xref: /freebsd/share/man/man4/ossl.4 (revision bc7512cc58af2e8bbe5bbf5ca0059b1daa1da897)
1.\" Copyright (c) 2020 Netflix, Inc
2.\"
3.\" Redistribution and use in source and binary forms, with or without
4.\" modification, are permitted provided that the following conditions
5.\" are met:
6.\" 1. Redistributions of source code must retain the above copyright
7.\"    notice, this list of conditions and the following disclaimer,
8.\"    without modification.
9.\" 2. Redistributions in binary form must reproduce at minimum a disclaimer
10.\"    similar to the "NO WARRANTY" disclaimer below ("Disclaimer") and any
11.\"    redistribution must be conditioned upon including a substantially
12.\"    similar Disclaimer requirement for further binary redistribution.
13.\"
14.\" NO WARRANTY
15.\" THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
16.\" ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
17.\" LIMITED TO, THE IMPLIED WARRANTIES OF NONINFRINGEMENT, MERCHANTIBILITY
18.\" AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL
19.\" THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR SPECIAL, EXEMPLARY,
20.\" OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
21.\" SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
22.\" INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER
23.\" IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
24.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
25.\" THE POSSIBILITY OF SUCH DAMAGES.
26.\"
27.\" $FreeBSD$
28.\"
29.Dd September 24, 2021
30.Dt OSSL 4
31.Os
32.Sh NAME
33.Nm ossl
34.Nd "driver using OpenSSL assembly routines"
35.Sh SYNOPSIS
36To compile this driver into the kernel,
37place the following lines in your
38kernel configuration file:
39.Bd -ragged -offset indent
40.Cd "device crypto"
41.Cd "device cryptodev"
42.Cd "device ossl"
43.Ed
44.Pp
45Alternatively, to load the driver as a
46module at boot time, place the following line in
47.Xr loader.conf 5 :
48.Bd -literal -offset indent
49ossl_load="YES"
50.Ed
51.Sh DESCRIPTION
52The OpenSSL distribution includes architecture-specific
53implementations for some commonly used cryptographic algorithms.
54This driver adds a wrapper around these routines permitting them to be
55used by in-kernel cryptography consumers such as kernel TLS and IPsec.
56.Pp
57The
58.Nm
59driver includes architecture-specific implementations for the following
60architectures:
61.Pp
62.Bl -bullet -compact
63.It
64arm64
65.It
66amd64
67.It
68i386
69.El
70.Pp
71The
72.Nm
73driver includes support for the following algorithms:
74.Pp
75.Bl -bullet -compact
76.It
77AES-CBC
78.It
79ChaCha20
80.It
81ChaCha20-Poly1305 (RFC 8439)
82.It
83Poly1305
84.It
85SHA1
86.It
87SHA1-HMAC
88.It
89SHA2-224
90.It
91SHA2-224-HMAC
92.It
93SHA2-256
94.It
95SHA2-256-HMAC
96.It
97SHA2-384
98.It
99SHA2-384-HMAC
100.It
101SHA2-512
102.It
103SHA2-512-HMAC
104.El
105.Sh SEE ALSO
106.Xr crypto 4 ,
107.Xr intro 4 ,
108.Xr ipsec 4 ,
109.Xr crypto 7 ,
110.Xr crypto 9
111.Sh HISTORY
112The
113.Nm
114driver first appeared in
115.Fx 13.0 .
116