Kevin Lo
4b29020487
Initialize T1 to silent gcc warning.
...
Approved by: cognet
2006-10-22 02:19:33 +00:00
Pawel Jakub Dawidek
ef7c47775f
Less magic.
...
MFC after: 3 days
2006-09-15 10:44:55 +00:00
Alexander Kabaev
bcbd3d69bf
GCC 3.4.6 gets confused on this file and produces bogus warning.
...
Shut it up.
2006-08-26 21:48:00 +00:00
Pawel Jakub Dawidek
6ea1a6d1ea
Remove trailing spaces.
2006-07-28 14:48:30 +00:00
Pawel Jakub Dawidek
d5db4f4fe6
Use existing roundup2() macro.
...
Suggested by: njl
2006-07-28 14:46:19 +00:00
Pawel Jakub Dawidek
23acde08e9
Remove redundant check committed by accident.
2006-07-25 20:00:55 +00:00
Pawel Jakub Dawidek
b623eec509
Avoid memory allocations when the given address is already 16 bytes aligned.
...
Such an address can be used directly in padlock's AES.
This improves speed of geli(8) significantly:
# sysctl kern.geom.zero.clear=0
# geli onetime -s 4096 gzero
# dd if=/dev/gzero.eli of=/dev/null bs=1m count=1000
Before: 113MB/s
After: 203MB/s
BTW. If sector size is set to 128kB, I can read at 276MB/s :)
2006-07-25 19:32:58 +00:00
Pawel Jakub Dawidek
78c344f3da
Modify PADLOCK_ALIGN() macro, so when the given address is already 16 bytes
...
aligned, it will be used directly, not 'address + 16'.
2006-07-25 19:06:54 +00:00
Pawel Jakub Dawidek
1fa760f7a0
Style fixes.
2006-07-25 19:04:26 +00:00
Pawel Jakub Dawidek
5333bd4763
Implement support for HMAC/SHA1 and HMAC/SHA256 acceleration found in
...
new VIA CPUs.
For older CPUs HMAC/SHA1 and HMAC/SHA256 (and others) will still be done
in software.
Move symmetric cryptography (currently only AES-CBC 128/192/256) to
padlock_cipher.c file. Move HMAC cryptography to padlock_hash.c file.
Hardware from: Centaur Technologies
2006-07-22 16:18:47 +00:00
Pawel Jakub Dawidek
9f5dc73906
Correct few bzero()s.
...
MFC after: 3 days
2006-07-22 13:14:11 +00:00
Pawel Jakub Dawidek
5362e27b6d
Set ses_ictx and ses_octx to NULL after freeing them, so we won't free
...
them twice.
This is possible for example in situation when session is used in
authentication context, then freed and then used in encryption context
and freed - in encryption context ses_ictx and ses_octx are not touched
at newsession time, but padlock_freesession could still try to free them
when they are not NULL.
2006-07-22 10:04:47 +00:00
Michael Reifenberger
4fd58e10b2
Use the already stored VIA RNG probe information
...
instead of probing again.
Adjust style(9) somewhat in probe.c
Reviewed by: pjd
MFC after: 1 week
2006-07-13 09:15:14 +00:00
Pawel Jakub Dawidek
bb34821048
Fix gratuitous compiler warning.
...
Reported by: Rong-en Fan <grafan@gmail.com>
2006-06-08 17:40:02 +00:00
Pawel Jakub Dawidek
64e18040cc
- Pretend to accelerate various HMAC algorithms, so padlock(4) can be used
...
with fast_ipsec(4) and geli(8) authentication (comming soon).
If consumer requests only for HMAC algorithm (without encryption), return
EINVAL.
- Add support for the CRD_F_KEY_EXPLICIT flag, for both encryption and
authentication.
2006-06-05 16:22:04 +00:00
Pawel Jakub Dawidek
eb340a613c
padlock(4) doesn't support explicitly provided keys yet.
...
Return an error instead of encrypting/decrypting data with a wrong key.
2006-04-20 06:31:44 +00:00
Pawel Jakub Dawidek
f3b67db31a
On padlock initialization, allocate memory with M_WAITOK.
2006-04-12 12:13:34 +00:00
Pawel Jakub Dawidek
ef0a6e203b
Add VIA/ACE "PadLock" support as a crypto(9) driver.
...
HW donated by: Mike Tancsa <mike@sentex.net>
Most of the code obtained from: OpenBSD
MFC after: 3 days
2005-08-18 00:30:22 +00:00
Pawel Jakub Dawidek
12e755355b
Assert proper key size also in userland by defining KASSERT in !_KERNEL case.
2005-08-17 07:59:07 +00:00
Colin Percival
751a4770f7
Unbreak the world build (in sbin/gbde). This file is used by both
...
kernel and world, so KASSERT() needs to be wrapped within an #ifdef
_KERNEL / #endif pair.
Reported by: krion, tinderbox
2005-08-17 00:24:20 +00:00
Pawel Jakub Dawidek
36c51ae068
Check key size for rijndael, as invalid key size can lead to kernel panic.
...
It checked other algorithms against this bug and it seems they aren't
affected.
Reported by: Mike Tancsa <mike@sentex.net>
PR: i386/84860
Reviewed by: phk, cperciva(x2)
2005-08-16 18:59:00 +00:00
Hajimu UMEMOTO
ff079c93f7
gbde(8) is also rejndael user.
...
Reported by: phk
2005-03-11 22:07:04 +00:00
Hajimu UMEMOTO
df3c03a773
just use crypto/rijndael, and nuke opencrypto/rindael.[ch].
