CVS log for src/share/man/man9/cprng.9
![[BACK]](/icons/back.gif)
Up to [cvs.NetBSD.org] / src / share / man / man9
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
Revision 1.16: download - view: text, markup, annotated - select for diffs
Tue May 17 15:00:05 2022 UTC (2 years, 11 months ago) by riastradh
Branches: MAIN
CVS tags: perseant-exfatfs-base-20240630,
perseant-exfatfs-base,
perseant-exfatfs,
netbsd-10-base,
netbsd-10-1-RELEASE,
netbsd-10-0-RELEASE,
netbsd-10-0-RC6,
netbsd-10-0-RC5,
netbsd-10-0-RC4,
netbsd-10-0-RC3,
netbsd-10-0-RC2,
netbsd-10-0-RC1,
netbsd-10,
HEAD
Diff to: previous 1.15: preferred, colored
Changes since revision 1.15: +2 -2
lines
cprng(9): Note ipl must be at most IPL_SOFTSERIAL now.
Revision 1.15: download - view: text, markup, annotated - select for diffs
Wed Mar 16 23:56:33 2022 UTC (3 years, 1 month ago) by riastradh
Branches: MAIN
Diff to: previous 1.14: preferred, colored
Changes since revision 1.14: +4 -6
lines
cprng(9): Forbid use in hard interrupt context.
May need access to the global entropy pool (infrequently). This way
the global entropy pool lock can be lowered to IPL_SOFTSERIAL too,
with a little additional work.
Revision 1.14: download - view: text, markup, annotated - select for diffs
Mon Aug 17 06:07:53 2020 UTC (4 years, 8 months ago) by wiz
Branches: MAIN
CVS tags: cjep_sun2x-base1,
cjep_sun2x-base,
cjep_sun2x,
cjep_staticlib_x-base1,
cjep_staticlib_x-base,
cjep_staticlib_x
Diff to: previous 1.13: preferred, colored
Changes since revision 1.13: +2 -2
lines
cprng(9): Remove trailing comma.
Revision 1.13: download - view: text, markup, annotated - select for diffs
Mon Aug 17 00:55:05 2020 UTC (4 years, 8 months ago) by riastradh
Branches: MAIN
Diff to: previous 1.12: preferred, colored
Changes since revision 1.12: +3 -64
lines
Update cprng_strong API documentation.
Should maybe just get rid of the flags arguments.
Revision 1.12: download - view: text, markup, annotated - select for diffs
Mon Aug 17 00:49:53 2020 UTC (4 years, 8 months ago) by riastradh
Branches: MAIN
Diff to: previous 1.11: preferred, colored
Changes since revision 1.11: +7 -7
lines
Update cprng(9) man page for CTR_DRBG -> Hash_DRBG change last year.
Revision 1.10.16.1: download - view: text, markup, annotated - select for diffs
Wed Apr 8 14:07:22 2020 UTC (5 years ago) by martin
Branches: phil-wifi
Diff to: previous 1.10: preferred, colored; next MAIN 1.11: preferred, colored
Changes since revision 1.10: +3 -3
lines
Merge changes from current as of 20200406
Revision 1.10.18.1: download - view: text, markup, annotated - select for diffs
Mon Mar 30 18:31:03 2020 UTC (5 years ago) by martin
Branches: netbsd-9
CVS tags: netbsd-9-4-RELEASE,
netbsd-9-3-RELEASE,
netbsd-9-2-RELEASE,
netbsd-9-1-RELEASE
Diff to: previous 1.10: preferred, colored; next MAIN 1.11: preferred, colored
Changes since revision 1.10: +3 -3
lines
Pull up following revision(s) (requested by skrll in ticket #805):
share/man/man9/cprng.9: revision 1.11
Fix cprng_fast64 return type to match code
Revision 1.11: download - view: text, markup, annotated - select for diffs
Tue Mar 24 08:48:31 2020 UTC (5 years, 1 month ago) by skrll
Branches: MAIN
CVS tags: phil-wifi-20200421,
phil-wifi-20200411,
phil-wifi-20200406
Diff to: previous 1.10: preferred, colored
Changes since revision 1.10: +3 -3
lines
Fix cprng_fast64 return type to match code
Revision 1.9.4.1: download - view: text, markup, annotated - select for diffs
Wed Mar 18 08:03:27 2015 UTC (10 years, 1 month ago) by snj
Branches: netbsd-7
CVS tags: netbsd-7-nhusb-base-20170116,
netbsd-7-nhusb-base,
netbsd-7-nhusb,
netbsd-7-2-RELEASE,
netbsd-7-1-RELEASE,
netbsd-7-1-RC2,
netbsd-7-1-RC1,
netbsd-7-1-2-RELEASE,
netbsd-7-1-1-RELEASE,
netbsd-7-1,
netbsd-7-0-RELEASE,
netbsd-7-0-RC3,
netbsd-7-0-RC2,
netbsd-7-0-RC1,
netbsd-7-0-2-RELEASE,
netbsd-7-0-1-RELEASE,
netbsd-7-0
Diff to: previous 1.9: preferred, colored; next MAIN 1.10: preferred, colored
Changes since revision 1.9: +87 -47
lines
Pull up following revision(s) (requested by riastradh in ticket #605):
share/man/man9/cprng.9: revision 1.10
Clarify advice about when to use what parts of cprng(9).
