Home
last modified time | relevance | path

Searched full:encryption (Results 1 – 25 of 1413) sorted by relevance

12345678910>>...57

/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zfs_create/
H A Dzfs_create_encrypted.ksh29 # encryption properties set.
32 # enc = encryption
38 # no unspec 0 0 yes inherit no encryption (not tested here)
42 # no off 0 0 yes explicit no encryption
48 # no on 1 0 yes new encryption root
49 # no on 1 1 yes new encryption root
50 # yes unspec 0 0 yes inherit encryption
52 # yes unspec 1 0 yes new encryption root, crypt inherited
53 # yes unspec 1 1 yes new encryption root, crypt inherited
58 # yes on 0 0 yes inherited encryption, local crypt
[all …]
H A Dzfs_create_crypt_combos.ksh28 # 'zfs create' should create an encrypted dataset with a valid encryption
32 # 1. Create a filesystem for each combination of encryption type and key format
47 "encryption=on" \
48 "encryption=aes-128-ccm" \
49 "encryption=aes-192-ccm" \
50 "encryption=aes-256-ccm" \
51 "encryption=aes-128-gcm" \
52 "encryption=aes-192-gcm" \
53 "encryption=aes-256-gcm"
56 "encryption=aes-256-gcm" \
[all …]
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/rsend/
H A Dsend_encrypted_props.ksh25 # Verify that zfs properly handles encryption properties when receiving
32 # 4. Verify that 'zfs recv -x <encryption prop>' fails on a raw send stream
33 # 5. Verify that encryption properties cannot be changed on incrementals
34 # 6. Verify that a simple send can be received as an encryption root
36 # encryption root
38 # encryption root
40 # encryption child
42 # encryption child
57 log_assert "'zfs recv' must properly handle encryption properties"
71 log_must zfs create -o encryption=on -o keyformat=passphrase \
[all …]
/freebsd/sys/contrib/openzfs/man/man8/
H A Dzfs-load-key.838 .Nd load, unload, or change encryption key of ZFS dataset
101 encryption roots.
103 Loads the keys for all encryption roots in all imported pools.
145 encryption roots.
147 Unloads the keys for all encryption roots in all imported pools.
173 If the dataset was not previously an encryption root it will become one.
176 flag may be provided to cause an encryption root to inherit the parent's key
206 Allows the user to set encryption key properties
218 Note that this command can only be run on an encryption root
222 .Ss Encryption
[all …]
H A Dzfs-unload-key.838 .Nd load, unload, or change encryption key of ZFS dataset
101 encryption roots.
103 Loads the keys for all encryption roots in all imported pools.
145 encryption roots.
147 Unloads the keys for all encryption roots in all imported pools.
173 If the dataset was not previously an encryption root it will become one.
176 flag may be provided to cause an encryption root to inherit the parent's key
206 Allows the user to set encryption key properties
218 Note that this command can only be run on an encryption root
222 .Ss Encryption
[all …]
H A Dzfs-change-key.838 .Nd load, unload, or change encryption key of ZFS dataset
101 encryption roots.
103 Loads the keys for all encryption roots in all imported pools.
145 encryption roots.
147 Unloads the keys for all encryption roots in all imported pools.
173 If the dataset was not previously an encryption root it will become one.
176 flag may be provided to cause an encryption root to inherit the parent's key
206 Allows the user to set encryption key properties
218 Note that this command can only be run on an encryption root
222 .Ss Encryption
[all …]
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zpool_create/
H A Dzpool_create_crypt_combos.ksh27 # 'zpool create' should create encrypted pools when using a valid encryption
31 # 1. Create a pool for each combination of encryption type and key format
43 set -A ENCRYPTION_ALGS "encryption=on" \
44 "encryption=aes-128-ccm" \
45 "encryption=aes-192-ccm" \
46 "encryption=aes-256-ccm" \
47 "encryption=aes-128-gcm" \
48 "encryption=aes-192-gcm" \
49 "encryption=aes-256-gcm"
51 set -A ENCRYPTION_PROPS "encryption=aes-256-gcm" \
[all …]
H A Dzpool_create_encrypted.ksh27 # combination of encryption properties set.
29 # enc = encryption
42 # N 0 0 yes explicit no encryption
48 # Y 1 1 no unsupported combination of non-encryption props
49 # Y 1 0 yes new encryption root
50 # Y 1 1 yes new encryption root
53 # 1. Attempt to create a dataset using all combinations of encryption
66 "has a valid combination of encryption properties set."
73 log_must zpool create -O encryption=off $TESTPOOL $DISKS
76 log_mustnot zpool create -O encryption=off -O keylocation=prompt \
[all …]
/freebsd/secure/lib/libcrypto/man/man7/
H A Dlife_cycle-cipher.7162 .IP "initialised for encryption using EVP_EncryptInit" 4
163 .IX Item "initialised for encryption using EVP_EncryptInit"
204 | for decryption | | | | for encryption |
217 …| for decryption | <-------------------+ | | for encryption | …
228 | (AEAD encryption)
242 … decryption decryption encryption encryption
248encryption encryption encryption encryption encryption encryption encryption encryption
253encryption encryption
260 … decryption decryption encryption encryption
262 … decryption decryption encryption encryption
[all …]
/freebsd/contrib/bearssl/inc/
H A Dbearssl_block.h46 * functions are provided, for CBC encryption, CBC decryption, and CTR
47 * encryption/decryption. Each set has its own context structure,
48 * initialised with the encryption key.
