Aren
/
NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
212,502 Commits 606 Branches 0 Tags 3.1 GiB
Commit Graph

14161 Commits

Author SHA1 Message Date
tls 8e1a1c9f45 Address multiple problems with rnd(4)/cprng(9): 
1) Add a per-cpu CPRNG to handle short reads from /dev/urandom so that
   programs like perl don't drain the entropy pool dry by repeatedly
   opening, reading 4 bytes, closing.

2) Really fix the locking around reseeds and destroys.

3) Fix the opportunistic-reseed strategy so it actually works, reseeding
   existing RNGs once each (as they are used, so idle RNGs don't get
   reseeded) until the pool is half empty or newly full again.
 2012-04-17 02:50:38 +00:00
wiz 78f50b6e04 Bump date for previous. 2012-04-13 06:38:55 +00:00
rkujawa a0e4064467 Mention that FastATA 1200 Mk-IV CF/SATA edition is also supported. 2012-04-13 01:12:32 +00:00
yamt 4571decefa comment 2012-04-11 14:28:46 +00:00
yamt 86c517f33d don't bother to call lo_close. 
as we ever open a few LOs at most in a transaction, just let them be closed
automatically at the end of the transaction.
 2012-04-11 14:28:18 +00:00
yamt d72c60c595 setlabel: save SQL statements by caching the last label 2012-04-11 14:27:43 +00:00
yamt 5a2606adf5 remove FK references as it creates more problems than it solves. 
particularly, it involves shared lock on the referenced table
and causes frequent deadlock.
 2012-04-11 14:27:15 +00:00
yamt cb9c120507 abuse application_name to show the last puffs activity for the connection. 2012-04-11 14:26:44 +00:00
yamt e5acf2f836 reduce number of SQL statements for inactivate 2012-04-11 14:26:19 +00:00
yamt c47d2fd43a - enable writeback cache and namecache. 
- use setback hack to reduce number of puffs OPs.
 2012-04-11 14:25:54 +00:00
jruoho 0addcacfb8 Now that 6.0 is branched, remove the ACPI-related sysctl nodes in machdep. 2012-04-10 13:48:24 +00:00
jruoho 3d037fc373 Fix wrong acronym. 2012-04-10 12:51:31 +00:00
christos fbae18c4fe document NAME=label 2012-04-07 03:14:06 +00:00
wiz 2b389a012a Bump date for previous. 2012-04-05 09:15:56 +00:00
spz aca1a7df56 add a description for the new check_passwd_permit_dups variable 2012-04-05 09:10:21 +00:00
joerg b757af438b Disable new -Wstring-plus-int warning where needed for now. 
Adjust various places that add GCC-only options to check for the active
compiler first.
 2012-04-04 10:59:44 +00:00
joerg 3c1c42ed5f Make it easier to specify the list of checkers to enable for the static 
analyzer.
 2012-04-04 10:37:18 +00:00
plunky d1525add95 language improvement 2012-04-02 09:56:58 +00:00
wiz e255887aeb Replace references to resolver(5) with ones to resolv.conf(5). 
From patch by Bug Hunting.
 2012-03-29 18:37:21 +00:00
wiz fd09849b4f Fix Dd argument, add serial comma, capitalize NetBSD. 2012-03-25 08:45:02 +00:00
wiz a426452f1d Bump date for previous. 2012-03-25 08:42:21 +00:00
nonaka db4c04c984 Added urtwn(4), a driver for Realtek RTL8188CU/RTL8192CU USB IEEE 802.11b/g/n wireless network devices. 2012-03-25 00:11:16 +00:00
drochner 364a06bb29 remove KAME IPSEC, replaced by FAST_IPSEC 2012-03-22 20:34:37 +00:00
sborrill 33b7078a83 Add IBM ServeRAID M1015 and M5014 2012-03-22 15:43:37 +00:00
wiz 3957bea1ef Fix whitespace nits. Suggested by Bug Hunting. 2012-03-22 07:58:16 +00:00
jakllsch 2bd475c24d Remove remaining references to pccons options for i386 and shark. 
pccons has not existed on either port since late 2007.
 2012-03-21 15:38:32 +00:00
matt a969b57018 Add WARNS=5 to enable -Wold-style-definitions 2012-03-20 21:48:20 +00:00
christos 4254cd9bee allow file-specific lint flag additions 2012-03-17 18:02:41 +00:00
njoly 8dfc5e0c6d Small typo. 2012-03-17 14:42:13 +00:00
wiz a4e645569f Fix table, addresses PR 46214 by Nicolas Joly. 2012-03-17 14:29:18 +00:00
wiz 7e093e0425 njoly remarks that Lk doesn't make sense here, since it won't ever resolve 
correctly due to using ${RELEASE} in the URL. Revert previous.
 2012-03-17 12:25:11 +00:00
wiz 5fe27af8d6 Use %U. 2012-03-17 11:15:42 +00:00
wiz 5f1d89ea80 Use Lk. 2012-03-17 11:11:35 +00:00
wiz 835afd6ab2 Use Lk/%U. 2012-03-17 11:11:00 +00:00
joerg f03aabbcc7 Don't error out for non-literal format strings with Clang until the rest 
of the __printflike changes are in the tree.
 2012-03-15 15:04:23 +00:00
joerg 17cb70e7b4 Decouple HAVE_LLVM from HAVE_GCC. For GCC, add -Wno-format-zero-length 
when -Wformat is used.
 2012-03-15 02:00:52 +00:00
wiz 0ef1aebbc8 Fix URL. 2012-03-14 12:01:53 +00:00
wiz 948a1519b1 Bump date for previous. 
Spell "file system" like in other man pages.
Fix typos.
 2012-03-14 11:51:54 +00:00
wiz a9bca96bca Remove trailing whitespace. Fix typo. Sort. 2012-03-14 11:44:42 +00:00
njoly b6085c95bd Use Lk macro instead of Pa when dealing with URLs, to produce links 
with HTML output. And while here update or removed some dead URL
links. Another part of PR/29238.
 2012-03-13 19:25:39 +00:00
elad 0c9d8d15c9 Replace the remaining KAUTH_GENERIC_ISSUSER authorization calls with 
something meaningful. All relevant documentation has been updated or
written.

