diff options
author | phk <phk@FreeBSD.org> | 2002-12-01 15:50:48 +0000 |
---|---|---|
committer | phk <phk@FreeBSD.org> | 2002-12-01 15:50:48 +0000 |
commit | d2f5accf6d7fb6cb07fc4f408f0fd5f19c33b70e (patch) | |
tree | e79b4647760c2bc7d722424d8e5374620efe2a04 /sys/geom/bde/g_bde_crypt.c | |
parent | 2e45221c26951603034995af7a54f7cd16aad005 (diff) | |
download | FreeBSD-src-d2f5accf6d7fb6cb07fc4f408f0fd5f19c33b70e.zip FreeBSD-src-d2f5accf6d7fb6cb07fc4f408f0fd5f19c33b70e.tar.gz |
Conceiveably, there may exist an algorithm which can tell if a sequence of bytes
are the output of AES/128/CBC or ARC4RANDOM. Encrypt the random data with which
we wipe when we get a BIO_DELETE to make such an algorithm useful.
Sponsored by: DARPA & NAI Labs
Approved by: re (blanket)
Diffstat (limited to 'sys/geom/bde/g_bde_crypt.c')
-rw-r--r-- | sys/geom/bde/g_bde_crypt.c | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/sys/geom/bde/g_bde_crypt.c b/sys/geom/bde/g_bde_crypt.c index 6c545a8..b769f68 100644 --- a/sys/geom/bde/g_bde_crypt.c +++ b/sys/geom/bde/g_bde_crypt.c @@ -191,9 +191,13 @@ g_bde_crypt_delete(struct g_bde_work *wp) struct g_bde_softc *sc; u_char *d; off_t o; + u_char skey[G_BDE_SKEYLEN]; + keyInstance ki; + cipherInstance ci; sc = wp->softc; d = wp->sp->data; + AES_init(&ci); /* * Do not unroll this loop! * Our zone may be significantly wider than the amount of random @@ -202,6 +206,9 @@ g_bde_crypt_delete(struct g_bde_work *wp) */ for (o = 0; o < wp->length; o += sc->sectorsize) { arc4rand(d, sc->sectorsize, 0); + arc4rand(&skey, sizeof skey, 0); + AES_makekey(&ki, DIR_ENCRYPT, G_BDE_SKEYBITS, skey); + AES_encrypt(&ci, &ki, d, d, sc->sectorsize); d += sc->sectorsize; } /* |