Add security model to specify the difference between cprng_strong and
cprng_fast.
Fix code references. cprng_fast now uses ChaCha8, not RC4.
XXX Would have been nice if they had been called cprng and cprng_weak
to reduce confusion about which one to use, or even random and
weakrandom. Too late for that now, though.
Revision 1.10: download - view: text, markup, annotated - select for diffs
Thu Feb 19 15:38:30 2015 UTC (10 years, 2 months ago) by riastradh
Branches: MAIN
CVS tags: prg-localcount2-base3,
prg-localcount2-base2,
prg-localcount2-base1,
prg-localcount2-base,
prg-localcount2,
phil-wifi-base,
phil-wifi-20191119,
phil-wifi-20190609,
pgoyette-localcount-base,
pgoyette-localcount-20170426,
pgoyette-localcount-20170320,
pgoyette-localcount-20170107,
pgoyette-localcount-20161104,
pgoyette-localcount-20160806,
pgoyette-localcount-20160726,
pgoyette-localcount,
pgoyette-compat-merge-20190127,
pgoyette-compat-base,
pgoyette-compat-20190127,
pgoyette-compat-20190118,
pgoyette-compat-1226,
pgoyette-compat-1126,
pgoyette-compat-1020,
pgoyette-compat-0930,
pgoyette-compat-0906,
pgoyette-compat-0728,
pgoyette-compat-0625,
pgoyette-compat-0521,
pgoyette-compat-0502,
pgoyette-compat-0422,
pgoyette-compat-0415,
pgoyette-compat-0407,
pgoyette-compat-0330,
pgoyette-compat-0322,
pgoyette-compat-0315,
pgoyette-compat,
perseant-stdc-iso10646-base,
perseant-stdc-iso10646,
netbsd-9-base,
netbsd-9-0-RELEASE,
netbsd-9-0-RC2,
netbsd-9-0-RC1,
netbsd-8-base,
netbsd-8-3-RELEASE,
netbsd-8-2-RELEASE,
netbsd-8-1-RELEASE,
netbsd-8-1-RC1,
netbsd-8-0-RELEASE,
netbsd-8-0-RC2,
netbsd-8-0-RC1,
netbsd-8,
matt-nb8-mediatek-base,
matt-nb8-mediatek,
localcount-20160914,
is-mlppp-base,
is-mlppp,
bouyer-socketcan-base1,
bouyer-socketcan-base,
bouyer-socketcan
Branch point for: phil-wifi,
netbsd-9
Diff to: previous 1.9: preferred, colored
Changes since revision 1.9: +87 -47
lines
Clarify advice about when to use what parts of cprng(9).
Add security model to specify the difference between cprng_strong and
cprng_fast.
Fix code references. cprng_fast now uses ChaCha8, not RC4.
XXX Would have been nice if they had been called cprng and cprng_weak
to reduce confusion about which one to use, or even random and
weakrandom. Too late for that now, though.
Revision 1.6.2.1: download - view: text, markup, annotated - select for diffs
Wed Aug 20 00:02:37 2014 UTC (10 years, 8 months ago) by tls
Branches: tls-maxphys
Diff to: previous 1.6: preferred, colored; next MAIN 1.7: preferred, colored
Changes since revision 1.6: +135 -115
lines
Rebase to HEAD as of a few days ago.
