tls
8e1a1c9f45
Address multiple problems with rnd(4)/cprng(9):
...
1) Add a per-cpu CPRNG to handle short reads from /dev/urandom so that
programs like perl don't drain the entropy pool dry by repeatedly
opening, reading 4 bytes, closing.
2) Really fix the locking around reseeds and destroys.
3) Fix the opportunistic-reseed strategy so it actually works, reseeding
existing RNGs once each (as they are used, so idle RNGs don't get
reseeded) until the pool is half empty or newly full again.
2012-04-17 02:50:38 +00:00
wiz
78f50b6e04
Bump date for previous.
2012-04-13 06:38:55 +00:00
rkujawa
a0e4064467
Mention that FastATA 1200 Mk-IV CF/SATA edition is also supported.
2012-04-13 01:12:32 +00:00
yamt
4571decefa
comment
2012-04-11 14:28:46 +00:00
yamt
86c517f33d
don't bother to call lo_close.
...
as we ever open a few LOs at most in a transaction, just let them be closed
automatically at the end of the transaction.
2012-04-11 14:28:18 +00:00
yamt
d72c60c595
setlabel: save SQL statements by caching the last label
2012-04-11 14:27:43 +00:00
yamt
5a2606adf5
remove FK references as it creates more problems than it solves.
...
particularly, it involves shared lock on the referenced table
and causes frequent deadlock.
2012-04-11 14:27:15 +00:00
yamt
cb9c120507
abuse application_name to show the last puffs activity for the connection.
2012-04-11 14:26:44 +00:00
yamt
e5acf2f836
reduce number of SQL statements for inactivate
2012-04-11 14:26:19 +00:00
yamt
c47d2fd43a
- enable writeback cache and namecache.
...
- use setback hack to reduce number of puffs OPs.
2012-04-11 14:25:54 +00:00
jruoho
0addcacfb8
Now that 6.0 is branched, remove the ACPI-related sysctl nodes in machdep.
2012-04-10 13:48:24 +00:00
jruoho
3d037fc373
Fix wrong acronym.
2012-04-10 12:51:31 +00:00
christos
fbae18c4fe
document NAME=label
2012-04-07 03:14:06 +00:00
wiz
2b389a012a
Bump date for previous.
2012-04-05 09:15:56 +00:00
spz
aca1a7df56
add a description for the new check_passwd_permit_dups variable
2012-04-05 09:10:21 +00:00
joerg
b757af438b
Disable new -Wstring-plus-int warning where needed for now.
...
Adjust various places that add GCC-only options to check for the active
compiler first.
2012-04-04 10:59:44 +00:00
joerg
3c1c42ed5f
Make it easier to specify the list of checkers to enable for the static
...
analyzer.
2012-04-04 10:37:18 +00:00
plunky
d1525add95
language improvement
2012-04-02 09:56:58 +00:00
wiz
e255887aeb
Replace references to resolver(5) with ones to resolv.conf(5).
...
From patch by Bug Hunting.
2012-03-29 18:37:21 +00:00
wiz
fd09849b4f
Fix Dd argument, add serial comma, capitalize NetBSD.
2012-03-25 08:45:02 +00:00
wiz
a426452f1d
Bump date for previous.
2012-03-25 08:42:21 +00:00
nonaka
db4c04c984
Added urtwn(4), a driver for Realtek RTL8188CU/RTL8192CU USB IEEE 802.11b/g/n wireless network devices.
2012-03-25 00:11:16 +00:00
drochner
364a06bb29
remove KAME IPSEC, replaced by FAST_IPSEC
2012-03-22 20:34:37 +00:00
sborrill
33b7078a83
Add IBM ServeRAID M1015 and M5014
2012-03-22 15:43:37 +00:00
wiz
3957bea1ef
Fix whitespace nits. Suggested by Bug Hunting.
2012-03-22 07:58:16 +00:00
jakllsch
2bd475c24d
Remove remaining references to pccons options for i386 and shark.
...
pccons has not existed on either port since late 2007.
