mirror/freebsd
1
0
Fork 0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-19 10:53:58 +00:00
Code Issues Releases Activity
19b5c7bc4b
freebsd/sys/conf
History
Poul-Henning Kamp 19b5c7bc4b Add Geom Based Disk Encryption to the tree. 
This is an encryption module designed for to secure denial of access
to the contents of "cold disks" with or without destruction activation.

Major features:

   * Based on AES, MD5 and ARC4 algorithms.
   * Four cryptographic barriers:
        1) Pass-phrase encrypts the master key.
        2) Pass-phrase + Lock data locates master key.
        3) 128 bit key derived from 2048 bit master key protects sector key.
        3) 128 bit random single-use sector keys protect data payload.
   * Up to four different changeable pass-phrases.
   * Blackening feature for provable destruction of master key material.
   * Isotropic disk contents offers no information about sector contents.
   * Configurable destination sector range allows steganographic deployment.

This commit adds the kernel part, separate commits will follow for the
userland utility and documentation.

This software was developed for the FreeBSD Project by Poul-Henning Kamp and
NAI Labs, the Security Research Division of Network Associates, Inc.  under
DARPA/SPAWAR contract N66001-01-C-8035 ("CBOSS"), as part of the DARPA CHATS
research program.

Many thanks to Robert Watson, CBOSS Principal Investigator for making this
possible.

Sponsored by:   DARPA & NAI Labs.
2002-10-19 17:02:17 +00:00
..
defines
files Add Geom Based Disk Encryption to the tree. 2002-10-19 17:02:17 +00:00
files.alpha NB: This commit does *NOT* make GEOM the default in FreeBSD 2002-10-05 16:35:33 +00:00
files.amd64 de-count atkbdc and sc. Folks, remove the '1' from 'device sc 1' and 2002-08-19 23:59:21 +00:00
files.i386 NB: This commit does *NOT* make GEOM the default in FreeBSD 2002-10-05 16:35:33 +00:00
files.ia64 Make the unwind functions standard and not optional on ddb. They 2002-10-19 04:02:16 +00:00
files.pc98 NB: This commit does *NOT* make GEOM the default in FreeBSD 2002-10-05 16:35:33 +00:00
files.powerpc - added macio and psim files 2002-09-19 05:11:15 +00:00
files.sparc64 Build openfirmio on sparc64. 2002-10-18 15:27:02 +00:00
kern.mk ia64 specific CFLAGS change: 2002-10-13 02:52:22 +00:00
kern.post.mk Don't show the command line when doing "make lint". 2002-10-15 20:49:58 +00:00
kern.pre.mk - Remove ${NORMAL_C_NOWERROR}, it is not used anymore. To build 2002-10-19 16:47:13 +00:00
kmod_syms.awk Our awk does not implement the ARGIND variable, so we were attempting 2002-08-06 19:31:04 +00:00
kmod.mk add crypto interface to the MFILES list 2002-10-04 20:36:39 +00:00
ldscript.alpha Use the new freebsd output format from Binutils 2.13.1. 2002-10-11 19:38:04 +00:00
ldscript.amd64 Use the new freebsd output format from Binutils 2.13.1. 2002-10-11 19:38:04 +00:00
ldscript.i386 Use the new freebsd output format from Binutils 2.13.1. 2002-10-11 19:38:04 +00:00
ldscript.ia64 Cover the ELF headers with the text segment so that they get loaded 2002-10-18 04:46:36 +00:00
ldscript.powerpc
ldscript.sparc64
majors Allocate major 177 for the OpenFirmware control device, which I have 2002-10-17 18:11:49 +00:00
Makefile.alpha Moved the rule for locore.o from kern.post.mk to Makefile.$ARCH. 2002-07-31 14:59:05 +00:00
Makefile.amd64 Moved the rule for locore.o from kern.post.mk to Makefile.$ARCH. 2002-07-31 14:59:05 +00:00
Makefile.i386 Moved the rule for locore.o from kern.post.mk to Makefile.$ARCH. 2002-07-31 14:59:05 +00:00
Makefile.ia64 Build the kernel with -mconstant-gp. This means that function calls, 2002-10-13 07:07:51 +00:00
Makefile.pc98 Moved the rule for locore.o from kern.post.mk to Makefile.$ARCH. 2002-07-31 14:59:05 +00:00
Makefile.powerpc Initiate deorbit burn for the i386-only a.out related support. Moves are 2002-09-17 01:49:00 +00:00
Makefile.sparc64 Moved most interrupt related code to a new file, interrupt.S. 2002-09-28 01:56:24 +00:00
makeLINT.sed
newvers.sh
NOTES Add Geom Based Disk Encryption to the tree. 2002-10-19 17:02:17 +00:00
options Add Geom Based Disk Encryption to the tree. 2002-10-19 17:02:17 +00:00
options.alpha Add new syscons option SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 07:04:31 +00:00
options.amd64 Add new syscons option SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 07:04:31 +00:00
options.i386 Add new syscons option SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 07:04:31 +00:00
options.ia64 Add new syscons option SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 07:04:31 +00:00
options.pc98 Add new syscons option SC_NO_SUSPEND_VTYSWITCH. 2002-10-17 07:04:31 +00:00
options.powerpc psim device support 2002-09-19 05:09:27 +00:00
options.sparc64
systags.sh