Fwd: [Cryptography] libkcapi: First release of kernel crypto API userspace library
grarpamp
grarpamp at gmail.com
Sun Nov 9 18:13:23 UTC 2014
---------- Forwarded message ----------
From: Stephan Mueller <smueller at chronox.de>
Date: Sat, Nov 8, 2014 at 8:18 PM
Subject: [Cryptography] libkcapi: First release of kernel crypto API
userspace library
To: linux-kernel at vger.kernel.org, linux-crypto at vger.kernel.org,
cryptography at metzdowd.com
Cc: Herbert Xu <herbert at gondor.apana.org.au>
Hi,
The Linux kernel exports a Netlink interface of type AF_ALG to allow user
space to utilize the kernel crypto API.
libkcapi uses this Netlink interface and exports easy to use APIs so that
a developer does not need to consider the low-level Netlink interface
handling. Its first release is available at [1].
The library does not implement any cipher algorithms. All consumer requests
are sent to the kernel for processing. Results from the kernel crypto API
are returned to the consumer via the library API.
The kernel interface and therefore this library can be used by unprivileged
processes. As the library is small, it may even be included directly into a
consuming application instead of using it as a shared library.
The library together with the kernel allows the use of symmetric ciphers as
well as message digests and keyed message digests. Patches are prepared for
submission to LKML to allow AEAD ciphers and RNGs to be used from userspace.
[1] http://www.chronox.de/libkcapi.html
--
Ciao
Stephan
_______________________________________________
The cryptography mailing list
cryptography at metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
More information about the freebsd-hackers
mailing list