A P P E N D I X B |
Building OpenSSL Applications for Use With the Sun Crypto Accelerator 1000 Board |
The Solaris 10 Operating System includes OpenSSL libraries. They are /usr/sfw/lib/libcrypto.so and /usr/sfw/lib/libssl.so for 32-bit applications and /usr/sfw/lib/sparcv9/libcrypto.so and /usr/sfw/lib/sparcv9/libssl.so for 64-bit applications. A PKCS#11 OpenSSL engine (with identifier pkcs11) is provided in libcrypto.so. This engine bridges OpenSSL applications and the Sun Crypto Accelerator 1000 through the PKCS#11 interface provided by the Solaris Cryptographic Framework.
OpenSSL applications should use the PKCS#11 engine through the standard OpenSSL engine interface. The OpenSSL engine interface, along with sample code, is documented in great detail on the OpenSSL web site http://www.openssl.org/docs/crypto/engine.html. To use the PKCS#11 engine, the applications are required to use libcrypto.so on Solaris 10.
The following command provides simple information on the PKCS#11 OpenSSL engine.
Another example is the OpenSSL speed program which is available also on Solaris 10 Operating System. The following is a sample usage of this program and its output.
This example tests RSA operations with 1024-bit keys and one process for 10 seconds. Note that for more accurate timing test, the user should use the -multi option of the OpenSSL speed program.
The user may check the Sun Crypto Accelerator 1000 usage by using the following command before and after running the OpenSSL speed program.
Copyright © 2005, Sun Microsystems, Inc. All Rights Reserved.