Module Name: src
Committed By: drochner
Date: Thu May 26 21:50:03 UTC 2011
Modified Files:
src/crypto/dist/ipsec-tools/src/libipsec: pfkey_dump.c
src/crypto/dist/ipsec-tools/src/setkey: token.l
src/sys/net: pfkeyv2.h
src/sys/netipsec: xform_esp.c
src/sys/opencrypto: cryptodev.h cryptosoft.c cryptosoft_xform.c
files.opencrypto xform.c xform.h
src/usr.bin/netstat: fast_ipsec.c
Added Files:
src/sys/opencrypto: gmac.c gmac.h
Log Message:
pull in AES-GCM/GMAC support from OpenBSD
This is still somewhat experimental. Tested between 2 similar boxes
so far. There is much potential for performance improvement. For now,
I've changed the gmac code to accept any data alignment, as the "char *"
pointer suggests. As the code is practically used, 32-bit alignment
can be assumed, at the cost of data copies. I don't know whether
bytewise access or copies are worse performance-wise. For efficient
implementations using SSE2 instructions on x86, even stricter
alignment requirements might arise.
To generate a diff of this commit:
cvs rdiff -u -r1.18 -r1.19 \
src/crypto/dist/ipsec-tools/src/libipsec/pfkey_dump.c
cvs rdiff -u -r1.15 -r1.16 src/crypto/dist/ipsec-tools/src/setkey/token.l
cvs rdiff -u -r1.28 -r1.29 src/sys/net/pfkeyv2.h
cvs rdiff -u -r1.37 -r1.38 src/sys/netipsec/xform_esp.c
cvs rdiff -u -r1.23 -r1.24 src/sys/opencrypto/cryptodev.h \
src/sys/opencrypto/files.opencrypto
cvs rdiff -u -r1.36 -r1.37 src/sys/opencrypto/cryptosoft.c
cvs rdiff -u -r1.22 -r1.23 src/sys/opencrypto/cryptosoft_xform.c
cvs rdiff -u -r0 -r1.1 src/sys/opencrypto/gmac.c src/sys/opencrypto/gmac.h
cvs rdiff -u -r1.27 -r1.28 src/sys/opencrypto/xform.c
cvs rdiff -u -r1.18 -r1.19 src/sys/opencrypto/xform.h
cvs rdiff -u -r1.16 -r1.17 src/usr.bin/netstat/fast_ipsec.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
