NAME¶

kcapi_cipher_encrypt - encrypt data (synchronous one shot)

SYNOPSIS¶

ssize_t kcapi_cipher_encrypt(struct kcapi_handle * handle, const uint8_t * in, size_t inlen, const uint8_t * iv, uint8_t * out, size_t outlen, int access);

ARGUMENTS¶

handle

[in] cipher handle

[in] plaintext data buffer

inlen

[in] length of in buffer

[in] IV to be used for cipher operation

out

[out] ciphertext data buffer

outlen

[in] length of out buffer

access

[in] kernel access type (KCAPI_ACCESS_HEURISTIC - use internal heuristic for fastest kernel access; KCAPI_ACCESS_VMSPLICE - use vmsplice access; KCAPI_ACCESS_SENDMSG - sendmsg access)

DESCRIPTION¶

It is perfectly legal to use the same buffer as the plaintext and ciphertext pointers. That would mean that after the encryption operation, the plaintext is overwritten with the ciphertext.

The memory should be aligned at the page boundary using posix_memalign(sysconf(_SC_PAGESIZE)), If it is not aligned at the page boundary, the vmsplice call may not send all data to the kernel.

The IV buffer must be exactly kcapi_cipher_ivsize bytes in size.

return number of bytes encrypted upon success; a negative errno-style error code if an error occurred

AUTHOR¶

Stephan Mueller <smueller@chronox.de>

Author.

COPYRIGHT¶

March 2023

libkcapi Manual 1.4.0

Source file:	kcapi_cipher_encrypt.3.en.gz (from libkcapi-devel 1.4.0-2.8)
Source last updated:	2023-03-06T15:17:54Z
Converted to HTML:	2024-11-21T01:46:10Z