Most of these changes were brought up in the following messages:

    http://mail-index.netbsd.org/tech-kern/2012/01/18/msg012490.html
    http://mail-index.netbsd.org/tech-kern/2012/01/19/msg012502.html
    http://mail-index.netbsd.org/tech-kern/2012/02/17/msg012728.html

Thanks to christos, manu, njoly, and jmmv for input.

Huge thanks to pgoyette for spinning these changes through some build
cycles and ATF.
 2012-03-13 18:40:26 +00:00
ryoon 2c74446a32 * Sync with FreeBSD: src/share/misc/bsd-family-tree,v rev. 1.151 
Add DragonFly 3.0.1.
 2012-03-13 10:32:58 +00:00
njoly bed7cf5a54 Use Lk macro instead of Pa when dealing with URLs, to produce links 
with HTML output. And while here update some dead URL links.
First part of PR/29238.
 2012-03-11 23:42:06 +00:00
wiz 65ba3f7900 Use %U for URLs. 2012-03-08 22:52:22 +00:00
pgoyette 6199976b03 Add another missing zipcode - this is where I live! 2012-03-06 17:20:38 +00:00
mbalmer e1bc6531d4 Add a few. 2012-03-06 17:11:15 +00:00
mbalmer ac893d96b3 Add a missing zipcode. 2012-03-06 17:08:10 +00:00
mbalmer a249dde5ae Oxford serial comma, FFS. 2012-03-06 17:04:54 +00:00
wiz 2985f26716 Remove trailing whitespace. 2012-03-06 10:26:18 +00:00
plunky 498fdc5a56 document rebuild_mandb 2012-03-06 10:23:10 +00:00
plunky 002ad20e5a mention run_makemandb 2012-03-06 10:12:59 +00:00
wiz 7921bbc68f Bump date for previous. 2012-03-04 11:56:03 +00:00
nonaka edb4fc4829 fix incorrent example. 2012-03-03 15:14:03 +00:00
nonaka 0303786ef2 Mention AMD Fusion. 2012-03-02 19:31:07 +00:00
apb e9e794cd61 Import tzdata2012b from ftp://munnari.oz.au/pub/tzdata2012b.tar.gz. 
Changes since tzdata2012a:

    Most significantly, summer time in Cuba has been delayed 3 weeks
    (now starts April 1 rather than March 11).  Since Mar 11 (the old
    start date, as listed in 2012a) is just a little over a week away,
    this change is urgent.

