1crypto(7)                Erlang Application Definition               crypto(7)
2
3
4

NAME

6       crypto - The Crypto Application
7

DESCRIPTION

9       The  purpose  of  the Crypto application is to provide an Erlang API to
10       cryptographic functions, see crypto(3). Note  that  the  API  is  on  a
11       fairly  low level and there are some corresponding API functions avail‐
12       able in public_key(3), on a higher abstraction  level,  that  uses  the
13       crypto application in its implementation.
14

DEPENDENCIES

16       The  current  crypto  implementation  uses  nifs  to interface OpenSSLs
17       crypto library and may work with limited functionality with as old ver‐
18       sions  as  OpenSSL  0.9.8c. FIPS mode support requires at least version
19       1.0.1 and a FIPS capable OpenSSL installation.  We  recommend  using  a
20       version  that  is officially supported by the OpenSSL project. API com‐
21       patible backends like LibreSSL should also work.
22
23       Source releases of OpenSSL can be downloaded from the  OpenSSL  project
24       home page, or mirror sites listed there.
25

CONFIGURATION

27       The  following  configuration  parameters  are  defined  for the crypto
28       application. See app(3) for more information about configuration param‐
29       eters.
30
31         fips_mode = boolean():
32           Specifies  whether  to  run  crypto in FIPS mode. This setting will
33           take effect when  the  nif  module  is  loaded.  If  FIPS  mode  is
34           requested but not available at run time the nif module and thus the
35           crypto module will fail to load. This mechanism prevents the  acci‐
36           dental use of non-validated algorithms.
37
38         rand_cache_size = integer():
39           Sets     the     cache     size     in     bytes    to    use    by
40           crypto:rand_seed_alg(crypto_cache)                              and
41           crypto:rand_seed_alg_s(crypto_cache). This parameter is read when a
42           seed function is called, and then kept in generators state  object.
43           It  has  a  rather  small default value that causes reads of strong
44           random bytes about once per hundred calls for a random  value.  The
45           set  value is rounded up to an integral number of words of the size
46           these seed functions use.
47

SEE ALSO

49       application(3)
50
51
52
53Ericsson AB                      crypto 4.4.2                        crypto(7)
Impressum