Conceiveably, there may exist an algorithm which can tell if a sequence of bytes
are the output of AES/128/CBC or ARC4RANDOM. Encrypt the random data with which we wipe when we get a BIO_DELETE to make such an algorithm useful. Sponsored by: DARPA & NAI Labs Approved by: re (blanket)
This commit is contained in:
phk
parent
2e45221c26
commit
d2f5accf6d
@ -191,9 +191,13 @@ g_bde_crypt_delete(struct g_bde_work *wp)
|
|||||||
struct g_bde_softc *sc;
|
struct g_bde_softc *sc;
|
||||||
u_char *d;
|
u_char *d;
|
||||||
off_t o;
|
off_t o;
|
||||||
|
u_char skey[G_BDE_SKEYLEN];
|
||||||
|
keyInstance ki;
|
||||||
|
cipherInstance ci;
|
||||||
|
|
||||||
sc = wp->softc;
|
sc = wp->softc;
|
||||||
d = wp->sp->data;
|
d = wp->sp->data;
|
||||||
|
AES_init(&ci);
|
||||||
/*
|
/*
|
||||||
* Do not unroll this loop!
|
* Do not unroll this loop!
|
||||||
* Our zone may be significantly wider than the amount of random
|
* Our zone may be significantly wider than the amount of random
|
||||||
@ -202,6 +206,9 @@ g_bde_crypt_delete(struct g_bde_work *wp)
|
|||||||
*/
|
*/
|
||||||
for (o = 0; o < wp->length; o += sc->sectorsize) {
|
for (o = 0; o < wp->length; o += sc->sectorsize) {
|
||||||
arc4rand(d, sc->sectorsize, 0);
|
arc4rand(d, sc->sectorsize, 0);
|
||||||
|
arc4rand(&skey, sizeof skey, 0);
|
||||||
|
AES_makekey(&ki, DIR_ENCRYPT, G_BDE_SKEYBITS, skey);
|
||||||
|
AES_encrypt(&ci, &ki, d, d, sc->sectorsize);
|
||||||
d += sc->sectorsize;
|
d += sc->sectorsize;
|
||||||
}
|
}
|
||||||
/*
|
/*
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user