    Less importantly, an excess tab in one of the changes in zone.tab
    in 2012a has been removed.
 2012-03-02 07:01:46 +00:00
apb 0773013243 Merge tzdata2012a from ftp://munnari.oz.au/pub/tzdata2012a.tar.gz. 
Major changes since tzdata2011n:
    Chile 2011/2012 and 2012/2013 summer time date adjustments.
    Falkland Islands onto permanent summer time (we're assuming for the
	    foreseeable future, though 2012 is all we're fairly certain of.)
    Armenia has abolished Summer Time.
    Tokelau jumped the International Date Line back last December
	    (just the same as their near neighbour, Samoa).
    America/Creston is a new zone for a small area of British Columbia
    There will be a leapsecond 2012-06-30 23:59:60 UTC.
 2012-03-01 21:19:03 +00:00
wiz 3d46a78f7d Fix typo. 2012-03-01 09:08:19 +00:00
rjs 3c8be2b0dd Add some info on RFC4638. 2012-02-29 22:53:47 +00:00
tron df92d05dec Move "libexpat" from X11 into base which fixes PR lib/40346. 
This change was approved by the Core Group.
 2012-02-29 20:07:51 +00:00
shattered a8bba461cd Document support for 5100AGN (in tree since 2009). 
OK by wiz@
 2012-02-25 11:00:25 +00:00
shattered 4e4e8d92ec Quoting sys/dev/vme/files.vme commit log: "vmegeneric never saw the 
light of the source tree.  After 7 years, I guess nobody missed it."

OK by wiz@
 2012-02-25 10:55:27 +00:00
mbalmer ae1a443653 GPIO pins are 0 based when accessed from Lua, not 1 based like Lua usually 
is.  The pulse() has been removed, use gpiopwm(4) for that.
 2012-02-25 09:13:38 +00:00
reinoud aab843f817 Fix comment in config.4 about UDF support. It was still stating UDF as a 
read-only fs wich it hasn't been for quite some time! It must have slipped
trough.
 2012-02-22 20:21:34 +00:00
njoly 26ecbbc0b8 Adjust cpu_switch(9) -> cpu_switchto(9) in xrefs. 2012-02-22 19:04:38 +00:00
matt f5d3f68d54 Remove another ${SIZE} 2012-02-21 01:41:09 +00:00
matt 0bf8cdb842 Remove ${SIZE} 2012-02-20 18:23:50 +00:00
matt 47c982a38d Add support for --combine with gcc. 2012-02-19 23:19:37 +00:00
mbalmer b2d484f7cb Fix typos (in comments). 2012-02-17 12:08:12 +00:00
plunky 555be44f20 document config_detach_children(9) 2012-02-17 09:44:12 +00:00
yamt b8736f67c5 sync with code 
(remove const quals)
 2012-02-17 08:22:47 +00:00
joerg 23782b5c2b Derive MANINSTALL from MKCATPAGES and MKHTML. 2012-02-17 00:00:02 +00:00
christos 110af54a7b use osrelease -k to avoid that the path is 6.0_BETA 2012-02-16 23:58:15 +00:00
yamt dbf67aa479 fix a description of PMAP_PREFER argument. 2012-02-16 12:10:10 +00:00
plunky 18e80c41ff add aubtfwl.4 to the build 2012-02-14 17:35:11 +00:00
plunky aa2a5e5e09 a manual page for aubtfwl(4), detailing where to find 
a firmware file and where to put it
 2012-02-14 17:34:21 +00:00
dholland 7da608ca9c Update dangling references to quotactl(2), mostly now libquota(3), and to 
quotactl(8), mostly now quotarestore(8). ok riz@
 2012-02-13 19:53:24 +00:00
njoly 3fc9fe7769 Small typo in macro (.xr -> .Xr). 2012-02-13 18:30:44 +00:00
wiz 7f2677a5a5 Bump date for previous. 2012-02-13 13:23:29 +00:00
njoly 5e9c51f65d Fix copyin/copyout sections in xrefs. 2012-02-13 13:01:39 +00:00
wiz f85441243b Add locking description to some functions. 
Add FILES section referencing source code.
From Julian Fagir in PR 45988.
 2012-02-13 12:49:35 +00:00
dholland 62cfdf3316 Quota-related docs fixes: 
- Remove old quotactl(2); replace with new __quotactl(2).
- Document quota_getrestrictions(3), the semantic restriction codes,
  and quota_quotaon/off(3).
- Update VFS_QUOTACTL(9), which was still describing the pre-proplib API.