Revision 1.5.4.4: download - view: text, markup, annotated - select for diffs
Thu May 22 11:37:52 2014 UTC (10 years, 11 months ago) by yamt
Branches: yamt-pagecache
Diff to: previous 1.5.4.3: preferred, colored; branchpoint 1.5: preferred, colored; next MAIN 1.6: preferred, colored
Changes since revision 1.5.4.3: +135 -115
lines
sync with head.
for a reference, the tree before this commit was tagged
as yamt-pagecache-tag8.
this commit was splitted into small chunks to avoid
a limitation of cvs. ("Protocol error: too many arguments")
Revision 1.9: download - view: text, markup, annotated - select for diffs
Tue Mar 18 18:20:40 2014 UTC (11 years, 1 month ago) by riastradh
Branches: MAIN
CVS tags: yamt-pagecache-base9,
tls-maxphys-base,
tls-earlyentropy-base,
tls-earlyentropy,
riastradh-xf86-video-intel-2-7-1-pre-2-21-15,
netbsd-7-base
Branch point for: netbsd-7
Diff to: previous 1.8: preferred, colored
Changes since revision 1.8: +1 -1
lines
Merge riastradh-drm2 to HEAD.
Revision 1.7.2.1: download - view: text, markup, annotated - select for diffs
Tue Jul 23 21:07:33 2013 UTC (11 years, 9 months ago) by riastradh
Branches: riastradh-drm2
Diff to: previous 1.7: preferred, colored; next MAIN 1.8: preferred, colored
Changes since revision 1.7: +135 -114
lines
sync with HEAD
Revision 1.8: download - view: text, markup, annotated - select for diffs
Thu Jul 18 14:35:30 2013 UTC (11 years, 9 months ago) by riastradh
Branches: MAIN
CVS tags: riastradh-drm2-base3,
riastradh-drm2-base2,
riastradh-drm2-base1
Diff to: previous 1.7: preferred, colored
Changes since revision 1.7: +135 -114
lines
Rework cprng(9) man page to reflect the current state of affairs.
- Remove defunct cprng_strong_getflags/setflags.
- Remove defunct cprng_strong_ready.
- Document CPRNG_HARD.
- Omit cprng_strong structure, which is now opaque.
- Specify what can sleep and under what conditions.
- Be a little more consistent about some markup.
This is not the whole story (select/kqueue stuff for /dev/random is
still omitted), and I plan to change it some more (to split
cprng_strong into one routine that unconditionally guarantees as many
bytes as you asked, and another routine that may block or return
partial reads), but this will do until I find the time for those.
Revision 1.7: download - view: text, markup, annotated - select for diffs
Sun Jun 23 02:39:32 2013 UTC (11 years, 10 months ago) by riastradh
Branches: MAIN
CVS tags: riastradh-drm2-base
Branch point for: riastradh-drm2
Diff to: previous 1.6: preferred, colored
Changes since revision 1.6: +1 -2
lines
Fix dangling sentence vestige in cprng(9).
