1f4bf4335SSam Leffler.\" $OpenBSD: crypto.9,v 1.19 2002/07/16 06:31:57 angelos Exp $ 2f4bf4335SSam Leffler.\" 3571dba6eSHiten Pandya.\" The author of this manual page is Angelos D. Keromytis (angelos@cis.upenn.edu) 4f4bf4335SSam Leffler.\" 5f4bf4335SSam Leffler.\" Copyright (c) 2000, 2001 Angelos D. Keromytis 6f4bf4335SSam Leffler.\" 7f4bf4335SSam Leffler.\" Permission to use, copy, and modify this software with or without fee 8f4bf4335SSam Leffler.\" is hereby granted, provided that this entire notice is included in 9f4bf4335SSam Leffler.\" all source code copies of any software which is or includes a copy or 10f4bf4335SSam Leffler.\" modification of this software. 11f4bf4335SSam Leffler.\" 12f4bf4335SSam Leffler.\" THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR 13f4bf4335SSam Leffler.\" IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY 14f4bf4335SSam Leffler.\" REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE 15f4bf4335SSam Leffler.\" MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR 16f4bf4335SSam Leffler.\" PURPOSE. 17f4bf4335SSam Leffler.\" 1876681661SJohn Baldwin.Dd April 12, 2021 19f4bf4335SSam Leffler.Dt CRYPTO 9 20f4bf4335SSam Leffler.Os 21f4bf4335SSam Leffler.Sh NAME 22f4bf4335SSam Leffler.Nm crypto 23f4bf4335SSam Leffler.Nd API for cryptographic services in the kernel 24f4bf4335SSam Leffler.Sh SYNOPSIS 257621fdabSRuslan Ermilov.In opencrypto/cryptodev.h 26f4bf4335SSam Leffler.Sh DESCRIPTION 27f4bf4335SSam Leffler.Nm 28c0341432SJohn Baldwinis a framework for in-kernel cryptography. 29c0341432SJohn BaldwinIt permits in-kernel consumers to encrypt and decrypt data 30c0341432SJohn Baldwinand also enables userland applications to use cryptographic hardware 31c0341432SJohn Baldwinthrough the 321403a8c7SSam Leffler.Pa /dev/crypto 33c0341432SJohn Baldwindevice. 34f4bf4335SSam Leffler.Pp 35c0341432SJohn Baldwin.Nm 3676681661SJohn Baldwinsupports encryption and decryption operations 37c0341432SJohn Baldwinusing block and stream ciphers as well as computation and verification 38c0341432SJohn Baldwinof message authentication codes (MACs). 3976681661SJohn BaldwinConsumers allocate sessions to describe a transform as discussed in 40c0341432SJohn Baldwin.Xr crypto_session 9 . 41c0341432SJohn BaldwinConsumers then allocate request objects to describe each transformation 42c0341432SJohn Baldwinsuch as encrypting a network packet or decrypting a disk sector. 43c0341432SJohn BaldwinRequests are described in 44c0341432SJohn Baldwin.Xr crypto_request 9 . 45f4bf4335SSam Leffler.Pp 46c0341432SJohn BaldwinDevice drivers are responsible for processing requests submitted by 47c0341432SJohn Baldwinconsumers. 48c0341432SJohn Baldwin.Xr crypto_driver 9 49c0341432SJohn Baldwindescribes the interfaces drivers use to register with the framework, 50*8e8d2a72SGordon Berglinghelper routines the framework provides to facilitate request processing, 51c0341432SJohn Baldwinand the interfaces drivers are required to provide. 52c0341432SJohn Baldwin.Ss Callbacks 53f4bf4335SSam LefflerSince the consumers may not be associated with a process, drivers may 541403a8c7SSam Lefflernot 551403a8c7SSam Leffler.Xr sleep 9 . 56f4bf4335SSam LefflerThe same holds for the framework. 57f4bf4335SSam LefflerThus, a callback mechanism is used 58f4bf4335SSam Lefflerto notify a consumer that a request has been completed (the 590f7e2491SChristian Brueffercallback is specified by the consumer on a per-request basis). 60f4bf4335SSam LefflerThe callback is invoked by the framework whether the request was 61f4bf4335SSam Lefflersuccessfully completed or not. 62c0341432SJohn BaldwinErrors are reported to the callback function. 63c0341432SJohn Baldwin.Pp 64c0341432SJohn BaldwinSession initialization does not use callbacks and returns errors 65c0341432SJohn Baldwinsynchronously. 66c0341432SJohn Baldwin.Ss Session Migration 6776681661SJohn BaldwinOperations may fail with a specific error code, 68f4bf4335SSam Leffler.Er EAGAIN , 6976681661SJohn Baldwinto indicate that a session handle has changed and that the 701b0909d5SConrad Meyerrequest may be re-submitted immediately with the new session. 