Home | History | Annotate | Download | only in ffs
History log of /src/sys/ufs/ffs/ffs_appleufs.c
RevisionDateAuthorComments
 1.15  15-Feb-2015  maxv Revert a change in my previous commit that broke the checksum calculation.
Noted by dholland@
 1.14  14-Feb-2015  maxv ffs_appleufs_validate():
- remove superfluous printfs
- ensure ul_namelen!=0, otherwise the kernel accesses ul_name[-1] and
overwrites the previous field in the structure.
 1.13  14-Feb-2015  maxv KNF. No functional change.
 1.12  19-Nov-2011  tls branches: 1.12.8; 1.12.26;
First step of random number subsystem rework described in
<20111022023242.BA26F14A158@mail.netbsd.org>. This change includes
the following:

An initial cleanup and minor reorganization of the entropy pool
code in sys/dev/rnd.c and sys/dev/rndpool.c. Several bugs are
fixed. Some effort is made to accumulate entropy more quickly at
boot time.

A generic interface, "rndsink", is added, for stream generators to
request that they be re-keyed with good quality entropy from the pool
as soon as it is available.

The arc4random()/arc4randbytes() implementation in libkern is
adjusted to use the rndsink interface for rekeying, which helps
address the problem of low-quality keys at boot time.

An implementation of the FIPS 140-2 statistical tests for random
number generator quality is provided (libkern/rngtest.c). This
is based on Greg Rose's implementation from Qualcomm.

A new random stream generator, nist_ctr_drbg, is provided. It is
based on an implementation of the NIST SP800-90 CTR_DRBG by
Henric Jungheim. This generator users AES in a modified counter
mode to generate a backtracking-resistant random stream.

An abstraction layer, "cprng", is provided for in-kernel consumers
of randomness. The arc4random/arc4randbytes API is deprecated for
in-kernel use. It is replaced by "cprng_strong". The current
cprng_fast implementation wraps the existing arc4random
implementation. The current cprng_strong implementation wraps the
new CTR_DRBG implementation. Both interfaces are rekeyed from
the entropy pool automatically at intervals justifiable from best
current cryptographic practice.

In some quick tests, cprng_fast() is about the same speed as
the old arc4randbytes(), and cprng_strong() is about 20% faster
than rnd_extract_data(). Performance is expected to improve.

The AES code in src/crypto/rijndael is no longer an optional
kernel component, as it is required by cprng_strong, which is
not an optional kernel component.

The entropy pool output is subjected to the rngtest tests at
startup time; if it fails, the system will reboot. There is
approximately a 3/10000 chance of a false positive from these
tests. Entropy pool _input_ from hardware random numbers is
subjected to the rngtest tests at attach time, as well as the
FIPS continuous-output test, to detect bad or stuck hardware
RNGs; if any are detected, they are detached, but the system
continues to run.

A problem with rndctl(8) is fixed -- datastructures with
pointers in arrays are no longer passed to userspace (this
was not a security problem, but rather a major issue for
compat32). A new kernel will require a new rndctl.

The sysctl kern.arandom() and kern.urandom() nodes are hooked
up to the new generators, but the /dev/*random pseudodevices
are not, yet.

Manual pages for the new kernel interfaces are forthcoming.
 1.11  22-Jun-2011  mrg branches: 1.11.2;
fix an off by one array overflow found by GCC 4.5.3.
 1.10  24-Apr-2010  dbj switch from 4 clause to 2 clause BSD license.
 1.9  11-Jun-2006  kardel branches: 1.9.60; 1.9.82; 1.9.84;
PR 33697: complete timecounter conversion
 1.8  11-Dec-2005  christos branches: 1.8.4; 1.8.8; 1.8.14;
merge ktrace-lwp.
 1.7  15-Jul-2005  thorpej Use ANSI function decls.
 1.6  26-Feb-2005  perry branches: 1.6.4;
nuke trailing whitespace
 1.5  02-Jan-2004  dbj branches: 1.5.8; 1.5.10;
explicitly pad struct appleufslabel and use __attribute__((__packed__))
since apple put the 64 bit uuid field on a 4 byte boundary
 1.4  02-Jan-2004  dbj add uuid field to apple ufs volume label
 1.3  13-Oct-2003  thorpej Whitespace nits.
 1.2  02-Nov-2002  dbj branches: 1.2.6;
use be32toh instead of ntohl, etc.
 1.1  28-Sep-2002  dbj branches: 1.1.2; 1.1.4;
Add support for the Apple UFS variation on ffs
This is the bulk of PR #17345

The general approach is to use a run time deteriminable value
for DIRBLKSIZ. Additional allowances are included for using
MAXSYMLINKLEN with FS_42INODEFMT and a shift in the cylinder group
cluster summary count array. Support is added for managing
the Apple UFS volume label.
 1.1.4.3  11-Nov-2002  nathanw Catch up to -current
 1.1.4.2  18-Oct-2002  nathanw Catch up to -current.
 1.1.4.1  28-Sep-2002  nathanw file ffs_appleufs.c was added on branch nathanw_sa on 2002-10-18 02:45:48 +0000
 1.1.2.2  10-Oct-2002  jdolecek sync kqueue with -current; this includes merge of gehenna-devsw branch,
merge of i386 MP branch, and part of autoconf rototil work
 1.1.2.1  28-Sep-2002  jdolecek file ffs_appleufs.c was added on branch kqueue on 2002-10-10 18:44:52 +0000
 1.2.6.5  10-Nov-2005  skrll Sync with HEAD. Here we go again...
 1.2.6.4  04-Mar-2005  skrll Sync with HEAD.

Hi Perry!
 1.2.6.3  21-Sep-2004  skrll Fix the sync with head I botched.
 1.2.6.2  18-Sep-2004  skrll Sync with HEAD.
 1.2.6.1  03-Aug-2004  skrll Sync with HEAD
 1.5.10.1  19-Mar-2005  yamt sync with head. xen and whitespace. xen part is not finished.
 1.5.8.1  29-Apr-2005  kent sync with -current
 1.6.4.1  21-Jun-2006  yamt sync with head.
 1.8.14.1  19-Jun-2006  chap Sync with head.
 1.8.8.1  26-Jun-2006  yamt sync with head.
 1.8.4.1  09-Sep-2006  rpaulo sync with head
 1.9.84.1  30-May-2010  rmind sync with head
 1.9.82.1  30-Apr-2010  uebayasi Sync with HEAD.
 1.9.60.1  11-Aug-2010  yamt sync with head.
 1.11.2.1  17-Apr-2012  yamt sync with head
 1.12.26.1  06-Apr-2015  skrll Sync with HEAD
 1.12.8.1  03-Dec-2017  jdolecek update from HEAD

RSS XML Feed