Differential D47706
safexel manuals: improve apropos and HW relnotes Authored by concussious.bugzilla_runbox.com on Nov 22 2024, 8:44 PM.
Details safe.4: safexcel.4: Sponsored by: Google
Diff Detail
Event TimelineComment Actions Turns out, actually if the column specification is the way Tested on MANWIDTH 59 and 80 Comment Actions + add crypto to safexcel document description for apropos Comment Actions The hardware section appears verbatim in the HW relnotes: Comment Actions I am interested in waiting for Mark's feedback upon the HARDWARE section. Better would be to list which devices are supported, if anyone knows anything. Also, as for his comment to s/security packet/cryptographic offload/, I think those are much more specific/appropriate search keywords, can we do that consistently? There's also hifn(4) https://man.freebsd.org/cgi/man.cgi?query=hifn&apropos=0&sektion=0&manpath=FreeBSD+14.1-RELEASE+and+Ports&arch=default&format=html and ccr(4) https://man.freebsd.org/cgi/man.cgi?query=ccr&apropos=0&sektion=0&manpath=FreeBSD+14.1-RELEASE+and+Ports&arch=default&format=html Adding jhb for that discussion.
Comment Actions safe(4) and hifi(4) are mostly obsolete and the kernel no longer supports many of these algorithms (DES, 3DES, MD-5) for IPsec or other crypto(9) consumers. In terms of manpage language, "crypto accelerator" seems to be the common pattern in .Nd descriptions and is what I used in ccr(4). I don't have any strong opinions, though "security packet engine" seems a bit more obtuse. The typical language I see is something like "crypto co-processor" or "crypto accelerator". Mark's suggestion of "offload engine" is also better than "packet engine". OpenSSL has in the past used the term "engine" for accelerators/co-processors though I think those are now supposed to be custom providers in modern OpenSSL jargon rather than engines. Comment Actions "Security packet engine" is the terminology from the datasheets I used to write the driver. The device has a lot of functionality to support offloading of IPSec, TLS, various wifi protocols, ...
Comment Actions While testing, I discovered the Nm's in SYNOPSIS were causing this page to get pulled into results for apropos sysctl. I rewrote it the way it's written in vt(4). I do not know if it is accurate though that the sysctls can be either loader.conf or sysctl.conf. add Sponsored trailer because I'm doing this at work. Wrap some text back the way it was. Comment Actions If you mail me git format-patch output or submit it on github, I'll apply it. Looking at the definitions in safe.c, they can only be set in sysctl.conf, so this part should be corrected.
| ||||||||||||||||