71c0341432SJohn BaldwinThe consumer should update its saved copy of the session handle 72c0341432SJohn Baldwinto the value of 73c0341432SJohn Baldwin.Fa crp_session 74c0341432SJohn Baldwinso that future requests use the new session. 75c0341432SJohn Baldwin.Ss Supported Algorithms 76c0341432SJohn BaldwinMore details on some algorithms may be found in 77c0341432SJohn Baldwin.Xr crypto 7 . 78f4bf4335SSam Leffler.Pp 79c0341432SJohn BaldwinThe following authentication algorithms are supported: 80f405d8ebSJohn-Mark Gurney.Pp 81c0341432SJohn Baldwin.Bl -tag -offset indent -width CRYPTO_AES_CCM_CBC_MAC -compact 82284789e8SJohn Baldwin.It Dv CRYPTO_AES_CCM_CBC_MAC 8308fca7a5SJohn-Mark Gurney.It Dv CRYPTO_AES_NIST_GMAC 84284789e8SJohn Baldwin.It Dv CRYPTO_BLAKE2B 85284789e8SJohn Baldwin.It Dv CRYPTO_BLAKE2S 8608fca7a5SJohn-Mark Gurney.It Dv CRYPTO_NULL_HMAC 87284789e8SJohn Baldwin.It Dv CRYPTO_POLY1305 88284789e8SJohn Baldwin.It Dv CRYPTO_RIPEMD160 89b61e8b3eSChristian Brueffer.It Dv CRYPTO_RIPEMD160_HMAC 907621fdabSRuslan Ermilov.It Dv CRYPTO_SHA1 91b61e8b3eSChristian Brueffer.It Dv CRYPTO_SHA1_HMAC 92284789e8SJohn Baldwin.It Dv CRYPTO_SHA2_224 93284789e8SJohn Baldwin.It Dv CRYPTO_SHA2_224_HMAC 94284789e8SJohn Baldwin.It Dv CRYPTO_SHA2_256 9571ee05c8SPawel Jakub Dawidek.It Dv CRYPTO_SHA2_256_HMAC 96284789e8SJohn Baldwin.It Dv CRYPTO_SHA2_384 9771ee05c8SPawel Jakub Dawidek.It Dv CRYPTO_SHA2_384_HMAC 98284789e8SJohn Baldwin.It Dv CRYPTO_SHA2_512 9971ee05c8SPawel Jakub Dawidek.It Dv CRYPTO_SHA2_512_HMAC 100c0341432SJohn Baldwin.El 101c0341432SJohn Baldwin.Pp 102c0341432SJohn BaldwinThe following encryption algorithms are supported: 103c0341432SJohn Baldwin.Pp 104c0341432SJohn Baldwin.Bl -tag -offset indent -width CRYPTO_CAMELLIA_CBC -compact 105c0341432SJohn Baldwin.It Dv CRYPTO_AES_CBC 106c0341432SJohn Baldwin.It Dv CRYPTO_AES_ICM 107c0341432SJohn Baldwin.It Dv CRYPTO_AES_XTS 108c0341432SJohn Baldwin.It Dv CRYPTO_CAMELLIA_CBC 109c0341432SJohn Baldwin.It Dv CRYPTO_CHACHA20 110c0341432SJohn Baldwin.It Dv CRYPTO_NULL_CBC 1117621fdabSRuslan Ermilov.El 112c0341432SJohn Baldwin.Pp 113c0341432SJohn BaldwinThe following authenticated encryption with additional data (AEAD) 114c0341432SJohn Baldwinalgorithms are supported: 115c0341432SJohn Baldwin.Pp 116c853c53dSJohn Baldwin.Bl -tag -offset indent -width CRYPTO_CHACHA20_POLY1305 -compact 117c0341432SJohn Baldwin.It Dv CRYPTO_AES_CCM_16 118c0341432SJohn Baldwin.It Dv CRYPTO_AES_NIST_GCM_16 119c853c53dSJohn Baldwin.It Dv CRYPTO_CHACHA20_POLY1305 120f4bf4335SSam Leffler.El 121f4bf4335SSam Leffler.Pp 122c0341432SJohn BaldwinThe following compression algorithms are supported: 123f4bf4335SSam Leffler.Pp 124c0341432SJohn Baldwin.Bl -tag -offset indent -width CRYPTO_DEFLATE_COMP -compact 125c0341432SJohn Baldwin.It Dv CRYPTO_DEFLATE_COMP 126f4bf4335SSam Leffler.El 127f4bf4335SSam Leffler.Sh FILES 128627e7962SSam Leffler.Bl -tag -width ".Pa sys/opencrypto/crypto.c" 129627e7962SSam Leffler.It Pa sys/opencrypto/crypto.c 130f4bf4335SSam Lefflermost of the framework code 131f4bf4335SSam Leffler.El 132f4bf4335SSam Leffler.Sh SEE ALSO 133c7c8edc3SJohn-Mark Gurney.Xr crypto 4 , 134f4bf4335SSam Leffler.Xr ipsec 4 , 13508fca7a5SJohn-Mark Gurney.Xr crypto 7 , 136c0341432SJohn Baldwin.Xr crypto_driver 9 , 137c0341432SJohn Baldwin.Xr crypto_request 9 , 138c0341432SJohn Baldwin.Xr crypto_session 9 , 1391403a8c7SSam Leffler.Xr sleep 9 140f4bf4335SSam Leffler.Sh HISTORY 141f4bf4335SSam LefflerThe cryptographic framework first appeared in 1427621fdabSRuslan Ermilov.Ox 2.7 1437621fdabSRuslan Ermilovand was written by 1448a7314fcSBaptiste Daroussin.An Angelos D. Keromytis Aq Mt angelos@openbsd.org . 145f4bf4335SSam Leffler.Sh BUGS 146c0341432SJohn BaldwinThe framework needs a mechanism for determining which driver is 147f4bf4335SSam Lefflerbest for a specific set of algorithms associated with a session. 148f4bf4335SSam LefflerSome type of benchmarking is in order here. 149