2012-03-21 15:38:32 +00:00
matt
a969b57018
Add WARNS=5 to enable -Wold-style-definitions
2012-03-20 21:48:20 +00:00
christos
4254cd9bee
allow file-specific lint flag additions
2012-03-17 18:02:41 +00:00
njoly
8dfc5e0c6d
Small typo.
2012-03-17 14:42:13 +00:00
wiz
a4e645569f
Fix table, addresses PR 46214 by Nicolas Joly.
2012-03-17 14:29:18 +00:00
wiz
7e093e0425
njoly remarks that Lk doesn't make sense here, since it won't ever resolve
...
correctly due to using ${RELEASE} in the URL. Revert previous.
2012-03-17 12:25:11 +00:00
wiz
5fe27af8d6
Use %U.
2012-03-17 11:15:42 +00:00
wiz
5f1d89ea80
Use Lk.
2012-03-17 11:11:35 +00:00
wiz
835afd6ab2
Use Lk/%U.
2012-03-17 11:11:00 +00:00
joerg
f03aabbcc7
Don't error out for non-literal format strings with Clang until the rest
...
of the __printflike changes are in the tree.
2012-03-15 15:04:23 +00:00
joerg
17cb70e7b4
Decouple HAVE_LLVM from HAVE_GCC. For GCC, add -Wno-format-zero-length
...
when -Wformat is used.
2012-03-15 02:00:52 +00:00
wiz
0ef1aebbc8
Fix URL.
2012-03-14 12:01:53 +00:00
wiz
948a1519b1
Bump date for previous.
...
Spell "file system" like in other man pages.
Fix typos.
2012-03-14 11:51:54 +00:00
wiz
a9bca96bca
Remove trailing whitespace. Fix typo. Sort.
2012-03-14 11:44:42 +00:00
njoly
b6085c95bd
Use Lk macro instead of Pa when dealing with URLs, to produce links
...
with HTML output. And while here update or removed some dead URL
links. Another part of PR/29238.
2012-03-13 19:25:39 +00:00
elad
0c9d8d15c9
Replace the remaining KAUTH_GENERIC_ISSUSER authorization calls with
...
something meaningful. All relevant documentation has been updated or
written.
Most of these changes were brought up in the following messages:
http://mail-index.netbsd.org/tech-kern/2012/01/18/msg012490.html
http://mail-index.netbsd.org/tech-kern/2012/01/19/msg012502.html
http://mail-index.netbsd.org/tech-kern/2012/02/17/msg012728.html
Thanks to christos, manu, njoly, and jmmv for input.
Huge thanks to pgoyette for spinning these changes through some build
cycles and ATF.
2012-03-13 18:40:26 +00:00
ryoon
2c74446a32
* Sync with FreeBSD: src/share/misc/bsd-family-tree,v rev. 1.151
...
Add DragonFly 3.0.1.
2012-03-13 10:32:58 +00:00
njoly
bed7cf5a54
Use Lk macro instead of Pa when dealing with URLs, to produce links
...
with HTML output. And while here update some dead URL links.
First part of PR/29238.
2012-03-11 23:42:06 +00:00
wiz
65ba3f7900
Use %U for URLs.
2012-03-08 22:52:22 +00:00
pgoyette
6199976b03
Add another missing zipcode - this is where I live!
2012-03-06 17:20:38 +00:00
mbalmer
e1bc6531d4
Add a few.
2012-03-06 17:11:15 +00:00
mbalmer
ac893d96b3
Add a missing zipcode.
2012-03-06 17:08:10 +00:00
mbalmer
a249dde5ae
Oxford serial comma, FFS.
2012-03-06 17:04:54 +00:00
wiz
2985f26716
Remove trailing whitespace.
2012-03-06 10:26:18 +00:00
plunky
498fdc5a56
document rebuild_mandb
2012-03-06 10:23:10 +00:00
plunky
002ad20e5a
mention run_makemandb
2012-03-06 10:12:59 +00:00
wiz
7921bbc68f
Bump date for previous.
2012-03-04 11:56:03 +00:00
nonaka
edb4fc4829
fix incorrent example.
2012-03-03 15:14:03 +00:00
nonaka
0303786ef2
Mention AMD Fusion.
