SUN8ICRYPTO(4) | Device Drivers Manual | SUN8ICRYPTO(4) |
sun8icrypto
—
driver for Allwinner Crypto Engine
sun8icrypto* at fdt?
The sun8icrypto
driver provides support
for the cryptographic processors on Allwinner A64, H3 and H5
systems-on-a-chip. The Allwinner Crypto Engine is the successor to the
earlier Allwinner Security System.
The hardware includes a True Random Number Generator (TRNG) that is used as an entropy source for the rnd(4) system, and implementations of various cryptographic algorithms that can be used with ipsec(4) and crypto(4).
The following opencrypto(9) algorithms are supported:
The sun8icrypto
device driver first
appeared in NetBSD 9.1.
The sun8icrypto
TRNG's underlying source
of randomness is not documented by Allwinner, so is not trusted as a
reliable source of entropy. Initial tests using NIST's SP800-90B tools
showed highly biased runs of output, suggesting any potential physical
source is not subject to whitening.
Cryptographic operations using sun8icrypto
are generally slower than using the CPU on supported devices, but provide an
advantage in terms of hardware offloading if the CPU is busy.
April 28, 2021 | NetBSD 10.99 |