Approved by releng for the freeze.
 2012-02-13 01:24:00 +00:00
sborrill 2e2406e56c Address kern/36526. Note, contrary to the PR, ; command separator works as 
documented in ddb(4)
Document ddb.commandonenter sysctl. Note, commandonenter is not available
as a variable:
db{0}> print $onpanic
       1
db{0}> print $commandonenter
Unknown variable
So document the sysctl elsewhere, not in the variables section.
 2012-02-12 12:43:51 +00:00
riz dd7b9d2970 Make English usage consistent with other manpages. From Snader_LB. 2012-02-10 23:47:49 +00:00
matt 47dd0a4489 Switch VAX to use GCC 4.5 and GDB 7. 
Change VAX to use DBG=-O2 like most other ports.
 2012-02-10 05:57:42 +00:00
riz af51433848 Various English usage, spelling and markup fixes for envstat(4)-related 
things, from Snader_LB.
 2012-02-09 18:10:26 +00:00
wiz 8292e96d35 Bump date for previous, per mbalmer. 2012-02-08 09:32:47 +00:00
wiz 9f4d0385b5 xref rwlock instead of deprecated lockmgr. 
From Julian Fagir in PR 45944.
 2012-02-08 08:25:05 +00:00
joerg 6c39547510 Sync with reality for MKCATPAGES and MKMANDOC. 2012-02-07 22:58:49 +00:00
joerg 849ff56477 Switch to using mandoc for formatting man pages as new default. 
Stop building catpages by default.
 2012-02-07 19:33:19 +00:00
joerg 410d0f4380 Import the new apropos/whatis. 
This code has been developed by Abhinav Upadhyay as part of Google's Summer
of Code 2011. It uses libmandoc to parse man pages and builds a Full
Text Index in a SQLite database. The combination of indexing the full
manual page, filtering out stop words and ranking individual matches
based on the section gives a much improved user experience.

