From 526c6f67f7dcb7d301503ad670bcedfe7596124c Mon Sep 17 00:00:00 2001
From: Adina Shanholtz <ashanhol@gmail.com>
Date: Tue, 15 Aug 2017 16:16:14 -0400
Subject: [PATCH 1/4] Updated crypto docs to include options argument

Fixes: https://github.com/nodejs/node/issues/14804
---
 doc/api/crypto.md | 40 ++++++++++++++++++++++++----------------
 1 file changed, 24 insertions(+), 16 deletions(-)

diff --git a/doc/api/crypto.md b/doc/api/crypto.md
index 07245e8cdc1075..a665d8f6007b59 100644
--- a/doc/api/crypto.md
+++ b/doc/api/crypto.md
@@ -1170,15 +1170,16 @@ added: v6.0.0
 Property for checking and controlling whether a FIPS compliant crypto provider is
 currently in use. Setting to true requires a FIPS build of Node.js.
 
-### crypto.createCipher(algorithm, password)
+### crypto.createCipher(algorithm, password, options)
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
+- `options` {string}
 
 Creates and returns a `Cipher` object that uses the given `algorithm` and
-`password`.
+`password`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1200,13 +1201,14 @@ In line with OpenSSL's recommendation to use pbkdf2 instead of
 their own using [`crypto.pbkdf2()`][] and to use [`crypto.createCipheriv()`][]
 to create the `Cipher` object.
 
-### crypto.createCipheriv(algorithm, key, iv)
+### crypto.createCipheriv(algorithm, key, iv, options)
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
+- `options` {string}
 
 Creates and returns a `Cipher` object, with the given `algorithm`, `key` and
-initialization vector (`iv`).
+initialization vector (`iv`). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1234,15 +1236,16 @@ value.
 Returns a `tls.SecureContext`, as-if [`tls.createSecureContext()`][] had been
 called.
 
-### crypto.createDecipher(algorithm, password)
+### crypto.createDecipher(algorithm, password, options)
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
+- `options` {string}
 
 Creates and returns a `Decipher` object that uses the given `algorithm` and
-`password` (key).
+`password` (key). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The implementation of `crypto.createDecipher()` derives keys using the OpenSSL
 function [`EVP_BytesToKey`][] with the digest algorithm set to MD5, one
@@ -1256,16 +1259,17 @@ In line with OpenSSL's recommendation to use pbkdf2 instead of
 their own using [`crypto.pbkdf2()`][] and to use [`crypto.createDecipheriv()`][]
 to create the `Decipher` object.
 
-### crypto.createDecipheriv(algorithm, key, iv)
+### crypto.createDecipheriv(algorithm, key, iv, options)
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
+- `options` {string}
 
 Creates and returns a `Decipher` object that uses the given `algorithm`, `key`
-and initialization vector (`iv`).
+and initialization vector (`iv`). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1333,14 +1337,15 @@ predefined curve specified by the `curveName` string. Use
 OpenSSL releases, `openssl ecparam -list_curves` will also display the name
 and description of each available elliptic curve.
 
-### crypto.createHash(algorithm)
+### crypto.createHash(algorithm, options)
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
+- `options` {string}
 
 Creates and returns a `Hash` object that can be used to generate hash digests
-using the given `algorithm`.
+using the given `algorithm`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The `algorithm` is dependent on the available algorithms supported by the
 version of OpenSSL on the platform. Examples are `'sha256'`, `'sha512'`, etc.
@@ -1367,14 +1372,15 @@ input.on('readable', () => {
 });
 ```
 
-### crypto.createHmac(algorithm, key)
+### crypto.createHmac(algorithm, key, options)
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
+- `options` {string}
 
-Creates and returns an `Hmac` object that uses the given `algorithm` and `key`.
+Creates and returns an `Hmac` object that uses the given `algorithm` and `key`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 The `algorithm` is dependent on the available algorithms supported by the
 version of OpenSSL on the platform. Examples are `'sha256'`, `'sha512'`, etc.
@@ -1403,25 +1409,27 @@ input.on('readable', () => {
 });
 ```
 
-### crypto.createSign(algorithm)
+### crypto.createSign(algorithm, options)
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
+- `options` {string}
 
 Creates and returns a `Sign` object that uses the given `algorithm`.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms.
+signing algorithms. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
-### crypto.createVerify(algorithm)
+### crypto.createVerify(algorithm, options)
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
+- `options` {string}
 
 Creates and returns a `Verify` object that uses the given algorithm.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms.
+signing algorithms. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
 