...
the two became almost identical since latest KAME merge.
Discussed with: sam
2005-03-11 17:24:46 +00:00
Hajimu UMEMOTO
2dc7d840b7
integrate rijndael-alg-fst.h into rijndael.h.
2005-03-11 16:26:10 +00:00
Hajimu UMEMOTO
68527b3aad
stop including rijndael-api-fst.h from rijndael.h.
...
this is required to integrate opencrypto into crypto.
2005-03-11 15:42:51 +00:00
Hajimu UMEMOTO
3984c5e1d6
sys/crypto/md5.[ch] is used from nowhere. So, just nuke them.
2005-03-11 12:56:15 +00:00
Hajimu UMEMOTO
9f65b10b0f
refer opencrypto/cast.h directly.
2005-03-11 12:37:07 +00:00
Hajimu UMEMOTO
858ff96a88
use cast128 in opencrypto to nuke duplicate code.
2005-03-10 11:40:53 +00:00
Ruslan Ermilov
e653b48c80
Start the dreaded NOFOO -> NO_FOO conversion.
...
OK'ed by: core
2004-12-21 08:47:35 +00:00
John Baldwin
2d68e3fb92
Initiate deorbit burn sequence for 80386 support in FreeBSD: Remove
...
80386 (I386_CPU) support from the kernel.
2004-11-16 20:42:32 +00:00
Ruslan Ermilov
a35d88931c
For variables that are only checked with defined(), don't provide
...
any fake value.
2004-10-24 15:33:08 +00:00
David E. O'Brien
8c0866203c
Use __FBSDID().
2004-06-14 00:38:54 +00:00
Dag-Erling Smørgrav
2845024409
Fix a reentrancy issue in md5_calc().
2004-01-27 18:57:21 +00:00
Hajimu UMEMOTO
543729cf93
avoid module name conflict with opencrypto/rijndael.c.
...
Reported by: tinderbox
2003-11-12 04:22:37 +00:00
Hajimu UMEMOTO
34d78ec3f1
cleanup rijndael API.
...
since there are naming conflicts with opencrypto, #define was
added to rename functions intend to avoid conflicts.
Obtained from: KAME
2003-11-11 18:58:54 +00:00
Hajimu UMEMOTO
5129dcfce7
rijndael-alg-fst.[ch]:
...
- redo updating.
rijndael-api-fst.[ch]:
- switch to use new low level rijndael api.
- stop using u8, u16 and u32.
- space cleanup.
Tested by: gbde(8) and phk's test program
2003-11-10 10:33:39 +00:00
Poul-Henning Kamp
0513e13e31
Add a testcase which validates that the same buffer can be passed to
...
rijndael_blockDecrypt() as both input and output.
This property is important because inside rijndael we can get away
with allocating just a 16 byte "work" buffer on the stack (which
is very cheap), whereas the calling code would need to allocate the
full sized buffer, and in all likelyhood would have to do so with
an expensive malloc(9).
2003-10-19 22:12:23 +00:00
Hajimu UMEMOTO
9132d5071c
- revert to old rijndael code. new rijndael code broke gbde.
...
- since aes-xcbc-mac and aes-ctr require functions in new
rijndael code, aes-xcbc-mac and aes-ctr are disabled for now.
2003-10-19 21:28:34 +00:00
Hajimu UMEMOTO
3011d4b3e2
Fix alignment problem on 64 bit arch.
...
I only tested if it doesn't break anything on i368. Since I
have no 64 bit machine, I cannot test it, actually.
Reported by: jmallett
2003-10-14 13:37:37 +00:00
Hajimu UMEMOTO
66c7fe4056
use BF_ecb_encrypt().
...
Obtained from: KAME
2003-10-13 19:26:08 +00:00
Hajimu UMEMOTO
8f21478b6a
simplify and update rijndael code.
...
Obtained from: KAME
2003-10-12 21:05:05 +00:00
Hajimu UMEMOTO
3dbacd2651
use opencrypto for RMD160.
...
Requested by: sam
2003-10-12 18:25:38 +00:00
Hajimu UMEMOTO
d82a80a330
drop useless define.
2003-10-12 14:47:24 +00:00
Hajimu UMEMOTO
53e67fbf8e
use bswap32() for big endian arch.
...
Reported by: tinderbox via kris
2003-10-12 14:32:13 +00:00
Hajimu UMEMOTO
21669564bf
RIPEMD160 support
...
Obtained from: KAME
2003-10-12 09:43:48 +00:00
Hajimu UMEMOTO
7aab01fa76
switch cast128 implementation to implementation by Steve Reid;
...
smaller footprint.
Obtained from: KAME
2003-10-10 15:06:16 +00:00
Hajimu UMEMOTO
66476d45b8
one more opossite conditiion.
...
Reported by: "lg" <zevlg@yandex.ru>
2003-09-18 17:26:56 +00:00
Hajimu UMEMOTO
eb159f5b2e
condition of padLen check was opposite.
...
Reported by: "lg" <zevlg@yandex.ru>
Reviewed by: Lev Walkin <vlm@netli.com>
2003-09-17 08:51:43 +00:00
Poul-Henning Kamp
5fdd8d28a3
Correctly bzero the entire context, not just the first sizeof(void *) bytes.
...
Found by: Juergen Buchmueller <pullmoll@stop1984.com>
2003-09-08 18:32:33 +00:00
David E. O'Brien
ad39da7821
Use __FBSDID().
2003-06-10 21:44:29 +00:00