Date: Mon, 4 Nov 2002 01:27:02 -0800 (PST) From: Poul-Henning Kamp <phk@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/share/man/man4 gbde.4 src/sbin/gbde Makefile gbde.8 gbde.c src/sys/geom/bde g_bde.c g_bde.h g_bde_crypt.c g_bde_lock.c g_bde_work.c Message-ID: <200211040927.gA49R2FG066468@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
phk 2002/11/04 01:27:02 PST
Modified files:
share/man/man4 gbde.4
sbin/gbde Makefile gbde.8 gbde.c
sys/geom/bde g_bde.c g_bde.h g_bde_crypt.c
g_bde_lock.c g_bde_work.c
Log:
Run a revision on the GBDE encryption facility.
Replace ARC4 with SHA2-512.
Change lock-structure encoding to use random ordering rather for obscurity.
Encrypt lock-structure with AES/256 instead of AES/128.
Change kkey derivation to be MD5 hash based.
Watch for malloc(M_NOWAIT) failures and ditch our cache when they happen.
Remove clause 3 of the license with NAI Labs consent.
Many thanks to "Lucky Green" <shamrock@cypherpunks.to> and "David
Wagner" <daw@cs.berkeley.edu>, for code reading, inputs and
suggestions.
This code has still not been stared at for 10 years by a gang of
hard-core cryptographers. Discretion advised.
NB: These changes result in the on-disk format changing: dump/restore needed.
Sponsored by: DARPA & NAI Labs.
Revision Changes Path
1.4 +5 -2 src/sbin/gbde/Makefile
1.5 +29 -5 src/sbin/gbde/gbde.8
1.4 +72 -41 src/sbin/gbde/gbde.c
1.5 +75 -63 src/share/man/man4/gbde.4
1.5 +9 -7 src/sys/geom/bde/g_bde.c
1.4 +77 -18 src/sys/geom/bde/g_bde.h
1.4 +10 -47 src/sys/geom/bde/g_bde_crypt.c
1.4 +285 -165 src/sys/geom/bde/g_bde_lock.c
1.3 +46 -5 src/sys/geom/bde/g_bde_work.c
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200211040927.gA49R2FG066468>