CyberLeo.Net >> Repos - FreeBSD/FreeBSD.git/commit

author	Poul-Henning Kamp <phk@FreeBSD.org>
	Mon, 4 Nov 2002 09:27:01 +0000 (09:27 +0000)
committer	Poul-Henning Kamp <phk@FreeBSD.org>
	Mon, 4 Nov 2002 09:27:01 +0000 (09:27 +0000)
commit	5afa461402d0829fc8803e0f98aca6b58e835afe
tree	f63c9d7688c826251a2cc69a8cbf9eace1f02f75	tree \| snapshot
parent	0bd7c043abddcec81846e546c5de7a5f6b7ed40f	commit \| diff

Run a revision on the GBDE encryption facility.

Replace ARC4 with SHA2-512.
Change lock-structure encoding to use random ordering rather for obscurity.
Encrypt lock-structure with AES/256 instead of AES/128.
Change kkey derivation to be MD5 hash based.
Watch for malloc(M_NOWAIT) failures and ditch our cache when they happen.
Remove clause 3 of the license with NAI Labs consent.

Many thanks to "Lucky Green" <shamrock@cypherpunks.to> and "David
Wagner" <daw@cs.berkeley.edu>, for code reading, inputs and
suggestions.

This code has still not been stared at for 10 years by a gang of
hard-core cryptographers. Discretion advised.

NB: These changes result in the on-disk format changing: dump/restore needed.

Sponsored by: DARPA & NAI Labs.

sbin/gbde/Makefile		diff \| blob \| history
sbin/gbde/gbde.8		diff \| blob \| history
sbin/gbde/gbde.c		diff \| blob \| history
share/man/man4/gbde.4		diff \| blob \| history
sys/geom/bde/g_bde.c		diff \| blob \| history
sys/geom/bde/g_bde.h		diff \| blob \| history
sys/geom/bde/g_bde_crypt.c		diff \| blob \| history
sys/geom/bde/g_bde_lock.c		diff \| blob \| history
sys/geom/bde/g_bde_work.c		diff \| blob \| history