Revision 1.5.4.3: download - view: text, markup, annotated - select for diffs
Tue Oct 30 18:59:43 2012 UTC (12 years, 5 months ago) by yamt
Branches: yamt-pagecache
CVS tags: yamt-pagecache-tag8
Diff to: previous 1.5.4.2: preferred, colored; branchpoint 1.5: preferred, colored
Changes since revision 1.5.4.2: +10 -10
lines
sync with head
Revision 1.6: download - view: text, markup, annotated - select for diffs
Thu Aug 23 11:59:02 2012 UTC (12 years, 8 months ago) by drochner
Branches: MAIN
CVS tags: yamt-pagecache-base8,
yamt-pagecache-base7,
yamt-pagecache-base6,
agc-symver-base,
agc-symver
Branch point for: tls-maxphys
Diff to: previous 1.5: preferred, colored
Changes since revision 1.5: +10 -10
lines
fix some signatures
Revision 1.5.4.2: download - view: text, markup, annotated - select for diffs
Tue Apr 17 00:05:49 2012 UTC (13 years ago) by yamt
Branches: yamt-pagecache
Diff to: previous 1.5.4.1: preferred, colored; branchpoint 1.5: preferred, colored
Changes since revision 1.5.4.1: +267 -0
lines
sync with head
Revision 1.5.4.1
Sat Dec 17 21:24:40 2011 UTC (13 years, 4 months ago) by yamt
Branches: yamt-pagecache
FILE REMOVED
Changes since revision 1.5: +0 -267
lines
file cprng.9 was added on branch yamt-pagecache on 2012-04-17 00:05:49 +0000
Revision 1.5: download - view: text, markup, annotated - select for diffs
Sat Dec 17 21:24:40 2011 UTC (13 years, 4 months ago) by wiz
Branches: MAIN
CVS tags: yamt-pagecache-base5,
yamt-pagecache-base4,
netbsd-6-base,
netbsd-6-1-RELEASE,
netbsd-6-1-RC4,
netbsd-6-1-RC3,
netbsd-6-1-RC2,
netbsd-6-1-RC1,
netbsd-6-1-5-RELEASE,
netbsd-6-1-4-RELEASE,
netbsd-6-1-3-RELEASE,
netbsd-6-1-2-RELEASE,
netbsd-6-1-1-RELEASE,
netbsd-6-1,
netbsd-6-0-RELEASE,
netbsd-6-0-RC2,
netbsd-6-0-RC1,
netbsd-6-0-6-RELEASE,
netbsd-6-0-5-RELEASE,
netbsd-6-0-4-RELEASE,
netbsd-6-0-3-RELEASE,
netbsd-6-0-2-RELEASE,
netbsd-6-0-1-RELEASE,
netbsd-6-0,
netbsd-6,
matt-nb6-plus-nbase,
matt-nb6-plus-base,
matt-nb6-plus
Branch point for: yamt-pagecache
Diff to: previous 1.4: preferred, colored
Changes since revision 1.4: +5 -4
lines
Use more markup. Bump date for previous.
Revision 1.4: download - view: text, markup, annotated - select for diffs
Sat Dec 17 20:05:38 2011 UTC (13 years, 4 months ago) by tls
Branches: MAIN
Diff to: previous 1.3: preferred, colored
Changes since revision 1.3: +20 -12
lines
Separate /dev/random pseudodevice implemenation from kernel entropy pool
implementation. Rewrite pseudodevice code to use cprng_strong(9).
The new pseudodevice is cloning, so each caller gets bits from a stream
generated with its own key. Users of /dev/urandom get their generators
keyed on a "best effort" basis -- the kernel will rekey generators
whenever the entropy pool hits the high water mark -- while users of
/dev/random get their generators rekeyed every time key-length bits
are output.
The underlying cprng_strong API can use AES-256 or AES-128, but we use
AES-128 because of concerns about related-key attacks on AES-256. This
improves performance (and reduces entropy pool depletion) significantly
for users of /dev/urandom but does cause users of /dev/random to rekey
twice as often.
Also fixes various bugs (including some missing locking and a reseed-counter
overflow in the CTR_DRBG code) found while testing this.
For long reads, this generator is approximately 20 times as fast as the
old generator (dd with bs=64K yields 53MB/sec on 2Ghz Core2 instead of
2.5MB/sec) and also uses a separate mutex per instance so concurrency
is greatly improved. For reads of typical key sizes for modern
cryptosystems (16-32 bytes) performance is about the same as the old
code: a little better for 32 bytes, a little worse for 16 bytes.
Revision 1.3: download - view: text, markup, annotated - select for diffs
Mon Nov 28 23:29:45 2011 UTC (13 years, 5 months ago) by wiz
Branches: MAIN
Diff to: previous 1.2: preferred, colored
Changes since revision 1.2: +4 -4
lines
Spelling.
Revision 1.2: download - view: text, markup, annotated - select for diffs
Mon Nov 28 23:27:59 2011 UTC (13 years, 5 months ago) by wiz
Branches: MAIN
Diff to: previous 1.1: preferred, colored
Changes since revision 1.1: +26 -19
lines
Whitespace fixes; new sentence, new line; better macro usage.
Sort SEE ALSO.
Revision 1.1: download - view: text, markup, annotated - select for diffs
Mon Nov 28 20:19:28 2011 UTC (13 years, 5 months ago) by tls
Branches: MAIN
Add cprng(9) manual page, remove arc4random(9) manual page
CVSweb <webmaster@jp.NetBSD.org>