 ### crypto.getCiphers()
 <!-- YAML

From a2806b4b871df46456a9ddf60d7f6b7701eaa000 Mon Sep 17 00:00:00 2001
From: Adina Shanholtz <ashanhol@gmail.com>
Date: Tue, 15 Aug 2017 20:18:05 -0400
Subject: [PATCH 2/4] Fixed formatting errors and corrected types

---
 doc/api/crypto.md | 53 ++++++++++++++++++++++++++---------------------
 1 file changed, 29 insertions(+), 24 deletions(-)

diff --git a/doc/api/crypto.md b/doc/api/crypto.md
index a665d8f6007b59..272e2b826d86d6 100644
--- a/doc/api/crypto.md
+++ b/doc/api/crypto.md
@@ -1170,16 +1170,16 @@ added: v6.0.0
 Property for checking and controlling whether a FIPS compliant crypto provider is
 currently in use. Setting to true requires a FIPS build of Node.js.
 
-### crypto.createCipher(algorithm, password, options)
+### crypto.createCipher(algorithm, password[, options])
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Cipher` object that uses the given `algorithm` and
-`password`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+`password`. Optional `options` argument controls stream behavior.
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1201,14 +1201,14 @@ In line with OpenSSL's recommendation to use pbkdf2 instead of
 their own using [`crypto.pbkdf2()`][] and to use [`crypto.createCipheriv()`][]
 to create the `Cipher` object.
 
-### crypto.createCipheriv(algorithm, key, iv, options)
+### crypto.createCipheriv(algorithm, key, iv[, options])
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Cipher` object, with the given `algorithm`, `key` and
-initialization vector (`iv`). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+initialization vector (`iv`). Optional `options` argument controls stream behavior.
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1236,16 +1236,16 @@ value.
 Returns a `tls.SecureContext`, as-if [`tls.createSecureContext()`][] had been
 called.
 
-### crypto.createDecipher(algorithm, password, options)
+### crypto.createDecipher(algorithm, password[, options])
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Decipher` object that uses the given `algorithm` and
-`password` (key). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+`password` (key). Optional `options` argument controls stream behavior.
 
 The implementation of `crypto.createDecipher()` derives keys using the OpenSSL
 function [`EVP_BytesToKey`][] with the digest algorithm set to MD5, one
@@ -1259,17 +1259,18 @@ In line with OpenSSL's recommendation to use pbkdf2 instead of
 their own using [`crypto.pbkdf2()`][] and to use [`crypto.createDecipheriv()`][]
 to create the `Decipher` object.
 
-### crypto.createDecipheriv(algorithm, key, iv, options)
+### crypto.createDecipheriv(algorithm, key, iv[, options])
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Decipher` object that uses the given `algorithm`, `key`
-and initialization vector (`iv`). Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+and initialization vector (`iv`). Optional `options` argument controls stream 
+behavior.
 
 The `algorithm` is dependent on OpenSSL, examples are `'aes192'`, etc. On
 recent OpenSSL releases, `openssl list-cipher-algorithms` will display the
@@ -1337,15 +1338,16 @@ predefined curve specified by the `curveName` string. Use
 OpenSSL releases, `openssl ecparam -list_curves` will also display the name
 and description of each available elliptic curve.
 
-### crypto.createHash(algorithm, options)
+### crypto.createHash(algorithm[, options])
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Hash` object that can be used to generate hash digests
-using the given `algorithm`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+using the given `algorithm`. Optional `options` argument controls stream 
+behavior.
 
 The `algorithm` is dependent on the available algorithms supported by the
 version of OpenSSL on the platform. Examples are `'sha256'`, `'sha512'`, etc.
@@ -1372,15 +1374,16 @@ input.on('readable', () => {
 });
 ```
 
-### crypto.createHmac(algorithm, key, options)
+### crypto.createHmac(algorithm, key[, options])
 <!-- YAML
 added: v0.1.94
 -->
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
-Creates and returns an `Hmac` object that uses the given `algorithm` and `key`. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+Creates and returns an `Hmac` object that uses the given `algorithm` and `key`.
+Optional `options` argument controls stream behavior.
 
 The `algorithm` is dependent on the available algorithms supported by the
 version of OpenSSL on the platform. Examples are `'sha256'`, `'sha512'`, etc.
@@ -1409,27 +1412,27 @@ input.on('readable', () => {
 });
 ```
 
-### crypto.createSign(algorithm, options)
+### crypto.createSign(algorithm[, options])
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Sign` object that uses the given `algorithm`.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+signing algorithms. Optional `options` argument controls stream behavior.
 
