Home | History | Annotate | Download | only in man4
History log of /src/share/man/man4/crypto.4
RevisionDateAuthorComments
 1.26  03-Jul-2017  wiz Remove workaround for ancient HTML generation code.
 1.25  28-Apr-2015  prlw1 branches: 1.25.8;
Fix typos
 1.24  27-Jan-2014  pgoyette Update CIOGFSESSION argument spec to match reality
 1.23  25-Feb-2011  wiz branches: 1.23.4; 1.23.10;
Bump date for new crypto types.
 1.22  25-Feb-2011  drochner make the use of SHA2-HMAC by FAST_IPSEC compliant to current standards:
-RFC2104 says that the block size of the hash algorithm must be used
for key/ipad/opad calculations. While formerly all ciphers used a block
length of 64, SHA384 and SHA512 use 128 bytes. So we can't use the
HMAC_BLOCK_LEN constant anymore. Add a new field to "struct auth_hash"
for the per-cipher blocksize.
-Due to this, there can't be a single "CRYPTO_SHA2_HMAC" external name
anymore. Replace this by 3 for the 3 different keysizes.
This was done by Open/FreeBSD before.
-Also fix the number of authenticator bits used tor ESP and AH to
conform to RFC4868, and remove uses of AH_HMAC_HASHLEN which did
assume a fixed authenticator size of 12 bytes.

FAST_IPSEC will not interoperate with KAME IPSEC anymore if sha2 is used,
because the latter doesn't implement these standards. It should
interoperate with at least modern Free/OpenBSD now.
(I've only tested with NetBSD-current/FAST_IPSEC on both ends.)
 1.21  20-Apr-2010  jruoho branches: 1.21.2; 1.21.4;
Document also kern.cryptodevallowsoft.
 1.20  20-Apr-2010  jruoho Document kern.usercrypto and kern.userasymcrypto.
 1.19  31-Jan-2010  wiz Use full month name in Dd.
 1.18  31-Jan-2010  hubertf Fix two typos to make documentation match the code:
* the CIOCFKEY ioctl is really called CIOCKEY
* CRK_MOD_EX => CRK_MOD_EXP

Bump date.
 1.17  28-Jan-2010  hubertf Fix typo: CIOCASSYMFEAT -> CIOCASYMFEAT
 1.16  17-May-2009  wiz Remove trailing whitespace. Avoid marking up punctuation. Remove
superfluous Pp. Make HTML-ready. ioctl(4) -> ioctl(2).
Fix wrong end-of-sentence break.
 1.15  17-May-2009  fair Eliminate a groff warning seen during build.
Add some paragraph breaks for clarity/readability.
Sentence periods should be at end of lines.
 1.14  02-May-2008  martin branches: 1.14.4; 1.14.10;
Move TNF licenses to 2 clause form
 1.13  10-Apr-2008  tls branches: 1.13.2;
Extend crypto.4 interface:

* Asynchronous operation with result retrieval via select/poll
* Mutliple-request submit/retrieve ioctls
* Mutliple-session create-destroy ioctls

Revise/rewrite crypto.4 manual page. It should now be much easier to write
new applications to this API.

Measured performance for trivial requests: 84,000 very short modular math
operations/sec, 120,000 very short md5 hashes per sec (with a hardware
accellerator of moderate performance but very low latency, whose driver
will be contributed at a later date).

Contributed to TNF by Coyote Point Systems, Inc.
 1.12  26-Jan-2008  tls branches: 1.12.4;
Make /dev/crypto properly cloning. Leave CRIOGET in place but note that
it is deprecated, no longer required, and will be removed in a future
release of NetBSD.

Dramatically reduce the size of the session structure by removing an
IOV_MAX array of iovecs where only the first was use. Saves an 8k
bzero on each session creation.

Convert fixed-size allocations in cryptodev.c to pools.
 1.11  25-Jan-2008  tls Some minor opencrypto fixes, one with a major performance impact for
OpenSSL:

1) Fix extremely misleading text in crypto.4 manual page so it does not
appear to claim that a new cloned file descriptor is required for every
session.

