From owner-cvs-all  Mon Nov  4  1:28:43 2002
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id EDEB837B401; Mon,  4 Nov 2002 01:28:41 -0800 (PST)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A9EEE43E6E; Mon,  4 Nov 2002 01:28:41 -0800 (PST)
	(envelope-from phk@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.12.6/8.12.6) with ESMTP id gA49R2mV066469;
	Mon, 4 Nov 2002 01:27:02 -0800 (PST)
	(envelope-from phk@repoman.freebsd.org)
Received: (from phk@localhost)
	by repoman.freebsd.org (8.12.6/8.12.6/Submit) id gA49R2FG066468;
	Mon, 4 Nov 2002 01:27:02 -0800 (PST)
Message-Id: <200211040927.gA49R2FG066468@repoman.freebsd.org>
From: Poul-Henning Kamp <phk@FreeBSD.org>
Date: Mon, 4 Nov 2002 01:27:02 -0800 (PST)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: src/share/man/man4 gbde.4 src/sbin/gbde Makefile
         gbde.8 gbde.c src/sys/geom/bde g_bde.c g_bde.h g_bde_crypt.c
         g_bde_lock.c g_bde_work.c
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

phk         2002/11/04 01:27:02 PST

  Modified files:
    share/man/man4       gbde.4 
    sbin/gbde            Makefile gbde.8 gbde.c 
    sys/geom/bde         g_bde.c g_bde.h g_bde_crypt.c 
                         g_bde_lock.c g_bde_work.c 
  Log:
  Run a revision on the GBDE encryption facility.
  
  Replace ARC4 with SHA2-512.
  Change lock-structure encoding to use random ordering rather for obscurity.
  Encrypt lock-structure with AES/256 instead of AES/128.
  Change kkey derivation to be MD5 hash based.
  Watch for malloc(M_NOWAIT) failures and ditch our cache when they happen.
  Remove clause 3 of the license with NAI Labs consent.
  
  Many thanks to "Lucky Green" <shamrock@cypherpunks.to> and "David
  Wagner" <daw@cs.berkeley.edu>, for code reading, inputs and
  suggestions.
  
  This code has still not been stared at for 10 years by a gang of
  hard-core cryptographers.  Discretion advised.
  
  NB: These changes result in the on-disk format changing: dump/restore needed.
  
  Sponsored by:   DARPA & NAI Labs.
  
  Revision  Changes    Path
  1.4       +5 -2      src/sbin/gbde/Makefile
  1.5       +29 -5     src/sbin/gbde/gbde.8
  1.4       +72 -41    src/sbin/gbde/gbde.c
  1.5       +75 -63    src/share/man/man4/gbde.4
  1.5       +9 -7      src/sys/geom/bde/g_bde.c
  1.4       +77 -18    src/sys/geom/bde/g_bde.h
  1.4       +10 -47    src/sys/geom/bde/g_bde_crypt.c
  1.4       +285 -165  src/sys/geom/bde/g_bde_lock.c
  1.3       +46 -5     src/sys/geom/bde/g_bde_work.c

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message