d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
19b5c7bc4b
freebsd-skq/sys
History
Poul-Henning Kamp 19b5c7bc4b Add Geom Based Disk Encryption to the tree. 
This is an encryption module designed for to secure denial of access
to the contents of "cold disks" with or without destruction activation.

Major features:

   * Based on AES, MD5 and ARC4 algorithms.
   * Four cryptographic barriers:
        1) Pass-phrase encrypts the master key.
        2) Pass-phrase + Lock data locates master key.
        3) 128 bit key derived from 2048 bit master key protects sector key.
        3) 128 bit random single-use sector keys protect data payload.
   * Up to four different changeable pass-phrases.
   * Blackening feature for provable destruction of master key material.
   * Isotropic disk contents offers no information about sector contents.
   * Configurable destination sector range allows steganographic deployment.

This commit adds the kernel part, separate commits will follow for the
userland utility and documentation.

This software was developed for the FreeBSD Project by Poul-Henning Kamp and
NAI Labs, the Security Research Division of Network Associates, Inc.  under
DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the DARPA CHATS
research program.

Many thanks to Robert Watson, CBOSS Principal Investigator for making this
possible.

Sponsored by:   DARPA & NAI Labs.
2002-10-19 17:02:17 +00:00
..
alpha Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
amd64 Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
arm
boot Pass the right number of tlb slots to the kernel. The allocation scheme 2002-10-18 23:49:18 +00:00
cam * Add CDRIOC{READ,WRITE}SPEED ioctls to cd(4). Units are in KB/sec. 2002-10-18 22:03:39 +00:00
coda
compat Replace the conventional usage of strncpy() by using strlcpy(). 2002-10-17 22:27:21 +00:00
conf Add Geom Based Disk Encryption to the tree. 2002-10-19 17:02:17 +00:00
contrib
crypto
ddb
dev * Add CDRIOC{READ,WRITE}SPEED ioctls to cd(4). Units are in KB/sec. 2002-10-18 22:03:39 +00:00
fs
geom Add Geom Based Disk Encryption to the tree. 2002-10-19 17:02:17 +00:00
gnu MFufs 1.33: 2002-10-18 21:41:41 +00:00
i4b
i386 Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
ia64 Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
isa Fix compile with options SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 16:09:13 +00:00
isofs/cd9660
kern In link_elf_load_file(), when SPARSE_MAPPING is defined and we 2002-10-19 05:01:54 +00:00
libkern
modules (1) added LSI Logic copyright, and legal line 3 in license, and string 2002-10-18 21:29:14 +00:00
net last arg of in6?_gif_output() is not used any more. 2002-10-17 17:47:55 +00:00
netatalk
netatm
netgraph
netinet Several malloc() calls were passing the M_DONTWAIT flag 2002-10-19 11:31:50 +00:00
netinet6 last arg of in6?_gif_output() is not used any more. 2002-10-17 17:47:55 +00:00
netipsec
netipx
netkey
netnatm
netncp
netns
netsmb
nfs
nfsclient
nfsserver
opencrypto
pc98 Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
pccard
pci
posix4
powerpc Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
rpc
security
sparc64 Permits UFS ACLs to be used with the GENERIC kernel. Due to recent 2002-10-19 16:54:15 +00:00
sys * Add CDRIOC{READ,WRITE}SPEED ioctls to cd(4). Units are in KB/sec. 2002-10-18 22:03:39 +00:00
tools
ufs Clarify that the UFS1 extended attribute configuration steps do not apply 2002-10-19 16:09:16 +00:00
vm Replace the vm_page hash table with a per-vmobject splay tree. There should 2002-10-18 17:24:30 +00:00
Makefile