The old makewhatis and friends are kept under MKMAKEMANDB=no for now.
 2012-02-07 19:13:24 +00:00
wiz 0ecc00962c Restore missing word, remove trailing whitespace. 2012-02-01 09:37:29 +00:00
hauke c4106ab9db Document added timecounter support to the CSI Hurdler Centronics 
Parallel Interface cpi(4) driver.
 2012-02-01 08:45:03 +00:00
wiz 71fcb57d88 Remove trailing whitespace. 
New sentence, new line.
Remove Pp before Sh.
Sort sections.
Use more markup.
Remove unnecessary macro arguments.
 2012-01-31 13:25:05 +00:00
nisimura 6e0f9f1c21 introduce evbarm bootmini2440(8) man entry. 2012-01-31 12:23:32 +00:00
drochner 75699fcff7 document pci_aprint_devinfo(9) (not the _fancy variant yet because 
it is still experimental)
 2012-01-30 19:20:13 +00:00
christos dfa5043919 rename to OBJCOPYLIBFLAGS 2012-01-28 23:13:24 +00:00
christos c37ad7ee66 Provide a way to override the default objcopy flags for library modules. 2012-01-28 21:32:13 +00:00
wiz b377f34442 Fix word duplication in previous. 2012-01-28 13:26:12 +00:00
rmind be9b34c425 Update ltsleep(9) man page. 2012-01-28 13:12:52 +00:00
hubertf 3e9c4933e3 Sync with FreeBSD: src/share/misc/bsd-family-tree,v rev. 1.150 
Submitted in PR 45880 by Rares Aioanei
 2012-01-27 14:34:30 +00:00
wiz 5b0d8eba79 Fix Dd argument. 2012-01-25 09:21:29 +00:00
macallan 6d2ab8c1b4 chipsfb works on shark, finally mention that in the man page 2012-01-25 04:18:31 +00:00
wiz 6df2583508 Remove a fixed bug and an inappropriate sentence. Bump date. 2012-01-23 00:03:08 +00:00
wiz 08884b1549 Improve wording. 2012-01-23 00:02:42 +00:00
wiz d88469710f New sentence, new line. Avoid unnecessary macros. 2012-01-22 16:41:42 +00:00
phx d6beebba11 New option "ide:". 
Describe how to use altboot with a crippled U-Boot/PPCBoot firmware.
 2012-01-22 15:37:23 +00:00
wiz 6ef95e5c76 Bump date for previous. 2012-01-22 14:15:43 +00:00
nonaka 8fdb017001 fix upgt(4) entry. 2012-01-22 12:54:26 +00:00
nonaka 860162017e Added upgt(4) at Wireless network interfaces. 2012-01-22 12:48:44 +00:00
wiz 1066381f28 Fix xrefs, remove trailing whitespace, use actual Dd date, 
add RCS Id.
 2012-01-22 11:26:48 +00:00
christos 6fb39d18da add a tpm driver from bsssd.sourceforge.net 2012-01-22 06:44:28 +00:00
rmind f1f4283156 Replace pcq(9) with the implementation from ad@ and minor changes by me. 
PR/40516, PR/45631.
 2012-01-22 02:55:47 +00:00
isaki e9bd047a2f Switch mine to 2-clause license. 2012-01-21 03:01:03 +00:00
isaki 43fa5f922b Clean up pow(4) (which I had removed in Nov 2011). 2012-01-21 02:52:50 +00:00
wiz 642a95b35f Sort SEE ALSO. 2012-01-19 09:25:51 +00:00
rkujawa 9c4fe41206 Update the p5pb(4) page to reflect the recent changes in this driver. 2012-01-19 00:30:31 +00:00
njoly 761f943535 Remove bad indent keyword. 2012-01-17 22:18:54 +00:00
njoly 1d7281ae96 For xkb_base, do not use ${libdir} (xkeyboard-config.pc does not define 
it) but its value ${prefix}/lib instead.
 2012-01-17 19:40:08 +00:00
wiz 202095a66e Dd wants full months. 
Use Rs/Re for reference (only title filled in for now, more would be nice).
 2012-01-17 17:27:32 +00:00
jakllsch 6fe6fbbce6 Update based on recent changes to uslsa(4). 2012-01-17 17:24:02 +00:00
cegger a02b2c29fa fix secmodel implementation of CPU_UCODE. 
ok wiz@ for the manpages
ok elad@
 2012-01-17 10:47:26 +00:00
wiz 185b329ee7 Bump date for previous. 2012-01-17 08:23:40 +00:00
wiz e80c7409db New sentence, new line. Bump date for previous. Sort SEE ALSO. 2012-01-17 08:20:58 +00:00
mbalmer 0d7eed0028 Remove trailing whitespace. Reported by Brad Harder. 2012-01-17 07:04:08 +00:00
christos fc5fe3c352 PR/45850: Pierre Pronchery: USB multi-touch panels are not supported 2012-01-17 03:49:19 +00:00
drochner 769741476b move kame_ipsec.4 almost completely into ipsec.4 because it is valid 
for fast_ipsec as well
 2012-01-16 16:27:59 +00:00
wiz 9ac11c40f8 Bump date for previous. 2012-01-15 20:27:58 +00:00
phx ab290269c1 Introduce nhpow(4) man page. 2012-01-15 14:40:15 +00:00
phx 255a91ac60 Extend the list of supported NAS products for satmgr(4). 
Describe the sysctl(8) variables for Iomega StorCenter.
 2012-01-15 14:35:56 +00:00
jmcneill ce4646dd28 PR# install/44593: Please give release ISO's more meaningful names 
Change release ISO filenames, what was once 'i386cd.iso' will now look
like 'NetBSD-5.99.60-i386.iso'.