2012-03-02 19:31:07 +00:00
apb
e9e794cd61
Import tzdata2012b from ftp://munnari.oz.au/pub/tzdata2012b.tar.gz.
...
Changes since tzdata2012a:
Most significantly, summer time in Cuba has been delayed 3 weeks
(now starts April 1 rather than March 11). Since Mar 11 (the old
start date, as listed in 2012a) is just a little over a week away,
this change is urgent.
Less importantly, an excess tab in one of the changes in zone.tab
in 2012a has been removed.
2012-03-02 07:01:46 +00:00
apb
0773013243
Merge tzdata2012a from ftp://munnari.oz.au/pub/tzdata2012a.tar.gz.
...
Major changes since tzdata2011n:
Chile 2011/2012 and 2012/2013 summer time date adjustments.
Falkland Islands onto permanent summer time (we're assuming for the
foreseeable future, though 2012 is all we're fairly certain of.)
Armenia has abolished Summer Time.
Tokelau jumped the International Date Line back last December
(just the same as their near neighbour, Samoa).
America/Creston is a new zone for a small area of British Columbia
There will be a leapsecond 2012-06-30 23:59:60 UTC.
2012-03-01 21:19:03 +00:00
wiz
3d46a78f7d
Fix typo.
2012-03-01 09:08:19 +00:00
rjs
3c8be2b0dd
Add some info on RFC4638.
2012-02-29 22:53:47 +00:00
tron
df92d05dec
Move "libexpat" from X11 into base which fixes PR lib/40346.
...
This change was approved by the Core Group.
2012-02-29 20:07:51 +00:00
shattered
a8bba461cd
Document support for 5100AGN (in tree since 2009).
...
OK by wiz@
2012-02-25 11:00:25 +00:00
shattered
4e4e8d92ec
Quoting sys/dev/vme/files.vme commit log: "vmegeneric never saw the
...
light of the source tree. After 7 years, I guess nobody missed it."
OK by wiz@
2012-02-25 10:55:27 +00:00
mbalmer
ae1a443653
GPIO pins are 0 based when accessed from Lua, not 1 based like Lua usually
...
is. The pulse() has been removed, use gpiopwm(4) for that.
2012-02-25 09:13:38 +00:00
reinoud
aab843f817
Fix comment in config.4 about UDF support. It was still stating UDF as a
...
read-only fs wich it hasn't been for quite some time! It must have slipped
trough.
2012-02-22 20:21:34 +00:00
njoly
26ecbbc0b8
Adjust cpu_switch(9) -> cpu_switchto(9) in xrefs.
2012-02-22 19:04:38 +00:00
matt
f5d3f68d54
Remove another ${SIZE}
2012-02-21 01:41:09 +00:00
matt
0bf8cdb842
Remove ${SIZE}
2012-02-20 18:23:50 +00:00
matt
47c982a38d
Add support for --combine with gcc.
2012-02-19 23:19:37 +00:00
mbalmer
b2d484f7cb
Fix typos (in comments).
2012-02-17 12:08:12 +00:00
plunky
555be44f20
document config_detach_children(9)
2012-02-17 09:44:12 +00:00
yamt
b8736f67c5
sync with code
...
(remove const quals)
2012-02-17 08:22:47 +00:00
joerg
23782b5c2b
Derive MANINSTALL from MKCATPAGES and MKHTML.
2012-02-17 00:00:02 +00:00
christos
110af54a7b
use osrelease -k to avoid that the path is 6.0_BETA
2012-02-16 23:58:15 +00:00
yamt
dbf67aa479
fix a description of PMAP_PREFER argument.
2012-02-16 12:10:10 +00:00
plunky
18e80c41ff
add aubtfwl.4 to the build
2012-02-14 17:35:11 +00:00
plunky
aa2a5e5e09
a manual page for aubtfwl(4), detailing where to find
...
a firmware file and where to put it
2012-02-14 17:34:21 +00:00
dholland
7da608ca9c
Update dangling references to quotactl(2), mostly now libquota(3), and to
...
quotactl(8), mostly now quotarestore(8). ok riz@
2012-02-13 19:53:24 +00:00
njoly
3fc9fe7769
Small typo in macro (.xr -> .Xr).
