d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
c0f35dbf19
freebsd-dev/sys/opencrypto
History
John Baldwin 4e47414648 ktls_ocf: Reject encrypted TLS records using AEAD that are too small. 
If a TLS record is too small to contain the required explicit IV,
record_type (TLS 1.3), and MAC, reject attempts to decrypt it with
EMSGSIZE without submitting it to OCF.  OCF drivers may not properly
detect that regions in the crypto request are outside the bounds of
the mbuf chain.  The caller isn't supposed to submit such requests.

Reviewed by:	markj
Sponsored by:	Chelsio Communications
Differential Revision:	https://reviews.freebsd.org/D37372
2022-11-15 12:02:57 -08:00
..
_cryptodev.h
cbc_mac.c cryptosoft: Fix support for variable tag lengths in AES-CCM. 2021-10-06 14:08:48 -07:00
cbc_mac.h cryptosoft: Fix support for variable tag lengths in AES-CCM. 2021-10-06 14:08:48 -07:00
criov.c opencrypto: mark INVARIANTS variables as __diagused 2022-08-10 15:35:29 -04:00
crypto.c [skip ci] Remove obsolete references in crypto_request(9) 2022-11-02 11:09:06 -06:00
cryptodeflate.c
cryptodev_if.m OCF: Remove support for asymmetric cryptographic operations. 2021-04-12 14:28:43 -07:00
cryptodev.c cryptodev: Use a private malloc type (M_CRYPTODEV) instead of M_XDATA. 2022-01-24 15:27:39 -08:00
cryptodev.h opencrypto: Add a routine to copy a crypto buffer cursor 2022-02-15 21:47:10 -05:00
cryptosoft.c crypto: Remove unused devclass arguments to DRIVER_MODULE. 2022-05-06 15:46:58 -07:00
deflate.h
gfmult.c Remove "All Rights Reserved" from FreeBSD Foundation sys/ copyrights 2021-08-08 10:42:24 -04:00
gfmult.h Remove "All Rights Reserved" from FreeBSD Foundation sys/ copyrights 2021-08-08 10:42:24 -04:00
gmac.c GMAC: Reset initial hash value and counter in AES_GMAC_Reinit(). 2021-12-09 11:52:42 -08:00
gmac.h Remove "All Rights Reserved" from FreeBSD Foundation sys/ copyrights 2021-08-08 10:42:24 -04:00
ktls_ocf.c ktls_ocf: Reject encrypted TLS records using AEAD that are too small. 2022-11-15 12:02:57 -08:00
ktls.h KTLS: Add a new recrypt operation to the software backend. 2022-04-22 15:52:50 -07:00
rmd160.c
rmd160.h
xform_aes_cbc.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_aes_icm.c crypto: Re-add encrypt/decrypt_multi hooks to enc_xform. 2022-01-11 14:17:41 -08:00
xform_aes_xts.c stand: Fix KASSERT use 2022-01-11 16:43:18 -07:00
xform_auth.h opencrypto/xform_*.h: Trim scope of included headers. 2022-01-25 15:21:22 -08:00
xform_cbc_mac.c crypto: Constify all transform descriptors 2021-07-26 16:41:05 -04:00
xform_chacha20_poly1305.c crypto: Re-add encrypt/decrypt_multi hooks to enc_xform. 2022-01-11 14:17:41 -08:00
xform_cml.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_comp.h opencrypto/xform_*.h: Trim scope of included headers. 2022-01-25 15:21:22 -08:00
xform_deflate.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_enc.h opencrypto/xform_*.h: Trim scope of included headers. 2022-01-25 15:21:22 -08:00
xform_gmac.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_null.c opencrypto: fix null esp crypt 2022-10-25 03:24:43 +03:00
xform_poly1305.c crypto: Define POLY1305_BLOCK_LEN constant. 2021-12-16 13:47:16 -08:00
xform_rmd160.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_sha1.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform_sha2.c xform_*.c: Add headers when needed to compile standalone. 2022-01-24 15:27:40 -08:00
xform.h Retire now-unused M_XDATA. 2022-01-24 15:27:39 -08:00