CryptBase

fxfs_crypt_common

Struct CryptBase 

Source 
pub struct CryptBase { /* private fields */ }
Expand description

CryptBase is a helper for managing wrapping keys and performing cryptographic operations.

Implementations§

Source§

impl CryptBase

Source

pub fn new() -> Self

Source

pub fn add_wrapping_key( &self, id: WrappingKeyId, key: [u8; 32], ) -> Result<(), Status>

Source

pub fn set_active_key( &self, purpose: KeyPurpose, id: WrappingKeyId, ) -> Result<(), Status>

Source

pub fn forget_wrapping_key(&self, id: &WrappingKeyId) -> Result<(), Status>

Source

pub fn shutdown(&self)

Source

pub fn set_filesystem_uuid(&mut self, uuid: &[u8; 16])

Fscrypt in INO_LBLK32 and INO_LBLK64 modes mix the filesystem_uuid into key derivation functions. Crypt should be told the uuid ahead of time to support decryption of migrated data. (Note that we make an assumption that there is only one filesystem.)

Source

pub fn use_fxfs_keys_for_fscrypt_dirs(&mut self)

Source

pub fn using_fxfs_keys_for_fscrypt_dirs(&self) -> bool

Trait Implementations§

Source§

impl Crypt for CryptBase

Source§

fn create_key<'life0, 'async_trait>( &'life0 self, owner: u64, purpose: KeyPurpose, ) -> Pin<Box<dyn Future<Output = Result<(FxfsKey, UnwrappedKey), Status>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait,

owner is intended to be used such that when the key is wrapped, it appears to be different to that of the same key wrapped by a different owner. In this way, keys can be shared amongst different filesystem objects (e.g. for clones), but it is not possible to tell just by looking at the wrapped keys.
Source§

fn create_key_with_id<'life0, 'async_trait>( &'life0 self, owner: u64, wrapping_key_id: WrappingKeyId, object_type: ObjectType, ) -> Pin<Box<dyn Future<Output = Result<(EncryptionKey, UnwrappedKey), Status>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait,

owner is intended to be used such that when the key is wrapped, it appears to be different to that of the same key wrapped by a different owner. In this way, keys can be shared amongst different filesystem objects (e.g. for clones), but it is not possible to tell just by looking at the wrapped keys.
Source§

fn unwrap_key<'life0, 'life1, 'async_trait>( &'life0 self, wrapped_key: &'life1 WrappedKey, owner: u64, ) -> Pin<Box<dyn Future<Output = Result<UnwrappedKey, Status>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait, 'life1: 'async_trait,

Unwraps a single key, returning a raw unwrapped key. This method is generally only used with StreamCipher and FF1. Returns zx::Status::UNAVAILABLE if the key is known but cannot be unwrapped (e.g. it is locked). Returns zx::Status::NOT_FOUND if the wrapping key is not known.
Source§

fn unwrap_keys<'life0, 'life1, 'async_trait>( &'life0 self, keys: &'life1 BTreeMap<u64, WrappedKey>, owner: u64, ) -> Pin<Box<dyn Future<Output = Result<CipherSet, Status>> + Send + 'async_trait>>
where 'life0: 'async_trait, 'life1: 'async_trait, Self: 'async_trait,

Unwraps object keys and stores the result as a CipherSet mapping key_id to: Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
§

impl<T, D> Encode<Ambiguous1, D> for T
where D: ResourceDialect,

§

unsafe fn encode( self, _encoder: &mut Encoder<'_, D>, _offset: usize, _depth: Depth, ) -> Result<(), Error>

Encodes the object into the encoder’s buffers. Any handles stored in the object are swapped for Handle::INVALID. Read more
§

impl<T, D> Encode<Ambiguous2, D> for T
where D: ResourceDialect,

§

unsafe fn encode( self, _encoder: &mut Encoder<'_, D>, _offset: usize, _depth: Depth, ) -> Result<(), Error>

Encodes the object into the encoder’s buffers. Any handles stored in the object are swapped for Handle::INVALID. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

§

impl<T> Pointable for T

§

const ALIGN: usize

The alignment of pointer.
§

type Init = T

The type for initializers.
§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V