2012-02-13 18:30:44 +00:00
wiz
7f2677a5a5
Bump date for previous.
2012-02-13 13:23:29 +00:00
njoly
5e9c51f65d
Fix copyin/copyout sections in xrefs.
2012-02-13 13:01:39 +00:00
wiz
f85441243b
Add locking description to some functions.
...
Add FILES section referencing source code.
From Julian Fagir in PR 45988.
2012-02-13 12:49:35 +00:00
dholland
62cfdf3316
Quota-related docs fixes:
...
- Remove old quotactl(2); replace with new __quotactl(2).
- Document quota_getrestrictions(3), the semantic restriction codes,
and quota_quotaon/off(3).
- Update VFS_QUOTACTL(9), which was still describing the pre-proplib API.
Approved by releng for the freeze.
2012-02-13 01:24:00 +00:00
sborrill
2e2406e56c
Address kern/36526. Note, contrary to the PR, ; command separator works as
...
documented in ddb(4)
Document ddb.commandonenter sysctl. Note, commandonenter is not available
as a variable:
db{0}> print $onpanic
1
db{0}> print $commandonenter
Unknown variable
So document the sysctl elsewhere, not in the variables section.
2012-02-12 12:43:51 +00:00
riz
dd7b9d2970
Make English usage consistent with other manpages. From Snader_LB.
2012-02-10 23:47:49 +00:00
matt
47dd0a4489
Switch VAX to use GCC 4.5 and GDB 7.
...
Change VAX to use DBG=-O2 like most other ports.
2012-02-10 05:57:42 +00:00
riz
af51433848
Various English usage, spelling and markup fixes for envstat(4)-related
...
things, from Snader_LB.
2012-02-09 18:10:26 +00:00
wiz
8292e96d35
Bump date for previous, per mbalmer.
2012-02-08 09:32:47 +00:00
wiz
9f4d0385b5
xref rwlock instead of deprecated lockmgr.
...
From Julian Fagir in PR 45944.
2012-02-08 08:25:05 +00:00
joerg
6c39547510
Sync with reality for MKCATPAGES and MKMANDOC.
2012-02-07 22:58:49 +00:00
joerg
849ff56477
Switch to using mandoc for formatting man pages as new default.
...
Stop building catpages by default.
2012-02-07 19:33:19 +00:00
joerg
410d0f4380
Import the new apropos/whatis.
...
This code has been developed by Abhinav Upadhyay as part of Google's Summer
of Code 2011. It uses libmandoc to parse man pages and builds a Full
Text Index in a SQLite database. The combination of indexing the full
manual page, filtering out stop words and ranking individual matches
based on the section gives a much improved user experience.
The old makewhatis and friends are kept under MKMAKEMANDB=no for now.
2012-02-07 19:13:24 +00:00
wiz
0ecc00962c
Restore missing word, remove trailing whitespace.
2012-02-01 09:37:29 +00:00
hauke
c4106ab9db
Document added timecounter support to the CSI Hurdler Centronics
...
Parallel Interface cpi(4) driver.
2012-02-01 08:45:03 +00:00
wiz
71fcb57d88
Remove trailing whitespace.
...
New sentence, new line.
Remove Pp before Sh.
Sort sections.
Use more markup.
Remove unnecessary macro arguments.
2012-01-31 13:25:05 +00:00
nisimura
6e0f9f1c21
introduce evbarm bootmini2440(8) man entry.
2012-01-31 12:23:32 +00:00
drochner
75699fcff7
document pci_aprint_devinfo(9) (not the _fancy variant yet because
...
it is still experimental)
2012-01-30 19:20:13 +00:00
christos
dfa5043919
rename to OBJCOPYLIBFLAGS
2012-01-28 23:13:24 +00:00
christos
c37ad7ee66
Provide a way to override the default objcopy flags for library modules.
2012-01-28 21:32:13 +00:00
wiz
b377f34442
Fix word duplication in previous.
2012-01-28 13:26:12 +00:00
rmind
be9b34c425
Update ltsleep(9) man page.
2012-01-28 13:12:52 +00:00
hubertf
3e9c4933e3
Sync with FreeBSD: src/share/misc/bsd-family-tree,v rev. 1.150
...