50 * For CBC encryption and decryption, the data to encrypt or decrypt is
55 * Function for CTR encryption are defined only for block ciphers with
72 * expansion. These subkeys are appropriate for CBC encryption. The
78 * Perform key expansion: subkeys for CBC encryption are computed and
85 * Perform CBC encryption of `len` bytes, in place. The encrypted data
116 * expansion. These subkeys are appropriate for CTR encryption and
122 * Perform key expansion: subkeys for CTR encryption and decryption
[all …]
/freebsd/crypto/openssl/doc/man7/
H A Dlife_cycle-cipher.pod34 =item initialised for encryption using EVP_EncryptInit
82 | for decryption | | | | for encryption |
95 …| for decryption | <-------------------+ | | for encryption | …
106 | (AEAD encryption)
128 … decryption decryption encryption encryption
134encryption encryption encryption encryption encryption encryption encryption encryption
139encryption encryption
146 … decryption decryption encryption encryption
148 … decryption decryption encryption encryption
150 … decryption decryption encryption encryption
[all …]
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zfs_change-key/
H A Dzfs_change-key_clones.ksh26 # 'zfs change-key' should correctly update encryption roots with clones.
30 # 2. Create an encryption root child of the first dataset
31 # 3. Clone the child encryption root twice
32 # 4. Add inheriting children to the encryption root and each of the clones
33 # 5. Verify the encryption roots
34 # 6. Have the child encryption root inherit from its parent
35 # 7. Verify the encryption root for all datasets is now the parent dataset
48 log_assert "'zfs change-key' should correctly update encryption " \
51 log_must eval "echo $PASSPHRASE1 | zfs create -o encryption=on" \
53 log_must eval "echo $PASSPHRASE2 | zfs create -o encryption=on" \
[all …]
H A Dzfs_change-key_child.ksh26 # 'zfs change-key' should promote an encrypted child to an encryption root.
35 # 7. Verify the new encryption root can unload and load its key
38 # 10. Verify the new encryption root can unload and load its key
53 "encryption root"
55 log_must eval "echo $PASSPHRASE1 | zfs create -o encryption=on" \
58 log_must zfs create -o encryption=off $TESTPOOL/$TESTFS1/child2
91 log_pass "'zfs change-key' promotes an encrypted child to an encryption root"
/freebsd/crypto/openssl/doc/man3/
H A DEVP_SealInit.pod5 EVP_SealInit, EVP_SealUpdate, EVP_SealFinal - EVP envelope encryption
21 encryption. They generate a random key and IV (if required) then
22 "envelope" it by using public key encryption. Data can then be
25 EVP_SealInit() initializes a cipher context B<ctx> for encryption
65 Envelope encryption is the usual method of using public key encryption
66 on large amounts of data, this is because public key encryption is slow
67 but symmetric encryption is fast. So symmetric encryption is used for
68 bulk encryption and the small random symmetric key used is transferred
69 using public key encryption.
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zfs_receive/
H A Dzfs_receive_to_encrypted.ksh35 # 8. Attempt to receive with -o encryption=off to an unencrypted child
66 log_must eval "echo $passphrase | zfs create -o encryption=on" \
71 log_must test "$(get_prop 'encryption' $TESTPOOL/$TESTFS1/c1)" != "off"
84 log_must test "$(get_prop 'encryption' $TESTPOOL/$TESTFS1/c2)" == "off"
92 zfs receive -o encryption=off $TESTPOOL/$TESTFS1/c2o"
93 log_must test "$(get_prop 'encryption' $TESTPOOL/$TESTFS1/c2o)" == "off"
97 log_must test "$(get_prop 'encryption' $TESTPOOL/$TESTFS1/c3)" == "off"
103 # Verify that replication can override encryption properties
104 log_note "Verifying replication can override encryption properties for plain dataset"
107 log_must eval "zfs send -R $snap2 | zfs recv -s -F -o encryption=on" \
[all …]
H A Dzfs_receive_-wR-encrypted-mix.ksh40 # 4. Check the encryption property of the received datasets
62 create_dataset "$src" -o encryption=on -o keyformat=passphrase
63 create_dataset "$src/u" "-o encryption=off"
65 create_dataset "$src/u/e" -o encryption=on -o keyformat=passphrase
66 create_dataset "$src/u/e/u" -o encryption=off
70 log_must test "$(get_prop 'encryption' $dst)" != "off"
71 log_must test "$(get_prop 'encryption' $dst/u)" == "off"
72 log_must test "$(get_prop 'encryption' $dst/u/e)" != "off"
73 log_must test "$(get_prop 'encryption' $dst/u/e/u)" == "off"
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zfs_rename/
H A Dzfs_rename_encrypted_child.ksh27 # encryption root.