-### crypto.createVerify(algorithm, options)
+### crypto.createVerify(algorithm[, options])
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {string}
+- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
 
 Creates and returns a `Verify` object that uses the given algorithm.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms. Optional `options` argument controls stream behavior via [OpenSSL Options](#openssl-options).
+signing algorithms. Optional `options` argument controls stream behavior.
 
 ### crypto.getCiphers()
 <!-- YAML
@@ -2255,3 +2258,5 @@ the `crypto`, `tls`, and `https` modules and are generally specific to OpenSSL.
 [initialization vector]: https://en.wikipedia.org/wiki/Initialization_vector
 [stream-writable-write]: stream.html#stream_writable_write_chunk_encoding_callback
 [stream]: stream.html
+[OpenSSL options]: #openssl-options
+[`stream.transform` options]: stream.html#stream_new_stream_transform_options

From 384386682482f4f9132552f7b721c5c6a12d004b Mon Sep 17 00:00:00 2001
From: Adina Shanholtz <ashanhol@gmail.com>
Date: Wed, 16 Aug 2017 12:56:24 -0400
Subject: [PATCH 3/4] Made changes as requested in PR

---
 doc/api/crypto.md | 43 +++++++++++++++++++++++--------------------
 1 file changed, 23 insertions(+), 20 deletions(-)

diff --git a/doc/api/crypto.md b/doc/api/crypto.md
index 272e2b826d86d6..729f3705f7009c 100644
--- a/doc/api/crypto.md
+++ b/doc/api/crypto.md
@@ -1176,7 +1176,7 @@ added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns a `Cipher` object that uses the given `algorithm` and
 `password`. Optional `options` argument controls stream behavior.
@@ -1205,7 +1205,7 @@ to create the `Cipher` object.
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns a `Cipher` object, with the given `algorithm`, `key` and
 initialization vector (`iv`). Optional `options` argument controls stream behavior.
@@ -1242,7 +1242,7 @@ added: v0.1.94
 -->
 - `algorithm` {string}
 - `password` {string | Buffer | TypedArray | DataView}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns a `Decipher` object that uses the given `algorithm` and
 `password` (key). Optional `options` argument controls stream behavior.
@@ -1266,7 +1266,7 @@ added: v0.1.94
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
 - `iv` {string | Buffer | TypedArray | DataView}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns a `Decipher` object that uses the given `algorithm`, `key`
 and initialization vector (`iv`). Optional `options` argument controls stream 
@@ -1343,7 +1343,7 @@ and description of each available elliptic curve.
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns a `Hash` object that can be used to generate hash digests
 using the given `algorithm`. Optional `options` argument controls stream 
@@ -1380,7 +1380,7 @@ added: v0.1.94
 -->
 - `algorithm` {string}
 - `key` {string | Buffer | TypedArray | DataView}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.transform` options][]
 
 Creates and returns an `Hmac` object that uses the given `algorithm` and `key`.
 Optional `options` argument controls stream behavior.
@@ -1417,22 +1417,24 @@ input.on('readable', () => {
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.Writable` options][]
 
 Creates and returns a `Sign` object that uses the given `algorithm`.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms. Optional `options` argument controls stream behavior.
+signing algorithms. Optional `options` argument controls the 
+`stream.Writable` behavior.
 
 ### crypto.createVerify(algorithm[, options])
 <!-- YAML
 added: v0.1.92
 -->
 - `algorithm` {string}
-- `options` {object} combined [OpenSSL options][] and [`stream.transform` options][]
+- `options` {Object} [`stream.Writable` options][]
 
 Creates and returns a `Verify` object that uses the given algorithm.
 Use [`crypto.getHashes()`][] to obtain an array of names of the available
-signing algorithms. Optional `options` argument controls stream behavior.
+signing algorithms. Optional `options` argument controls the 
+`stream.Writable` behavior.
 