Submitted in PR 45880 by Rares Aioanei
2012-01-27 14:34:30 +00:00
wiz
5b0d8eba79
Fix Dd argument.
2012-01-25 09:21:29 +00:00
macallan
6d2ab8c1b4
chipsfb works on shark, finally mention that in the man page
2012-01-25 04:18:31 +00:00
wiz
6df2583508
Remove a fixed bug and an inappropriate sentence. Bump date.
2012-01-23 00:03:08 +00:00
wiz
08884b1549
Improve wording.
2012-01-23 00:02:42 +00:00
wiz
d88469710f
New sentence, new line. Avoid unnecessary macros.
2012-01-22 16:41:42 +00:00
phx
d6beebba11
New option "ide:".
...
Describe how to use altboot with a crippled U-Boot/PPCBoot firmware.
2012-01-22 15:37:23 +00:00
wiz
6ef95e5c76
Bump date for previous.
2012-01-22 14:15:43 +00:00
nonaka
8fdb017001
fix upgt(4) entry.
2012-01-22 12:54:26 +00:00
nonaka
860162017e
Added upgt(4) at Wireless network interfaces.
2012-01-22 12:48:44 +00:00
wiz
1066381f28
Fix xrefs, remove trailing whitespace, use actual Dd date,
...
add RCS Id.
2012-01-22 11:26:48 +00:00
christos
6fb39d18da
add a tpm driver from bsssd.sourceforge.net
2012-01-22 06:44:28 +00:00
rmind
f1f4283156
Replace pcq(9) with the implementation from ad@ and minor changes by me.
...
PR/40516, PR/45631.
2012-01-22 02:55:47 +00:00
isaki
e9bd047a2f
Switch mine to 2-clause license.
2012-01-21 03:01:03 +00:00
isaki
43fa5f922b
Clean up pow(4) (which I had removed in Nov 2011).
2012-01-21 02:52:50 +00:00
wiz
642a95b35f
Sort SEE ALSO.
2012-01-19 09:25:51 +00:00
rkujawa
9c4fe41206
Update the p5pb(4) page to reflect the recent changes in this driver.
2012-01-19 00:30:31 +00:00
njoly
761f943535
Remove bad indent keyword.
2012-01-17 22:18:54 +00:00
njoly
1d7281ae96
For xkb_base, do not use ${libdir} (xkeyboard-config.pc does not define
...
it) but its value ${prefix}/lib instead.
2012-01-17 19:40:08 +00:00
wiz
202095a66e
Dd wants full months.
...
Use Rs/Re for reference (only title filled in for now, more would be nice).
2012-01-17 17:27:32 +00:00
jakllsch
6fe6fbbce6
Update based on recent changes to uslsa(4).
2012-01-17 17:24:02 +00:00
cegger
a02b2c29fa
fix secmodel implementation of CPU_UCODE.
...
ok wiz@ for the manpages
ok elad@
2012-01-17 10:47:26 +00:00
wiz
185b329ee7
Bump date for previous.
2012-01-17 08:23:40 +00:00
wiz
e80c7409db
New sentence, new line. Bump date for previous. Sort SEE ALSO.
2012-01-17 08:20:58 +00:00
mbalmer
0d7eed0028
Remove trailing whitespace. Reported by Brad Harder.
2012-01-17 07:04:08 +00:00
christos
fc5fe3c352
PR/45850: Pierre Pronchery: USB multi-touch panels are not supported
2012-01-17 03:49:19 +00:00
drochner
769741476b
move kame_ipsec.4 almost completely into ipsec.4 because it is valid
...
for fast_ipsec as well
2012-01-16 16:27:59 +00:00
wiz
9ac11c40f8
Bump date for previous.
2012-01-15 20:27:58 +00:00
phx
ab290269c1
Introduce nhpow(4) man page.
2012-01-15 14:40:15 +00:00
phx
255a91ac60
Extend the list of supported NAS products for satmgr(4).
...
Describe the sysctl(8) variables for Iomega StorCenter.
2012-01-15 14:35:56 +00:00
jmcneill
ce4646dd28
PR# install/44593: Please give release ISO's more meaningful names
...