ok snj@
 2012-01-14 22:56:30 +00:00
wiz 7af0bef7e5 Use more markup. Increase table width since longest string changed. 2012-01-13 23:12:32 +00:00
wiz c18fbdcf42 New sentence, new line. Use more markup. Bump date for previous. 2012-01-13 23:09:51 +00:00
macallan be47469bba document some rasops_info flags that have been added recently ( and not so 
recently )
 2012-01-13 16:50:28 +00:00
macallan 19ea84bf71 document recent changes 2012-01-13 16:06:20 +00:00
cegger a3f6c06746 Support CPU microcode loading via cpuctl(8). 
Implemented and enabled via CPU_UCODE kernel config option
for x86 and Xen Dom0.
Tested on different AMD machines with different
CPU families.

ok wiz@ for the manpages
ok releng@
ok core@ via releng@
 2012-01-13 16:05:14 +00:00
skrll cfee3311b5 Real mode is no longer used. 2012-01-12 23:08:50 +00:00
skrll 220a3b7997 Update hp700 key sequences section. 2012-01-12 22:22:10 +00:00
wiz 389cbee608 Remove trailing whitespace; wording. 2012-01-11 19:44:56 +00:00
rkujawa 38e14ec3fe Add man page for cv3dpb driver. 2012-01-11 17:25:19 +00:00
wiz a866ffaac9 Remove trailing whitespace. 
New sentence, new line.
Use more markup.
 2012-01-11 10:15:36 +00:00
rkujawa 89e0f2fce5 Update p5pb(4) and bppcsc(4) due to recent changes to Phase5 drivers. Add p5membar(4) page. 2012-01-10 20:41:45 +00:00
skrll 7780856071 Fix NetBSD version in history. 2012-01-09 22:08:12 +00:00
wiz 9bc46f7ca5 Fix another reference to point to kame_ipsec for setup instructions (for now). 2012-01-09 16:35:20 +00:00
drochner 9d939b40a9 fix confusing references, from wiz 2012-01-09 16:17:37 +00:00
skrll d2845d9eb6 Add a mkboot(8) man page. 2012-01-09 16:04:45 +00:00
drochner d107562abc Make FAST_IPSEC the default IPSEC implementation which is built 
into the kernel if the "IPSEC" kernel option is given.
The old implementation is still available as KAME_IPSEC.
Do some minimal manpage adjustment -- kame_ipsec(4) is a copy
of the old ipsec(4) and the latter is now a copy of fast_ipsec(4).
 2012-01-09 15:16:30 +00:00
dholland eb3306a822 Sentences should verbs. From Snader_LB 2012-01-08 04:01:12 +00:00
yamt 9753d46d1c install tprof related commands and man pages. 2012-01-04 16:25:13 +00:00
yamt db1f5cf7f2 add a missing comma. 2012-01-04 15:48:54 +00:00
wiz d6829e5b30 Bump date for previous. Move RCS Id to top of file. 2012-01-02 18:07:21 +00:00
wiz adca3c43ee New sentence, new line. Bump date for previous. 2012-01-02 18:02:00 +00:00
rkujawa 5ec5041c48 Correct the include path. 2012-01-02 15:41:51 +00:00
phx c3ed2ca16a Add the description for the "mem:<address>" bootname. 2012-01-01 14:48:40 +00:00
riz df7c01333c Fix typos and style glitches. Remove outdated info about only 
Ethernet, SLIP, and PPP being supported, and no network types with
variable-length headers (such as 802.11).
Document BIOCSRSIG and BIOCGRSIG.

