| #
01dd8550 |
|
21-Mar-2018 |
Aaron Green <aarongreen@google.com> |
[devmgr][fs-management][zxcrypt] Add zxcrypt detection
This CL adds zxcrypt volume detection and auto-binding. Long term,
this will only work for zxcrypt volumes using unattended encryption,
that is, those not depending on user authentication.
Change-Id: Iaf97e44ce63b467c7a714df8adccc9adf124e74d
|
| #
2440abdb |
|
21-Mar-2018 |
Aaron Green <aarongreen@google.com> |
[paver] Add zxcrypt support
This CL adds a flag to FVM sparse containers. This flag
indicates to the disk paver that it should use a zxcrypt volume
on top of the FVM partition. The ability to set the flag in the
host FVM tool will be added in a later CL.
Change-Id: Ica8a416ca7244b1bf8e045ededb2bcfe845092f5
|
| #
37eb421a |
|
23-Mar-2018 |
Roland McGrath <mcgrathr@google.com> |
[ulib][zxcpp] Mark all symbols as hidden
Make sure a shared library built with zxcpp doesn't export zxcpp symbols.
Change-Id: I22294fb98752f3c4408faa6bb8b47d48a28786e8
|
| #
d3413e57 |
|
02-Mar-2018 |
Nick Kralevich <nnk@google.com> |
[zxcrypt] enable some integer sanitization
Enable the integer-divide-by-zero (relevant for ARM only) and
signed-integer-overflow checkers. This will add in-code detection for
some classes of undefined integer behavior.
Limit this to zxcrypt for now, as this is just an experiment.
SEC-53: Build a system that is robust against vulnerabilities
Change-Id: I89a5aca790c7325aa5de4d153a1f53036a14c814
|
| #
d0c7771a |
|
01-Mar-2018 |
Nick Kralevich <nnk@google.com> |
[zxcrypt] more moving to compiler intrinsics
See ZX-1747
Change-Id: Idae93cf343fb42560fe83b6faa4e99f4ae35edb8
|
| #
76a5c30d |
|
01-Feb-2018 |
Aaron Green <aarongreen@google.com> |
[block][zxcrypt] remove support for iotxns
Change-Id: If4f703facbfa9d58e85f45283123a3d8af4d27ec
|
| #
16e16ded |
|
19-Jan-2018 |
Aaron Green <aarongreen@google.com> |
[crypto][fdio][zxcrypt] Improve debug output
This CL improves fdio/debug's xprintf with location info.
Change-Id: Idd05c0439258ed3fe160086bcce05575eddbc38b
|
| #
1aa56bb7 |
|
19-Jan-2018 |
Aaron Green <aarongreen@google.com> |
[zxcrypt] Rename superblock to volume
zxcrypt::Superblock evolved beyond just an interface for a single block
of metadata into something more like a zxcrypt volume interface. This
CL renames the class to reflect that.
Change-Id: I8602a9531687df31e84f701e277f07238c519b6e
|
| #
885d05a1 |
|
17-Oct-2017 |
Aaron Green <aarongreen@google.com> |
[zxcrypt] Add Superblock class
This CL adds Superblock, which encapsulates how the cryptographic
metadata is stored and retrieved by zxcrypt. I/O performance is not as
critical a concern here, as the superblock is generally only involved in
'lifecycle' events of a zxcrypt device, that is formatting, binding,
rekeying, and shredding, and not individual data transfers.
Change-Id: I73cebf8d653cee9c00ce7a952bc75852361fec8b
|