Change release ISO filenames, what was once 'i386cd.iso' will now look
like 'NetBSD-5.99.60-i386.iso'.
ok snj@
2012-01-14 22:56:30 +00:00
wiz
7af0bef7e5
Use more markup. Increase table width since longest string changed.
2012-01-13 23:12:32 +00:00
wiz
c18fbdcf42
New sentence, new line. Use more markup. Bump date for previous.
2012-01-13 23:09:51 +00:00
macallan
be47469bba
document some rasops_info flags that have been added recently ( and not so
...
recently )
2012-01-13 16:50:28 +00:00
macallan
19ea84bf71
document recent changes
2012-01-13 16:06:20 +00:00
cegger
a3f6c06746
Support CPU microcode loading via cpuctl(8).
...
Implemented and enabled via CPU_UCODE kernel config option
for x86 and Xen Dom0.
Tested on different AMD machines with different
CPU families.
ok wiz@ for the manpages
ok releng@
ok core@ via releng@
2012-01-13 16:05:14 +00:00
skrll
cfee3311b5
Real mode is no longer used.
2012-01-12 23:08:50 +00:00
skrll
220a3b7997
Update hp700 key sequences section.
2012-01-12 22:22:10 +00:00
wiz
389cbee608
Remove trailing whitespace; wording.
2012-01-11 19:44:56 +00:00
rkujawa
38e14ec3fe
Add man page for cv3dpb driver.
2012-01-11 17:25:19 +00:00
wiz
a866ffaac9
Remove trailing whitespace.
...
New sentence, new line.
Use more markup.
2012-01-11 10:15:36 +00:00
rkujawa
89e0f2fce5
Update p5pb(4) and bppcsc(4) due to recent changes to Phase5 drivers. Add p5membar(4) page.
2012-01-10 20:41:45 +00:00
skrll
7780856071
Fix NetBSD version in history.
2012-01-09 22:08:12 +00:00
wiz
9bc46f7ca5
Fix another reference to point to kame_ipsec for setup instructions (for now).
2012-01-09 16:35:20 +00:00
drochner
9d939b40a9
fix confusing references, from wiz
2012-01-09 16:17:37 +00:00
skrll
d2845d9eb6
Add a mkboot(8) man page.
2012-01-09 16:04:45 +00:00
drochner
d107562abc
Make FAST_IPSEC the default IPSEC implementation which is built
...
into the kernel if the "IPSEC" kernel option is given.
The old implementation is still available as KAME_IPSEC.
Do some minimal manpage adjustment -- kame_ipsec(4) is a copy
of the old ipsec(4) and the latter is now a copy of fast_ipsec(4).
2012-01-09 15:16:30 +00:00
dholland
eb3306a822
Sentences should verbs. From Snader_LB
2012-01-08 04:01:12 +00:00
yamt
9753d46d1c
install tprof related commands and man pages.
2012-01-04 16:25:13 +00:00
yamt
db1f5cf7f2
add a missing comma.
2012-01-04 15:48:54 +00:00
wiz
d6829e5b30
Bump date for previous. Move RCS Id to top of file.
2012-01-02 18:07:21 +00:00
wiz
adca3c43ee
New sentence, new line. Bump date for previous.
2012-01-02 18:02:00 +00:00
rkujawa
5ec5041c48
Correct the include path.
2012-01-02 15:41:51 +00:00
phx
c3ed2ca16a
Add the description for the "mem:<address>" bootname.
2012-01-01 14:48:40 +00:00
riz
df7c01333c
Fix typos and style glitches. Remove outdated info about only
...
Ethernet, SLIP, and PPP being supported, and no network types with
variable-length headers (such as 802.11).
Document BIOCSRSIG and BIOCGRSIG.
From Guy Harris in PR#40703.
2011-12-31 20:16:41 +00:00
alnsn
209a072285
Document that overflow in P[X+k:n] terminates a filter program.
...
Based on a discussion with Christos on source-changes-d.
2011-12-30 14:12:15 +00:00
wiz
59200cfca6
Remove duplicate RCS Id. New sentence, new line.
