknumber as IV	provos	2000-05-26	1	-4/+10
\|
*	<crypto/blf.h>	markus	2000-02-29	1	-1/+1
\|
*	swap encryption for UVM, option UVM_SWAP_ENCRYPT. needs to be enabled	provos	1999-12-30	1	-0/+127
	via sysctl. Pages are encrypted with the Blowfish encryption algorithm, the key is initialized randomly on first swap out, ensuring that entropy has accumulated in the kernel randomness pool. Eventually, swap encryption will be decided on a process by process basis, e.g. a process that reads from a cryptographic filesystem will enable swap encrypt for its pages. okay art@ and deraadt@.