1.\" Copyright (c) 2020 Netflix, Inc 2.\" 3.\" Redistribution and use in source and binary forms, with or without 4.\" modification, are permitted provided that the following conditions 5.\" are met: 6.\" 1. Redistributions of source code must retain the above copyright 7.\" notice, this list of conditions and the following disclaimer, 8.\" without modification. 9.\" 2. Redistributions in binary form must reproduce at minimum a disclaimer 10.\" similar to the "NO WARRANTY" disclaimer below ("Disclaimer") and any 11.\" redistribution must be conditioned upon including a substantially 12.\" similar Disclaimer requirement for further binary redistribution. 13.\" 14.\" NO WARRANTY 15.\" THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 16.\" ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 17.\" LIMITED TO, THE IMPLIED WARRANTIES OF NONINFRINGEMENT, MERCHANTIBILITY 18.\" AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL 19.\" THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR SPECIAL, EXEMPLARY, 20.\" OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 21.\" SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 22.\" INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER 23.\" IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 24.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF 25.\" THE POSSIBILITY OF SUCH DAMAGES. 26.\" 27.\" $FreeBSD$ 28.\" 29.Dd May 4, 2023 30.Dt OSSL 4 31.Os 32.Sh NAME 33.Nm ossl 34.Nd "driver using OpenSSL assembly routines" 35.Sh SYNOPSIS 36To compile this driver into the kernel, 37place the following lines in your 38kernel configuration file: 39.Bd -ragged -offset indent 40.Cd "device crypto" 41.Cd "device cryptodev" 42.Cd "device ossl" 43.Ed 44.Pp 45Alternatively, to load the driver as a 46module at boot time, place the following line in 47.Xr loader.conf 5 : 48.Bd -literal -offset indent 49ossl_load="YES" 50.Ed 51.Sh DESCRIPTION 52The OpenSSL distribution includes architecture-specific 53implementations for some commonly used cryptographic algorithms. 54This driver adds a wrapper around these routines permitting them to be 55used by in-kernel cryptography consumers such as kernel TLS and IPsec. 56.Pp 57The 58.Nm 59driver includes architecture-specific implementations for the following 60architectures: 61.Pp 62.Bl -bullet -compact 63.It 64arm64 65.It 66amd64 67.It 68i386 69.El 70.Pp 71The 72.Nm 73driver includes support for the following algorithms: 74.Pp 75.Bl -bullet -compact 76.It 77AES-CBC 78.It 79AES-GCM (amd64 only) 80.It 81ChaCha20 82.It 83ChaCha20-Poly1305 (RFC 8439) 84.It 85Poly1305 86.It 87SHA1 88.It 89SHA1-HMAC 90.It 91SHA2-224 92.It 93SHA2-224-HMAC 94.It 95SHA2-256 96.It 97SHA2-256-HMAC 98.It 99SHA2-384 100.It 101SHA2-384-HMAC 102.It 103SHA2-512 104.It 105SHA2-512-HMAC 106.El 107.Sh SEE ALSO 108.Xr crypto 4 , 109.Xr intro 4 , 110.Xr ipsec 4 , 111.Xr crypto 7 , 112.Xr crypto 9 113.Sh HISTORY 114The 115.Nm 116driver first appeared in 117.Fx 13.0 . 118