From Guy Harris in PR#40703.
 2011-12-31 20:16:41 +00:00
alnsn 209a072285 Document that overflow in P[X+k:n] terminates a filter program. 
Based on a discussion with Christos on source-changes-d.
 2011-12-30 14:12:15 +00:00
wiz 59200cfca6 Remove duplicate RCS Id. New sentence, new line. 2011-12-27 21:47:04 +00:00
christos cd61872876 PR/45750: Alexander Nasonov: Type of k in bpf_insn is bpf(9) is different 
from sys/net/bpf.h
 2011-12-27 21:24:25 +00:00
rmind 32d19c916b Amend previous. 2011-12-23 20:53:31 +00:00
rmind 40947a78e4 Sync with reality a little. 2011-12-23 20:51:50 +00:00
wiz 707b092c0c New sentence, new line. Fix some markup. Bump date for previous. 2011-12-17 21:25:12 +00:00
wiz 1a45da71c8 Use more markup. Bump date for previous. 2011-12-17 21:24:40 +00:00
wiz 612e69e384 New sentence, new line. 
Bump date for previous.
 2011-12-17 21:21:59 +00:00
tls 6e1dd068e9 Separate /dev/random pseudodevice implemenation from kernel entropy pool 
implementation.  Rewrite pseudodevice code to use cprng_strong(9).

The new pseudodevice is cloning, so each caller gets bits from a stream
generated with its own key.  Users of /dev/urandom get their generators
keyed on a "best effort" basis -- the kernel will rekey generators
whenever the entropy pool hits the high water mark -- while users of
/dev/random get their generators rekeyed every time key-length bits
are output.

The underlying cprng_strong API can use AES-256 or AES-128, but we use
AES-128 because of concerns about related-key attacks on AES-256.  This
improves performance (and reduces entropy pool depletion) significantly
for users of /dev/urandom but does cause users of /dev/random to rekey
twice as often.

Also fixes various bugs (including some missing locking and a reseed-counter
overflow in the CTR_DRBG code) found while testing this.

For long reads, this generator is approximately 20 times as fast as the
old generator (dd with bs=64K yields 53MB/sec on 2Ghz Core2 instead of
2.5MB/sec) and also uses a separate mutex per instance so concurrency
is greatly improved.  For reads of typical key sizes for modern
cryptosystems (16-32 bytes) performance is about the same as the old
code: a little better for 32 bytes, a little worse for 16 bytes.
 2011-12-17 20:05:38 +00:00
njoly 79579731df Fix title. 2011-12-14 13:24:14 +00:00
njoly 2291fd1fba Kill extra El macro. 2011-12-09 10:58:51 +00:00
wiz a4d43dc119 Remove trailing whitespace and fix a typo. 2011-12-05 10:36:39 +00:00
jym 0d4c568bb2 KAUTH_GENERIC_CANSEE is no more. 2011-12-04 23:59:25 +00:00
jym 47c04e7b5a Update secmodel_examples to better describe the secmodel(9) API. 2011-12-04 23:55:36 +00:00
jym bdb161bba3 GETPARAMS => GETPARAM 
SETPARAMS => SETPARAM
 2011-12-04 21:52:37 +00:00
jym f3effc5ec2 Improvements in secmodel(9). Document secmodel_register(9), _deregister(9) 
and _eval(9).

Add secmodel_extensions(9), and indicate the new sysctl(7) to let
ordinary users control the CPU affinity (user_set_cpu_affinity).
 2011-12-04 21:08:37 +00:00
jym d96481c6de - add the bool type for IMMEDIATE flag. 
- minor tweak to the handler example: it leaks 't' (on stack)
  when passed to sysctl_lookup(9), as it copyout its content via
  sysctl_data. That would not be the case if CTLFLAG_IMMEDIATE flag
  was set for this node but the example does not preclude that.
 2011-12-04 18:34:20 +00:00
rkujawa 617d114527 Extend the mppb(4) man page. 2011-12-03 23:09:42 +00:00
wiz a0f75bc721 Wording improvements. 2011-12-02 14:38:51 +00:00
yamt 43a6649cf8 some man pages 2011-12-02 12:17:51 +00:00
njoly 8250293e5f Regen to catch up recent changes (x68k/pow and iscsi). 2011-12-02 08:50:18 +00:00
tls 7db676852a Add (links for) missing "cross-references" from cprng(9). Some of the 
functions replaced by cprng were never documented at all.
 2011-11-29 03:40:41 +00:00
wiz c9317429b9 Spelling. 2011-11-28 23:29:45 +00:00
wiz b85c6e9d1b Whitespace fixes; new sentence, new line; better macro usage. 
Sort SEE ALSO.
 2011-11-28 23:27:59 +00:00
tls 2a139c3401 Add cprng(9) manual page, remove arc4random(9) manual page 2011-11-28 20:19:25 +00:00
wiz 8ff9859919 New sentence, new line. Use more markup. Bump date for previous. 2011-11-28 09:38:45 +00:00
tls a031ce7187 Add support for passing saved entropy (random seed file) to the kernel 
from the bootloader.  This can fix the problem of poor quality keys
for other kernel modules which call arc4random() early in kernel startup
(NFS startup, in particular, causes this).