2) Fix severe performance problem (and fd leak!) in openssl cryptodev
engine resulting from misunderstanding probably caused by said manual
page text.

3) Check for session-ID wraparound in kernel cryptodev provider. Also,
start allocating sessions at 1, not 0 -- this will be necessary when
we add ioctls for the creation of multiple sessions at once, so we
can tell which if any creations failed.
 1.10  23-Sep-2006  elad branches: 1.10.8;
PR/30355: der Mouse: crypto(4) gets ioctl names wrong
Patch applied, thanks!
 1.9  28-Mar-2006  riz Since the swcrypto pseudo-device is now needed for using the crypto
framework without a hardware accelerator card, make sure it has
some accessible documentation.
 1.8  14-Apr-2005  nathanw The bind-session ioctl is CIOCGSESSION, not CRIOCGSESSION.
 1.7  13-Apr-2005  nathanw CIOCCRYPT takes a "struct crypt_op *", not a "struct crpyto_op *".
 1.6  28-Mar-2005  nathanw ".XR" should be ".Xr".
 1.5  29-Apr-2004  jonathan branches: 1.5.2;
Make new hifn(4) and ubsec(4) manual pages visible to system, after
review, proofing, and bug-fixing by Thomas Klausner (wiz):
1. add hifn(40 and ubsec(4) to share/man/man4/Makefile and the distrib set lists.
2. Restore commented-out cross-references to hifn(40 and ubsec(4) in crypto(4).

No change made to hifn.4 or ubsec.4; commit forced for cross-reference
and for pullup-request purposes.
 1.4  28-Apr-2004  wiz Fix Dd argument; new sentence, new line; fix a typo; remove superfluous
.Pp before/after section headers; replace <> with \*[Lt] and \*[Gt] resp.
for HTML; mark up COP_*; add a missing word ("if"); comment out references
to hifn(4) and ubsec(4), which we don't have; sort sections; add missing
word ("in").
 1.3  28-Apr-2004  wiz Drop trailing white space in preparation for more changes.
 1.2  27-Apr-2004  jonathan Update synopsis to match reality: usercode has to #include <sys/time.h>,
because sys/opencrypto/cryptodev.h currently doesn't do that on behalf
of userspace code.
 1.1  27-Apr-2004  jonathan Commit first draft of a manpage for crypto(4), the user-mode API
to opencrypto(9).
 1.5.2.2  06-May-2004  jmc Pullup rev 0-1.5 (requested by jonathan in ticket #237)

Add manpages for crypto(4),and for the hifn(4) and ubsec(4) hardware crypto accelerators.
 1.5.2.1  29-Apr-2004  jmc file crypto.4 was added on branch netbsd-2-0 on 2004-05-06 05:02:55 +0000
 1.10.8.1  23-Mar-2008  matt sync with HEAD
 1.12.4.1  02-Jun-2008  mjf Sync with HEAD.
 1.13.2.1  18-May-2008  yamt sync with head.
 1.14.10.1  21-Apr-2010  matt sync to netbsd-5
 1.14.4.1  30-Jan-2010  snj Pull up following revision(s) (requested by hubertf in ticket #1285):
share/man/man4/crypto.4: revision 1.17
Fix typo: CIOCASSYMFEAT -> CIOCASYMFEAT
 1.21.4.1  05-Mar-2011  bouyer Sync with HEAD
 1.21.2.2  20-Apr-2010  jruoho Document also kern.cryptodevallowsoft.
 1.21.2.1  20-Apr-2010  jruoho file crypto.4 was added on branch uebayasi-xip on 2010-04-20 08:37:23 +0000
 1.23.10.1  20-Aug-2014  tls Rebase to HEAD as of a few days ago.
 1.23.4.1  22-May-2014  yamt sync with head.

for a reference, the tree before this commit was tagged
as yamt-pagecache-tag8.

