src/sys/opencrypto/cryptosoft.c, branch releng/10.2

Let cryptosoft(4) add its pseudo-device with a specific unit number and its

2010-11-14T13:09:32Z

probe method return BUS_PROBE_NOWILDCARD so it doesn't get attached to real devices hanging off of nexus(4) with no specific devclass set. Actually, the more desirable fix for this would be to get rid of the newbus interface of cryptosoft(4) altogether but apparently crypto(9) was written with support for cryptographic hardware in mind so that approach would require some KPI breaking changes which don't seem worth it. MFC after: 1 week

Add support for AES-XTS.

2010-09-23T11:52:32Z

Obtained from: OpenBSD MFC after: 1 week

Add comments trying to explain what bad things happen here, i.e.

2010-01-09T15:43:47Z

how hashed MD5/SHA are implemented, abusing Final() for padding and sw_octx to transport the key from the beginning to the end. Enlightened about what was going on here by: cperciva Reviewed by: cperciva MFC After: 3 days X-MFC with: r187826 PR: kern/126468

In case the compression result is the same size as the orignal version,

2009-11-29T17:53:57Z

the compression was useless as well. Make sure to not update the data and return, else we would waste resources when decompressing. This also avoids the copyback() changing data other consumers like xform_ipcomp.c would have ignored because of no win and sent out without noting that compression was used, resulting in invalid packets at the receiver. MFC after: 5 days

Fix return type for detach routine (should be int)

2009-02-05T17:43:12Z

Fix first parameter for identify routine (should be driver_t *)

While OpenBSD's crypto/ framework has sha1 and md5 implementations that

2009-01-28T15:31:16Z

can cope with a result buffer of NULL in the "Final" function, we cannot. Thus pass in a temporary buffer long enough for either md5 or sha1 results so that we do not panic. PR: bin/126468 MFC after: 1 week

Don't hang if encrypting/decrypting using struct iovecs where one of the

2008-10-30T16:11:07Z

iovecs ends on a crypto block boundary.

Retire the MALLOC and FREE macros. They are an abomination unto style(9).

2008-10-23T15:53:51Z

MFC after: 3 months

Integrate the Camellia Block Cipher. For more information see RFC 4132

2007-05-09T19:37:02Z

and its bibliography. Submitted by: Tomoyuki Okazaki MFC after: 1 month

Overhaul driver/subsystem api's:

2007-03-21T03:42:51Z

o make all crypto drivers have a device_t; pseudo drivers like the s/w crypto driver synthesize one o change the api between the crypto subsystem and drivers to use kobj; cryptodev_if.m defines this api o use the fact that all crypto drivers now have a device_t to add support for specifying which of several potential devices to use when doing crypto operations o add new ioctls that allow user apps to select a specific crypto device to use (previous ioctls maintained for compatibility) o overhaul crypto subsystem code to eliminate lots of cruft and hide implementation details from drivers o bring in numerous fixes from Michale Richardson/hifn; mostly for 795x parts o add an optional mechanism for mmap'ing the hifn 795x public key h/w to user space for use by openssl (not enabled by default) o update crypto test tools to use new ioctl's and add cmd line options to specify a device to use for tests These changes will also enable much future work on improving the core crypto subsystem; including proper load balancing and interposing code between the core and drivers to dispatch small operations to the s/w driver as appropriate. These changes were instigated by the work of Michael Richardson. Reviewed by: pjd Approved by: re