From owner-freebsd-security Thu Oct 17 8:44:22 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3E86437B401 for ; Thu, 17 Oct 2002 08:44:20 -0700 (PDT) Received: from mgr5.xmission.com (mgr5.xmission.com [198.60.22.205]) by mx1.FreeBSD.org (Postfix) with ESMTP id 46F6E43E77 for ; Thu, 17 Oct 2002 08:44:19 -0700 (PDT) (envelope-from glewis@eyesbeyond.com) Received: from mail by mgr5.xmission.com with spam-scanned (Exim 3.35 #1) id 182CoE-0005IX-05 for security@freebsd.org; Thu, 17 Oct 2002 09:43:38 -0600 Received: from [207.135.128.145] (helo=misty.eyesbeyond.com) by mgr5.xmission.com with esmtp (Exim 3.35 #1) id 182Clt-0004Zk-05; Thu, 17 Oct 2002 09:41:15 -0600 Received: (from glewis@localhost) by misty.eyesbeyond.com (8.11.6/8.11.6) id g9HFf8o59777; Fri, 18 Oct 2002 01:11:08 +0930 (CST) (envelope-from glewis@eyesbeyond.com) X-Authentication-Warning: misty.eyesbeyond.com: glewis set sender to glewis@eyesbeyond.com using -f Date: Fri, 18 Oct 2002 01:11:08 +0930 From: Greg Lewis To: Brett Glass Cc: security@FreeBSD.ORG Subject: Re: TCFS for FreeBSD? Message-ID: <20021018011108.A59727@misty.eyesbeyond.com> References: <20021017152946.A55544@misty.eyesbeyond.com> <200210170617.AAA29738@lariat.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200210170617.AAA29738@lariat.org>; from brett@lariat.org on Thu, Oct 17, 2002 at 12:17:27AM -0600 X-Spam-Status: No, hits=-3.5 required=8.0 tests=IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES, SIGNATURE_SHORT_DENSE,SPAM_PHRASE_00_01,USER_AGENT, USER_AGENT_MUTT,X_AUTH_WARNING version=2.43 X-Spam-Level: Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Oct 17, 2002 at 12:17:27AM -0600, Brett Glass wrote: > I was under the impression that TCFS, like CFS, operated entirely > in userspace. What parts of it work down at the kernel level? Its a filesystem that works in the kernel much like ufs, etc. That is, it has a standard vfsops definitions and associated functions. All the BSD code on the TCFS site and that in OpenBSD is like this. I don't know if maybe on Linux its implemented in user space since I haven't looked at the Linux code. > Also, what did you bring in from KAME? (I would think that the > necessary crypto would be available through the OpenSSL libraries.) Right, except OpenSSL isn't linked into the kernel :). The kernel crypto parts that -STABLE doesn't have are the blowfish and DES block encryption code. The code itself is originally from OpenSSL or SSLeay by the looks of it. > Since you've already worked heavily on the kernel stuff, I should > probably focus on the userland utilities to avoid having to come > up the learning curve when you're already there. Actually, I don't know a lot about either kernel workings or filesystems, I just wanted to try and port TCFS :). That said, I've just checked and the user utilities aren't in my tree, so I'll try and track them down (I must have them somewhere :). -- Greg Lewis Email : glewis@eyesbeyond.com Eyes Beyond Web : http://www.eyesbeyond.com Information Technology FreeBSD : glewis@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message