From owner-freebsd-hackers@FreeBSD.ORG Sun Nov 9 18:13:23 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 26AFAD88 for ; Sun, 9 Nov 2014 18:13:23 +0000 (UTC) Received: from mail-vc0-x22d.google.com (mail-vc0-x22d.google.com [IPv6:2607:f8b0:400c:c03::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id D593C69D for ; Sun, 9 Nov 2014 18:13:22 +0000 (UTC) Received: by mail-vc0-f173.google.com with SMTP id le20so3318581vcb.32 for ; Sun, 09 Nov 2014 10:13:21 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=f6haVPwXdp3foODB+owkkGFxSZqIbZOW1N298Jh+GNc=; b=BhG5EMMo8ll19qClFFouuc67XgszhXjmH7fYumVNXx1hOd1A3DHuUcA5KX3KE+P+yr KlbwgKuZkXUAHum2T9lqp3f1xiBlSHGANBNHkLa+Ez3J8ahNtQmxRFiNEQWhDq3kwnKV ACiStkTKIYzFEa06IVI0NCPpPQ3g3qFXDmkk349Udag5ZGXZ3/NU3bXp2hoC4aO/RSBs 8k+WYnKqAFG3fRvWfOlP83kSdMxHn/m6cVQYIzjNLR4tNQzR4pYrgeUYuPZ5dMPFNShS 5R10XxTwXcV2Tu2s4mNeMkmHPWTu7v6/B7HiFtjMv2H6wJ4CONY+02fC6xTrf/HJF0bv uFfw== MIME-Version: 1.0 X-Received: by 10.221.36.73 with SMTP id sz9mr17441373vcb.17.1415556801782; Sun, 09 Nov 2014 10:13:21 -0800 (PST) Received: by 10.221.64.74 with HTTP; Sun, 9 Nov 2014 10:13:21 -0800 (PST) Date: Sun, 9 Nov 2014 13:13:21 -0500 Message-ID: Subject: Fwd: [Cryptography] libkcapi: First release of kernel crypto API userspace library From: grarpamp To: freebsd-hackers@freebsd.org Content-Type: text/plain; charset=UTF-8 X-Mailman-Approved-At: Sun, 09 Nov 2014 18:18:03 +0000 X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Nov 2014 18:13:23 -0000 ---------- Forwarded message ---------- From: Stephan Mueller Date: Sat, Nov 8, 2014 at 8:18 PM Subject: [Cryptography] libkcapi: First release of kernel crypto API userspace library To: linux-kernel@vger.kernel.org, linux-crypto@vger.kernel.org, cryptography@metzdowd.com Cc: Herbert Xu Hi, The Linux kernel exports a Netlink interface of type AF_ALG to allow user space to utilize the kernel crypto API. libkcapi uses this Netlink interface and exports easy to use APIs so that a developer does not need to consider the low-level Netlink interface handling. Its first release is available at [1]. The library does not implement any cipher algorithms. All consumer requests are sent to the kernel for processing. Results from the kernel crypto API are returned to the consumer via the library API. The kernel interface and therefore this library can be used by unprivileged processes. As the library is small, it may even be included directly into a consuming application instead of using it as a shared library. The library together with the kernel allows the use of symmetric ciphers as well as message digests and keyed message digests. Patches are prepared for submission to LKML to allow AEAD ciphers and RNGs to be used from userspace. [1] http://www.chronox.de/libkcapi.html -- Ciao Stephan _______________________________________________ The cryptography mailing list cryptography@metzdowd.com http://www.metzdowd.com/mailman/listinfo/cryptography