We continue to rely on the etc/rc.d/random_seed script to save entropy
to the seed file at shutdown and erase the seed file at startup.

Boot loader support implemented only for i386 and amd64 ports for now but
it should be easy for other ports to do the same or similar.
 2011-11-28 07:56:53 +00:00
skrll 052320efd5 Typo 2011-11-27 09:07:11 +00:00
isaki 9289c438ac Add powsw(4) for x68k power switch. It substitutes for a part about 
power switch handler of pow(4) deleted before.
Benefits than pow(4):
- separate a front switch (= powsw0) and an EXPWON line (= powsw1)
  completely. Only powsw0 is enabled in GENERIC by default.
- prevent chattering in some hardware individuals.
  thank you for a report and a test: Yasushi Oshima and Y.Sugahara.
 2011-11-27 09:00:32 +00:00
wiz 48d5e162f9 Various improvements. 2011-11-26 22:36:14 +00:00
minoura f602c9092c Add vioif(4) and viomb(4). 2011-11-26 15:04:45 +00:00
skrll 0df379aa98 Switch hppa to gdb 7. 2011-11-25 22:03:42 +00:00
jmcneill f3aef68ba3 update audio(9) docs for audiomp changes 2011-11-23 23:11:56 +00:00
apb 6c03a4739d Use :Q to deal with the case that CLEANFILES or CLEANDIRFILES 
contains quoted substrings (such as file names with spaces).
Problem reported by Joseph Koshy, who also provided the
important part of the fix.
 2011-11-22 18:25:48 +00:00
wiz ee97be87e2 New sentence, new line. 2011-11-21 15:11:45 +00:00
njoly c76e625f30 Switch from .nf/.fi groff macros to .Bd -literal/.Ed blocks. 
While here, convert .sp macro to .Pp.

ok wiz@.
 2011-11-21 14:27:41 +00:00
mbalmer d03cf6c291 One more. 2011-11-19 17:40:19 +00:00
mbalmer dbea318e33 Add a few. 2011-11-19 17:38:58 +00:00
isaki 2ccb98927e Obsolete pow(4) and rtcalarm(8). Discussed in port-x68k@. 
Probably the combination of pow(4) ioctl and rtcalarm(8) does
not work for a long time, and nobody uses them.
I'll rewrite a part about power switch handler as a new device.
 2011-11-19 12:27:42 +00:00
jdc 39bd26a295 Switch alpha to gdb 7. 2011-11-15 22:55:28 +00:00
jym 0cbbdfa92d pool_cache_sethiwat(9), pool_cache_setlowat(9), pool_cache_sethardlimit(9) 2011-11-15 00:50:55 +00:00
jym 13558246e2 Document pool_cache_sethardlimit(9), the faithful friend of 
pool_sethardlimit(9).
 2011-11-15 00:32:34 +00:00
jym 1e8ad6eb02 pool_sethardlimit.9 => pool.9 2011-11-15 00:19:42 +00:00
jym f83fbb4ade Document pool_sethardlimit. 2011-11-14 02:38:05 +00:00
wiz 7405dbf494 Fix a few typos and Xrefs, use Dq, comment out Xr to non-existent gpioattach(4), 
sort SEE ALSO.
 2011-11-13 19:31:05 +00:00
mbalmer f735fe77b9 Bring up to reality. 2011-11-13 17:00:04 +00:00