this commit was splitted into small chunks to avoid
a limitation of cvs. ("Protocol error: too many arguments")
 1.25.8.1  02-Sep-2019  martin Pull up following revision(s) (requested by sevan in ticket #1351):

share/man/man4/man4.amiga/grf.4: revision 1.7
share/man/man4/si.4: revision 1.11
share/man/man8/man8.sparc/boot.8: revision 1.32
share/man/man5/nsswitch.conf.5: revision 1.29
share/man/man5/mixerctl.conf.5: revision 1.7
share/man/man8/man8.vax/boot.8: revision 1.14
share/man/man4/man4.vax/dn.4: revision 1.12
share/man/man8/man8.vax/drtest.8: revision 1.16
share/man/man8/sysinst.8: revision 1.6
share/man/man4/ip.4: revision 1.37
share/man/man5/boot.cfg.5: revision 1.28
share/man/man1/cd.1: revision 1.10
share/man/man4/usb.4: revision 1.106
share/man/man4/man4.vax/ix.4: revision 1.17
share/man/man7/security.7: revision 1.15
share/man/man7/hier.7: revision 1.123
share/man/man8/afterboot.8: revision 1.58
share/man/man1/man1.x68k/bellctrl.1: revision 1.14
share/man/man4/se.4: revision 1.6
share/man/man4/utoppy.4: revision 1.7
share/man/man4/midi.4: revision 1.32
share/man/man4/cfb.4: revision 1.5
share/man/man4/man4.sparc/magma.4: revision 1.12
share/man/man4/audio.4: revision 1.80
share/man/man4/isic.4: revision 1.18
share/man/man1/cd.1: revision 1.7
share/man/man4/envsys.4: revision 1.51
share/man/man1/cd.1: revision 1.8
share/man/man1/cd.1: revision 1.9
share/man/man3/fast_divide32.3: revision 1.9
share/man/man4/pci.4: revision 1.97
share/man/man5/ranlib.5: revision 1.7
share/man/man3/__arraycount.3: revision 1.7
share/man/man4/isa.4: revision 1.46
share/man/man8/man8.atari/ahdilabel.8: revision 1.14
share/man/man4/chipsfb.4: revision 1.6
share/man/man8/man8.macppc/boot.8: revision 1.8
share/man/man5/passwd.5: revision 1.33
share/man/man8/man8.macppc/ofwboot.8: revision 1.14
share/man/man8/compat_linux.8: revision 1.38
share/man/man4/iop.4: revision 1.22
share/man/man4/ddb.4: revision 1.167
share/man/man4/termios.4: revision 1.37
share/man/man8/compat_freebsd.8: revision 1.18
share/man/man5/ar.5: revision 1.9
share/man/man7/release.7: revision 1.37
share/man/man5/core.5: revision 1.31
share/man/man4/ahd.4: revision 1.6
share/man/man4/man4.vax/ad.4: revision 1.12
share/man/man4/pppoe.4: revision 1.39
share/man/man5/locale.alias.5: revision 1.3
share/man/man8/man8.amiga/installboot.8: revision 1.23
share/man/man4/etherip.4: revision 1.8
share/man/man3/queue.3: revision 1.57
share/man/man5/genassym.cf.5: revision 1.13
share/man/man4/mpls.4: revision 1.10
share/man/man1/wait.1: revision 1.5
share/man/man5/capfile.5: revision 1.4
share/man/man4/man4.alpha/ttwopci.4: revision 1.6
share/man/man4/man4.atari/rtc.4: revision 1.8
share/man/man4/gpiosim.4: revision 1.6
share/man/man3/bitstring.3: revision 1.18
share/man/man4/isdntel.4: revision 1.8
share/man/man4/ai.4: revision 1.9
share/man/man8/man8.hppa/boot.8: revision 1.2
share/man/man4/uyurex.4: revision 1.6
share/man/man8/man8.alpha/mkbootimage.8: revision 1.9
share/man/man4/bpf.4: revision 1.56
share/man/man4/man4.amiga/mfcs.4: revision 1.8
share/man/man4/cmpci.4: revision 1.9
share/man/man8/man8.vax/format.8: revision 1.14
share/man/man8/compat_svr4.8: revision 1.27
share/man/man4/crypto.4: revision 1.26
share/man/man4/userconf.4: revision 1.13