 ### crypto.getCiphers()
 <!-- YAML
@@ -2216,16 +2218,16 @@ the `crypto`, `tls`, and `https` modules and are generally specific to OpenSSL.
 [`EVP_BytesToKey`]: https://www.openssl.org/docs/man1.0.2/crypto/EVP_BytesToKey.html
 [`cipher.final()`]: #crypto_cipher_final_outputencoding
 [`cipher.update()`]: #crypto_cipher_update_data_inputencoding_outputencoding
-[`crypto.createCipher()`]: #crypto_crypto_createcipher_algorithm_password
-[`crypto.createCipheriv()`]: #crypto_crypto_createcipheriv_algorithm_key_iv
-[`crypto.createDecipher()`]: #crypto_crypto_createdecipher_algorithm_password
-[`crypto.createDecipheriv()`]: #crypto_crypto_createdecipheriv_algorithm_key_iv
+[`crypto.createCipher()`]: #crypto_crypto_createcipher_algorithm_password_options
+[`crypto.createCipheriv()`]: #crypto_crypto_createcipheriv_algorithm_key_iv_options
+[`crypto.createDecipher()`]: #crypto_crypto_createdecipher_algorithm_password_options
+[`crypto.createDecipheriv()`]: #crypto_crypto_createdecipheriv_algorithm_key_iv_options
 [`crypto.createDiffieHellman()`]: #crypto_crypto_creatediffiehellman_prime_primeencoding_generator_generatorencoding
 [`crypto.createECDH()`]: #crypto_crypto_createecdh_curvename
-[`crypto.createHash()`]: #crypto_crypto_createhash_algorithm
-[`crypto.createHmac()`]: #crypto_crypto_createhmac_algorithm_key
-[`crypto.createSign()`]: #crypto_crypto_createsign_algorithm
-[`crypto.createVerify()`]: #crypto_crypto_createverify_algorithm
+[`crypto.createHash()`]: #crypto_crypto_createhash_algorithm_options
+[`crypto.createHmac()`]: #crypto_crypto_createhmac_algorithm_key_options
+[`crypto.createSign()`]: #crypto_crypto_createsign_algorithm_options
+[`crypto.createVerify()`]: #crypto_crypto_createverify_algorithm_options
 [`crypto.getCurves()`]: #crypto_crypto_getcurves
 [`crypto.getHashes()`]: #crypto_crypto_gethashes
 [`crypto.pbkdf2()`]: #crypto_crypto_pbkdf2_password_salt_iterations_keylen_digest_callback
@@ -2243,6 +2245,8 @@ the `crypto`, `tls`, and `https` modules and are generally specific to OpenSSL.
 [`hmac.update()`]: #crypto_hmac_update_data_inputencoding
 [`sign.sign()`]: #crypto_sign_sign_privatekey_outputformat
 [`sign.update()`]: #crypto_sign_update_data_inputencoding
+[`stream.transform` options]: stream.html#stream_new_stream_transform_options
+[`stream.Writable` options]: stream.html#stream_constructor_new_stream_writable_options
 [`tls.createSecureContext()`]: tls.html#tls_tls_createsecurecontext_options
 [`verify.update()`]: #crypto_verifier_update_data_inputencoding
 [`verify.verify()`]: #crypto_verifier_verify_object_signature_signatureformat
@@ -2252,11 +2256,10 @@ the `crypto`, `tls`, and `https` modules and are generally specific to OpenSSL.
 [NIST SP 800-131A]: http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar1.pdf
 [NIST SP 800-132]: http://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdf
 [OpenSSL's SPKAC implementation]: https://www.openssl.org/docs/man1.0.2/apps/spkac.html
+[OpenSSL options]: #openssl-options
 [RFC 2412]: https://www.rfc-editor.org/rfc/rfc2412.txt
 [RFC 3526]: https://www.rfc-editor.org/rfc/rfc3526.txt
 [RFC 4055]: https://www.rfc-editor.org/rfc/rfc4055.txt
 [initialization vector]: https://en.wikipedia.org/wiki/Initialization_vector
 [stream-writable-write]: stream.html#stream_writable_write_chunk_encoding_callback
 [stream]: stream.html
-[OpenSSL options]: #openssl-options
-[`stream.transform` options]: stream.html#stream_new_stream_transform_options

From 9a2987edb38d3b37f89083bae94851f17a2c4ee0 Mon Sep 17 00:00:00 2001
From: Adina Shanholtz <ashanhol@gmail.com>
Date: Wed, 16 Aug 2017 13:03:00 -0400
Subject: [PATCH 4/4] removed uneccessary link

---
 doc/api/crypto.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/doc/api/crypto.md b/doc/api/crypto.md
index 729f3705f7009c..a700757c2b3fd7 100644
--- a/doc/api/crypto.md
+++ b/doc/api/crypto.md
@@ -2256,7 +2256,6 @@ the `crypto`, `tls`, and `https` modules and are generally specific to OpenSSL.
 [NIST SP 800-131A]: http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-131Ar1.pdf
 [NIST SP 800-132]: http://csrc.nist.gov/publications/nistpubs/800-132/nist-sp800-132.pdf
 [OpenSSL's SPKAC implementation]: https://www.openssl.org/docs/man1.0.2/apps/spkac.html
-[OpenSSL options]: #openssl-options
 [RFC 2412]: https://www.rfc-editor.org/rfc/rfc2412.txt
 [RFC 3526]: https://www.rfc-editor.org/rfc/rfc3526.txt
 [RFC 4055]: https://www.rfc-editor.org/rfc/rfc4055.txt