2011-12-27 21:47:04 +00:00
christos
cd61872876
PR/45750: Alexander Nasonov: Type of k in bpf_insn is bpf(9) is different
...
from sys/net/bpf.h
2011-12-27 21:24:25 +00:00
rmind
32d19c916b
Amend previous.
2011-12-23 20:53:31 +00:00
rmind
40947a78e4
Sync with reality a little.
2011-12-23 20:51:50 +00:00
wiz
707b092c0c
New sentence, new line. Fix some markup. Bump date for previous.
2011-12-17 21:25:12 +00:00
wiz
1a45da71c8
Use more markup. Bump date for previous.
2011-12-17 21:24:40 +00:00
wiz
612e69e384
New sentence, new line.
...
Bump date for previous.
2011-12-17 21:21:59 +00:00
tls
6e1dd068e9
Separate /dev/random pseudodevice implemenation from kernel entropy pool
...
implementation. Rewrite pseudodevice code to use cprng_strong(9).
The new pseudodevice is cloning, so each caller gets bits from a stream
generated with its own key. Users of /dev/urandom get their generators
keyed on a "best effort" basis -- the kernel will rekey generators
whenever the entropy pool hits the high water mark -- while users of
/dev/random get their generators rekeyed every time key-length bits
are output.
The underlying cprng_strong API can use AES-256 or AES-128, but we use
AES-128 because of concerns about related-key attacks on AES-256. This
improves performance (and reduces entropy pool depletion) significantly
for users of /dev/urandom but does cause users of /dev/random to rekey
twice as often.
Also fixes various bugs (including some missing locking and a reseed-counter
overflow in the CTR_DRBG code) found while testing this.
For long reads, this generator is approximately 20 times as fast as the
old generator (dd with bs=64K yields 53MB/sec on 2Ghz Core2 instead of
2.5MB/sec) and also uses a separate mutex per instance so concurrency
is greatly improved. For reads of typical key sizes for modern
cryptosystems (16-32 bytes) performance is about the same as the old
code: a little better for 32 bytes, a little worse for 16 bytes.
2011-12-17 20:05:38 +00:00
njoly
79579731df
Fix title.
2011-12-14 13:24:14 +00:00
njoly
2291fd1fba
Kill extra El macro.
2011-12-09 10:58:51 +00:00
wiz
a4d43dc119
Remove trailing whitespace and fix a typo.
2011-12-05 10:36:39 +00:00
jym
0d4c568bb2
KAUTH_GENERIC_CANSEE is no more.
2011-12-04 23:59:25 +00:00
jym
47c04e7b5a
Update secmodel_examples to better describe the secmodel(9) API.
2011-12-04 23:55:36 +00:00
jym
bdb161bba3
GETPARAMS => GETPARAM
...
SETPARAMS => SETPARAM
2011-12-04 21:52:37 +00:00
jym
f3effc5ec2
Improvements in secmodel(9). Document secmodel_register(9), _deregister(9)
...
and _eval(9).
Add secmodel_extensions(9), and indicate the new sysctl(7) to let
ordinary users control the CPU affinity (user_set_cpu_affinity).
2011-12-04 21:08:37 +00:00
jym
d96481c6de
- add the bool type for IMMEDIATE flag.
...
- minor tweak to the handler example: it leaks 't' (on stack)
when passed to sysctl_lookup(9), as it copyout its content via
sysctl_data. That would not be the case if CTLFLAG_IMMEDIATE flag
was set for this node but the example does not preclude that.
2011-12-04 18:34:20 +00:00
rkujawa
617d114527
Extend the mppb(4) man page.
2011-12-03 23:09:42 +00:00
wiz
a0f75bc721
Wording improvements.
2011-12-02 14:38:51 +00:00
yamt
43a6649cf8
some man pages
2011-12-02 12:17:51 +00:00
njoly
8250293e5f
Regen to catch up recent changes (x68k/pow and iscsi).
2011-12-02 08:50:18 +00:00
tls
7db676852a
Add (links for) missing "cross-references" from cprng(9). Some of the
...
functions replaced by cprng were never documented at all.
2011-11-29 03:40:41 +00:00
wiz
c9317429b9
Spelling.
