NAME
ubsec —
Broadcom and BlueSteel uBsec
5x0x crypto accelerator
SYNOPSIS
ubsec* at pci? dev ? function ?
DESCRIPTION
The
ubsec driver supports cards containing any of the
following chips:
-
-
- Bluesteel 5501
- The original chipset, no longer made. This extremely rare
unit was not very fast, lacked an RNG, and had a number of other
bugs.
-
-
- Broadcom BCM5801
- A BCM5805 without public key engine or random number
generator.
-
-
- Broadcom BCM5802
- A slower version of the BCM5805.
-
-
- Broadcom BCM5805
- Faster version of Bluesteel 5601.
-
-
- Broadcom BCM5820
- 64 bit version of the chip, and significantly more
advanced.
-
-
- Broadcom BCM5821
- Faster version of the BCM5820. This is the chip found on
the Sun Crypto Accelerator 1000.
-
-
- Broadcom BCM5822
- Faster version of the BCM5820.
-
-
- Broadcom BCM5823
- Faster version of the BCM5822 that also supports AES.
-
-
- Broadcom BCM5825
- Faster PCI Express or PCI-X version of the chip.
-
-
- Broadcom BCM5860
- IPSec/SSL Security Processor that is faster and has more
features.
-
-
- Broadcom BCM5861
- Faster version of the BCM5860.
-
-
- Broadcom BCM5862
- Faster version of the BCM5861.
The
ubsec driver registers itself to accelerate DES,
Triple-DES, MD5, SHA1, MD5-HMAC, and SHA1-HMAC operations for
opencrypto(9), and thus for
fast_ipsec(4) and
crypto(4). The driver also
supports acceleration of AES-CBC with the BCM5823 or newer.
On those models which contain a public key engine (almost all of the more recent
ones), this feature is registered with the
crypto(4) subsystem.
On all models except the Bluesteel 5501 and Broadcom 5801, the driver registers
itself to provide random data to the
rnd(4) subsystem.
SEE ALSO
crypto(4),
fast_ipsec(4),
intro(4),
rnd(4),
opencrypto(9)
HISTORY
The
ubsec device driver appeared in
OpenBSD
2.8. The
ubsec device driver was imported to
FreeBSD 5.0, back-ported to
FreeBSD
4.8, and subsequently imported to
NetBSD 2.0.
BUGS
The BCM5801 and BCM5802 have not actually been tested.