summaryrefslogtreecommitdiffstats
path: root/sys/crypto
Commit message (Collapse)AuthorAgeFilesLines
* Add a testcase which validates that the same buffer can be passed tophk2003-10-192-0/+87
| | | | | | | | | | rijndael_blockDecrypt() as both input and output. This property is important because inside rijndael we can get away with allocating just a 16 byte "work" buffer on the stack (which is very cheap), whereas the calling code would need to allocate the full sized buffer, and in all likelyhood would have to do so with an expensive malloc(9).
* - revert to old rijndael code. new rijndael code broke gbde.ume2003-10-194-1424/+1702
| | | | | - since aes-xcbc-mac and aes-ctr require functions in new rijndael code, aes-xcbc-mac and aes-ctr are disabled for now.
* Fix alignment problem on 64 bit arch.ume2003-10-141-0/+49
| | | | | | | I only tested if it doesn't break anything on i368. Since I have no 64 bit machine, I cannot test it, actually. Reported by: jmallett
* use BF_ecb_encrypt().ume2003-10-132-2/+88
| | | | Obtained from: KAME
* simplify and update rijndael code.ume2003-10-126-1737/+1407
| | | | Obtained from: KAME
* use opencrypto for RMD160.ume2003-10-122-409/+0
| | | | Requested by: sam
* drop useless define.ume2003-10-121-3/+0
|
* use bswap32() for big endian arch.ume2003-10-121-1/+1
| | | | Reported by: tinderbox via kris
* RIPEMD160 supportume2003-10-122-0/+412
| | | | Obtained from: KAME
* switch cast128 implementation to implementation by Steve Reid;ume2003-10-104-1008/+790
| | | | | | smaller footprint. Obtained from: KAME
* one more opossite conditiion.ume2003-09-181-1/+1
| | | | Reported by: "lg" <zevlg@yandex.ru>
* condition of padLen check was opposite.ume2003-09-171-1/+1
| | | | | Reported by: "lg" <zevlg@yandex.ru> Reviewed by: Lev Walkin <vlm@netli.com>
* Correctly bzero the entire context, not just the first sizeof(void *) bytes.phk2003-09-081-6/+6
| | | | Found by: Juergen Buchmueller <pullmoll@stop1984.com>
* Use __FBSDID().obrien2003-06-109-14/+30
|
* Assembly files put thru the C preprocessor need to have C style comments.obrien2003-04-212-78/+78
|
* Remove some unnecessary casts.silby2003-01-251-3/+3
|
* make rc4 crypto support a module so other modules can depend on itsam2003-01-151-0/+22
| | | | | Submitted by: imp Reviewed by: imp
* Make this compilable from userland as well.phk2002-11-011-0/+4
|
* Don't panic when we can just return an error code.phk2002-10-141-2/+6
|
* Fix some really pedantic GCC warnings.markm2002-07-151-5/+5
|
* Fixed AES encryption algorithm bugsuz2002-05-241-0/+1
| | | | | PR: kern/38465 Obtained from: Ramana Yarlagadda <ramana.yarlagadda@analog.com>
* Remove macros that are defined elsewhere.markm2002-04-211-2/+0
|
* just merged cosmetic changes from KAME to ease sync between KAME and FreeBSD.suz2002-04-192-2/+2
| | | | | | | (based on freebsd4-snap-20020128) Reviewed by: ume MFC after: 1 week
* Remove __P.alfred2002-03-208-60/+55
|
* - Speedup 3DES by using assembly code for i386.ume2002-03-0515-508/+5195
| | | | | | | - Sync des/blowfish to more recent openssl. Obtained from: KAME/NetBSD MFC after: 2 weeks
* off by one error in Aaron Gifford's code. KAME PR 393.ume2002-02-261-3/+3
| | | | | | PR: kern/34242 Submitted by: Aaron D. Gifford <agifford@infowest.com> MFC after: 1 week
* fixed the cast128 calculation with a short cipher key length.ume2001-11-272-4/+17
| | | | | | | the memory was overridden when the key length was less than 16 bytes. Obtained from: KAME MFC after: 1 week
* properly check DES weak key. KAME PR 363.ume2001-07-031-5/+2
| | | | | Obtained from: KAME MFC after: 1 week
* less warningume2001-06-162-82/+82
| | | | warning: cast discards qualifiers from pointer target type
* Sync with recent KAME.ume2001-06-1128-2377/+1485
| | | | | | | | | | | | | | | | | | This work was based on kame-20010528-freebsd43-snap.tgz and some critical problem after the snap was out were fixed. There are many many changes since last KAME merge. TODO: - The definitions of SADB_* in sys/net/pfkeyv2.h are still different from RFC2407/IANA assignment because of binary compatibility issue. It should be fixed under 5-CURRENT. - ip6po_m member of struct ip6_pktopts is no longer used. But, it is still there because of binary compatibility issue. It should be removed under 5-CURRENT. Reviewed by: itojun Obtained from: KAME MFC after: 3 weeks
* Kernel crypto need binary key material, not symbolic ascii.markm2001-03-101-0/+3
|
* This commit was generated by cvs2svn to compensate for changes in r67957,kris2000-10-307-0/+2024
|\ | | | | | | which included commits to RCS files with non-trunk default branches.
| * Initial import of AES algorithm code (aka Rijndael) from KAME.kris2000-10-307-0/+2024
|
* Fix broken const'ness in declaration of sha1_loop().archie2000-10-092-6/+4
|
* sync with kame tree as of july00. tons of bug fixes/improvements.itojun2000-07-0429-450/+355
| | | | | | | API changes: - additional IPv6 ioctls - IPsec PF_KEY API was changed, it is mandatory to upgrade setkey(8). (also syntax change)
* Remove ~25 unneeded #include <sys/conf.h>phk2000-04-191-1/+0
| | | | Remove ~60 unneeded #include <sys/malloc.h>
* A simplified RC4 implementation for kernel use.archie2000-04-092-0/+158
|
* Fix bogus const-ness in declaration of sha1_loop().archie2000-04-092-5/+3
|
* Prototype fix for IPsec authentication related functionsshin2000-02-102-2/+2
| | | | | | | | | | | | Some of IPsec authentication related functions should have 'const' for its 2nd argument, but not now. But if someone try to use them, and passed const data for those functions, then much bogus compile warnings will be generated. So those funcs prototype should be modified. Requested by: archie Approved by: jkh
* Change #ifdef KERNEL to #ifdef _KERNEL in the public headers. "KERNEL"peter1999-12-292-2/+2
| | | | | | is an application space macro and the applications are supposed to be free to use it as they please (but cannot). This is consistant with the other BSD's who made this change quite some time ago. More commits to come.
* IPSEC support in the kernel.shin1999-12-2229-0/+6172
pr_input() routines prototype is also changed to support IPSEC and IPV6 chained protocol headers. Reviewed by: freebsd-arch, cvs-committers Obtained from: KAME project
OpenPOWER on IntegriCloud