2011-11-28 23:29:45 +00:00
wiz
b85c6e9d1b
Whitespace fixes; new sentence, new line; better macro usage.
...
Sort SEE ALSO.
2011-11-28 23:27:59 +00:00
tls
2a139c3401
Add cprng(9) manual page, remove arc4random(9) manual page
2011-11-28 20:19:25 +00:00
wiz
8ff9859919
New sentence, new line. Use more markup. Bump date for previous.
2011-11-28 09:38:45 +00:00
tls
a031ce7187
Add support for passing saved entropy (random seed file) to the kernel
...
from the bootloader. This can fix the problem of poor quality keys
for other kernel modules which call arc4random() early in kernel startup
(NFS startup, in particular, causes this).
We continue to rely on the etc/rc.d/random_seed script to save entropy
to the seed file at shutdown and erase the seed file at startup.
Boot loader support implemented only for i386 and amd64 ports for now but
it should be easy for other ports to do the same or similar.
2011-11-28 07:56:53 +00:00
skrll
052320efd5
Typo
2011-11-27 09:07:11 +00:00
isaki
9289c438ac
Add powsw(4) for x68k power switch. It substitutes for a part about
...
power switch handler of pow(4) deleted before.
Benefits than pow(4):
- separate a front switch (= powsw0) and an EXPWON line (= powsw1)
completely. Only powsw0 is enabled in GENERIC by default.
- prevent chattering in some hardware individuals.
thank you for a report and a test: Yasushi Oshima and Y.Sugahara.
2011-11-27 09:00:32 +00:00
wiz
48d5e162f9
Various improvements.
2011-11-26 22:36:14 +00:00
minoura
f602c9092c
Add vioif(4) and viomb(4).
2011-11-26 15:04:45 +00:00
skrll
0df379aa98
Switch hppa to gdb 7.
2011-11-25 22:03:42 +00:00
jmcneill
f3aef68ba3
update audio(9) docs for audiomp changes
2011-11-23 23:11:56 +00:00
apb
6c03a4739d
Use :Q to deal with the case that CLEANFILES or CLEANDIRFILES
...
contains quoted substrings (such as file names with spaces).
Problem reported by Joseph Koshy, who also provided the
important part of the fix.
2011-11-22 18:25:48 +00:00
wiz
ee97be87e2
New sentence, new line.
2011-11-21 15:11:45 +00:00
njoly
c76e625f30
Switch from .nf/.fi groff macros to .Bd -literal/.Ed blocks.
...
While here, convert .sp macro to .Pp.
ok wiz@.
2011-11-21 14:27:41 +00:00
mbalmer
d03cf6c291
One more.
2011-11-19 17:40:19 +00:00
mbalmer
dbea318e33
Add a few.
2011-11-19 17:38:58 +00:00
isaki
2ccb98927e
Obsolete pow(4) and rtcalarm(8). Discussed in port-x68k@.
...
Probably the combination of pow(4) ioctl and rtcalarm(8) does
not work for a long time, and nobody uses them.
I'll rewrite a part about power switch handler as a new device.
2011-11-19 12:27:42 +00:00
jdc
39bd26a295
Switch alpha to gdb 7.
2011-11-15 22:55:28 +00:00
jym
0cbbdfa92d
pool_cache_sethiwat(9), pool_cache_setlowat(9), pool_cache_sethardlimit(9)
2011-11-15 00:50:55 +00:00
jym
13558246e2
Document pool_cache_sethardlimit(9), the faithful friend of
...
pool_sethardlimit(9).
2011-11-15 00:32:34 +00:00
jym
1e8ad6eb02
pool_sethardlimit.9 => pool.9
2011-11-15 00:19:42 +00:00
jym
f83fbb4ade
Document pool_sethardlimit.
2011-11-14 02:38:05 +00:00
wiz
7405dbf494
Fix a few typos and Xrefs, use Dq, comment out Xr to non-existent gpioattach(4),
...
sort SEE ALSO.
2011-11-13 19:31:05 +00:00
mbalmer
f735fe77b9
Bring up to reality.
2011-11-13 17:00:04 +00:00