share/man/man4/agp.4: revision 1.17
share/man/man9/man9.i386/bioscall.9: revision 1.10
share/man/man4/uftdi.4: revision 1.20
share/man/man4/radio.4: revision 1.13
share/man/man4/mfb.4: revision 1.5
share/man/man7/ascii.7: revision 1.8
share/man/man4/man4.vax/dl.4: revision 1.13
share/man/man4/ral.4: revision 1.12
share/man/man4/unix.4: revision 1.26
share/man/man4/edc.4: revision 1.12
share/man/man4/pim.4: revision 1.5
share/man/man8/compat_ultrix.8: revision 1.21
share/man/man4/dge.4: revision 1.11
share/man/man8/diskless.8: revision 1.32
share/man/man5/passwd.conf.5: revision 1.11
share/man/man8/man8.acorn26/boot26.8: revision 1.8
share/man/man4/man4.vax/hy.4: revision 1.12
share/man/man4/plip.4: revision 1.4
share/man/man4/sc.4: revision 1.8
share/man/man4/ec.4: revision 1.14
share/man/man4/man4.sgimips/giopci.4: revision 1.9
share/man/man7/sysctl.7: revision 1.114
share/man/man3/bits.3: revision 1.18
share/man/man4/we.4: revision 1.19
share/man/man8/compat_sunos.8: revision 1.21
share/man/man4/ip6.4: revision 1.31
share/man/man4/acpilid.4: revision 1.8
share/man/man4/man4.dreamcast/aica.4: revision 1.6
share/man/man4/mfi.4: revision 1.12
share/man/man4/ugen.4: revision 1.32
share/man/man4/jme.4: revision 1.7
share/man/man4/man4.sparc64/intro.4: revision 1.5
share/man/man4/zyd.4: revision 1.5
share/man/man4/gre.4: revision 1.45
share/man/man3/bitmap.3: revision 1.10
share/man/man4/man4.vax/cons.4: revision 1.12
share/man/man3/gcq.3: revision 1.4
share/man/man4/man4.hppa/pdc.4: revision 1.3
share/man/man4/multicast.4: revision 1.8
share/man/man4/man4.sparc/intro.4: revision 1.27
share/man/man4/ath.4: revision 1.32
share/man/man4/ym.4: revision 1.19
share/man/man3/iso646.3: revision 1.6
share/man/man4/btsco.4: revision 1.13
share/man/man4/man4.i386/ndis.4: revision 1.6
share/man/man4/pad.4: revision 1.6
share/man/man4/strip.4: revision 1.16
share/man/man8/man8.x86/boot.8: revision 1.12
share/man/man4/amr.4: revision 1.15
share/man/man4/ieee80211.4: revision 1.5
share/man/man4/options.4: revision 1.467
share/man/man5/link.5: revision 1.24
share/man/man8/man8.cobalt/boot.8: revision 1.10
share/man/man5/stab.5: revision 1.15
share/man/man3/tree.3: revision 1.12
share/man/man4/route.4: revision 1.31
share/man/man4/man4.sun3/leds.4: revision 1.13
share/man/man4/bluetooth.4: revision 1.20
share/man/man4/man4.i386/pcibios.4: revision 1.19
share/man/man5/veriexec.5: revision 1.8
share/man/man7/operator.7: revision 1.12
share/man/man4/man4.hp300/dcl.4: revision 1.13
share/man/man4/man4.i386/intro.4: revision 1.31
share/man/man5/ld.so.conf.5: revision 1.21
share/man/man8/man8.alpha/boot.8: revision 1.16
share/man/man4/bio.4: revision 1.13
share/man/man4/man4.sun2/leds.4: revision 1.10
share/man/man8/man8.x86/mbr.8: revision 1.4
share/man/man8/man8.mvme68k/boot.8: revision 1.9
share/man/man4/man4.alpha/ttwoga.4: revision 1.6
share/man/man4/ahc.4: revision 1.34

Direct reader to shell documentation generally, rather than csh(1)
specifically.

Mention variables OLDPWD and PWD.

Move the text that explains that cd(1) is a shell built-in to the very
beginning of the description where it can be seen prominently.

Improve formatting.

-

Remove workaround for ancient HTML generation code.
Use EXIT STATUS and .Ex.

RSS XML Feed