Home
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running the QNX OS 8.0.
System Security Guide
The QNX System Security Guide is intended for both system integrators who are responsible for the security of a QNX OS system and developers who want to create a QNX OS resource manager free from vulnerabilities.
The devcrypto service
The devcrypto service is a legacy system driver interface and is mainly provided for backwards compatibility.
The devcrypto I/O command API (cryptodev.h)
The devcrypto API that provides I/O command structures.
cryptodev_session_op_t
CIOCGSESSION command

QNX Momentics IDE User's Guide
This User's Guide describes version 8.0 of the Integrated Development Environment (IDE) that's part of the QNX Tool Suite.
QNX Software Development Platform
QNX SDP is a cross-compiling and debugging environment, including an IDE and command-line tools, for building binary images and programs for target boards running the QNX OS 8.0.
- Quickstart Guide
- System Architecture
  The System Architecture guide accompanies the QNX OS and is intended for both application developers and end-users.
- OS Components & Operations
- Graphics
- Programming
- System Security Guide
  The QNX System Security Guide is intended for both system integrators who are responsible for the security of a QNX OS system and developers who want to create a QNX OS resource manager free from vulnerabilities.
  - Security Matrix
    The following table describes security problems and cyberattacks and the QNX OS security features that can mitigate them.
  - Security Features Overview
  - Security Features for Developers
  - Security Features for System Integrators
  - Security Policies
  - Fortified System Functions
  - QNX Cryptography Library
    The QNX cryptography library (qcrypto library) is a generic cryptographic shim layer that provides a consistent API to the various cryptographic primitives offered by third-party libraries.
  - The devcrypto service
    The devcrypto service is a legacy system driver interface and is mainly provided for backwards compatibility.
    - The devcrypto plugin API (devcrypto_plugin.h)
      The devcrypto plugin API allows you to create a software backend to the devcrypto service, which provides access to cryptographic accelerators.
    - Example devcrypto plugin: openssl_digest.c
      This example illustrates how to implement a devcrypto plugin.
    - The devcrypto I/O command API (cryptodev.h)
      The devcrypto API that provides I/O command structures.
      - General definitions in cryptodev.h
        Preprocessor macro definitions for the cryptodev.h header file in the devcr library
      - Cryptography device algorithms
        Algorithms supported by the cryptography device.
      - Cryptography device operations
        Operations executed using ciphers.
      - Cryptography device CIOCCRYPT command flags
        Flags that affect how the cryptography operation is handled.
      - cphash_op_t
        CIOCCPHASH command
      - cryptodev_crypt_auth_op_t
        CIOCAUTHCRYPT command
      - cryptodev_crypt_op_t
        CIOCCRYPT command
      - cryptodev_session_op_t
        CIOCGSESSION command
  - Pathtrust
    The pathtrust feature prevents processes from executing untrusted code. If a process is compromised, pathtrust mitigates the threat of the system being further compromised by an attacker using chained-together exploits.
  - PAM
    Systems that need authentication can use pluggable authentication module (PAM), a configurable standard library.
  - Using mkqnximage to Display Security Features
- Utilities & Libraries
- Migrating to QNX OS 8.0
QNX Software in the Cloud
QNX Software in the Cloud enables developers to use the QNX OS in the Amazon cloud environment.
QNX Toolkit for Visual Studio Code
This User's Guide describes the QNX^® Toolkit for Visual Studio Code. The guide introduces you to the QNX Toolkit by explaining the QNX development environment and how to build, run, and debug your QNX^® Operating System (OS) applications and systems.
QNX Hypervisor User's Guide
This User's Guide explains the QNX hypervisor architecture and provides instructions for installing and running a QNX Hypervisor system, changing system components and configuration, and using hypervisor features such as virtual devices (vdevs).
Typographical Conventions, Support, and Licensing
This section describes the typographical conventions used throughout the documentation, explains how to obtain technical support, and provides some information about licensing.

cryptodev_session_op_t

QNX SDP8.0QNX OS System Security GuideAPIConfiguration

CIOCGSESSION command

Synopsis:

#include <dev/crypto/cryptodev.h>

struct session_op {
    uint32_t cipher;
    uint32_t mac;
    uint32_t keylen;
    uint8_t* key;
    uint32_t mackeylen;
    uint8_t* mackey;
    uint64_t ses;
} cryptodev_session_op_t;

Data:

uint32_t cipher: The cipher algorithm. See Cryptography device algorithms.
uint32_t mac: The MAC algorithm. See Cryptography device algorithms.
uint32_t keylen: The cipher key length.
uint8_t* key: The cipher key.
uint32_t mackeylen: The MAC key length.
uint8_t* mackey: The MAC key.
uint64_t ses: The session identifier.

Library:

devcr

Description:

This command is used to initiate a session with devcrypto by specifying the algorithm a client wants to use.

If devcrypto doesn't support this algorithm, the ioctl() call returns -1 and errno is set to ENOTSUP. Any other error means that the cryptography device encountered another error internally.

Only specific combinations of MAC and ciphers are valid.

Page updated: March 05, 2025