30 # 1. Create two encryption roots, and a child and grandchild of the first
31 # encryption root
35 # 5. Verify the encryption root of the dataset
37 # 7. Verify the encryption root of the dataset
52 "encryption root"
54 log_must eval "echo $PASSPHRASE | zfs create -o encryption=on" \
58 log_must eval "echo $PASSPHRASE1 | zfs create -o encryption=on" \
78 "encryption root"
/freebsd/crypto/heimdal/doc/doxyout/krb5/man/man3/
H A Dkrb5_crypto.392 Enable or disable all weak encryption types
109 Return the coresponding encryption type for a checksum type.
117 \fIetype\fP The returned encryption, when the matching etype is not found, etype is set to ETYPE_NU…
222 \fIenctype\fP the encryption type of the resulting key
273 Return the encryption type used by the crypto context
281 \fIenctype\fP the resulting encryption type
311 Create a crypto context used for all encryption and signature operation. The encryption type to use…
321 \fIetype\fP the encryption type
386 Disable encryption type
392 \fIenctype\fP encryption type to disable
[all …]
/freebsd/sys/contrib/openzfs/tests/zfs-tests/tests/functional/cli_root/zfs_promote/
H A Dzfs_promote_encryptionroot.ksh26 # ZFS must promote clones of an encryption root.
30 # 2. Clone the encryption root
33 # 4. Verify the encryption root of all datasets is the origin
35 # 6. Verify the encryption root of all datasets is still the origin
36 # 7. Promote the dataset again, so it is now the encryption root
37 # 8. Verify the encryption root of all datasets is the promoted dataset
53 log_assert "ZFS must promote clones of an encryption root"
59 log_must eval "echo $passphrase | zfs create -o encryption=on" \
93 log_pass "ZFS promotes clones of an encryption root"
/freebsd/lib/libc/rpc/
H A Ddes_crypt.37 .Nd "fast DES encryption"
27 (Data Encryption Standard).
57 is the 8-byte encryption key with parity.
76 For the encryption direction
83 encryption,
91 is specified, and there is no hardware, then the encryption is performed
108 Encryption succeeded, but done in software instead of the requested hardware.
/freebsd/secure/lib/libcrypto/man/man3/
H A DEVP_SealInit.3140 EVP_SealInit, EVP_SealUpdate, EVP_SealFinal \- EVP envelope encryption
156 encryption. They generate a random key and \s-1IV\s0 (if required) then
157 \&\*(L"envelope\*(R" it by using public key encryption. Data can then be
160 \&\fBEVP_SealInit()\fR initializes a cipher context \fBctx\fR for encryption
198 Envelope encryption is the usual method of using public key encryption
199 on large amounts of data, this is because public key encryption is slow
200 but symmetric encryption is fast. So symmetric encryption is used for
201 bulk encryption and the small random symmetric key used is transferred
202 using public key encryption.
/freebsd/contrib/telnet/libtelnet/
H A Dkerberos.c84 #ifdef ENCRYPTION
88 #endif /* ENCRYPTION */
193 #ifdef ENCRYPTION in kerberos4_send()
218 #endif /* ENCRYPTION */ in kerberos4_send()
232 #ifdef ENCRYPTION in kerberos4_is()
235 #endif /* ENCRYPTION */ in kerberos4_is()
267 #ifdef ENCRYPTION in kerberos4_is()
269 #endif /* ENCRYPTION */ in kerberos4_is()
280 #ifndef ENCRYPTION in kerberos4_is()
282 #else /* ENCRYPTION */ in kerberos4_is()
[all …]
/freebsd/share/man/man4/
H A Dng_mppc.442 .Nd Microsoft MPPC/MPPE compression and encryption netgraph node type
50 and Microsoft Point-to-Point Encryption (MPPE) sub-protocols of
87 outgoing traffic direction (i.e., for compression and/or encryption).
100 #define MPPE_BITS 0x000000e0 /* mppe encryption bits */
140 The node will respond by flushing its outgoing compression and encryption
166 .%T "Microsoft Point-To-Point Encryption (MPPE) Protocol"
182 In PPP, encryption should be handled by the Encryption Control Protocol (ECP)
184 However, Microsoft combined both compression and encryption into their
/freebsd/sys/cam/scsi/
H A Dscsi_sa.h502 * Security Protocol Specific values for the Tape Data Encryption protocol
518 * Tape Data Encryption protocol pages used with SECURITY PROTOCOL IN and
522 * Tape Data Encryption In Support page (0x0000).
531 * Tape Data Encryption Out Support page (0x0001).
540 * Logical block encryption algorithm descriptor. This is reported in the
541 * Data Encryption Capabilities page.
608 * Data Encryption Capabilities page (0x0010).
627 * Tape Data Encryption Supported Key Formats page (0x0011).
636 * Tape Data Encryption Management Capabilities page (0x0012).
656 * Tape Data Encryption Status Page (0x0020).
[all …]
/freebsd/tests/sys/cddl/zfs/bin/
H A Dzfs_crypto.ksh37 options="-o encryption=$ENCRYPTION \
40 options="-o encryption=$ENCRYPTION \
43 options="-o encryption=$ENCRYPTION \

12345678910>>...57