| /Linux-v4.19/Documentation/x86/ |
| D | amd-memory-encryption.txt | 17 A page is encrypted when a page table entry has the encryption bit set (see
18 below on how to determine its position). The encryption bit can also be
20 successive level of page tables can also be encrypted by setting the encryption
23 encryption bit is set in cr3, doesn't imply the full hierarchy is encrypted.
24 Each page table entry in the hierarchy needs to have the encryption bit set to
25 achieve that. So, theoretically, you could have the encryption bit set in cr3
26 so that the PGD is encrypted, but not set the encryption bit in the PGD entry
32 memory. Since the memory encryption bit is controlled by the guest OS when it
34 forces the memory encryption bit to 1.
44 encryption
[all …]
|
| /Linux-v4.19/Documentation/filesystems/ |
| D | fscrypt.rst | 2 Filesystem-level encryption (fscrypt)
9 transparent encryption of files and directories.
15 use encryption, see the documentation for the userspace tool `fscrypt
20 <https://source.android.com/security/encryption/file-based>`_, over
56 Provided that userspace chooses a strong encryption key, fscrypt
72 fscrypt (and storage encryption in general) can only provide limited
83 After an encryption key has been provided, fscrypt is not designed to
88 Also note that as long as the encryption keys are *anywhere* in
99 some of the encryption keys as well. (Since Linux v4.12, all
116 encryption modes being used. For example, if AES-256-XTS is used for
[all …]
|
| /Linux-v4.19/Documentation/device-mapper/ |
| D | dm-crypt.txt | 4 Device-Mapper's "crypt" target provides transparent encryption of block devices
14 Encryption cipher, encryption mode and Initial Vector (IV) generator.
41 Key used for encryption. It is encoded either as a hexadecimal number
55 The encryption key size in bytes. The kernel key payload size must match
101 Perform encryption using the same cpu that IO was submitted on.
102 The default is to use an unbound workqueue so that encryption work
106 Disable offloading writes to a separate thread after encryption.
108 encryption threads to a single thread degrades performance
126 Use <bytes> as the encryption unit instead of 512 bytes sectors.
142 encryption with dm-crypt using the 'cryptsetup' utility, see
[all …]
|
| /Linux-v4.19/fs/crypto/ |
| D | Kconfig | 2 tristate "FS Encryption (Per-file encryption)"
13 Enable encryption of files and directories. This
|
| /Linux-v4.19/Documentation/crypto/ |
| D | descore-readme.txt | 4 des - fast & portable DES encryption & decryption.
30 1. Highest possible encryption/decryption PERFORMANCE.
50 30us per encryption (options: 64k tables, no IP/FP)
51 33us per encryption (options: 64k tables, FIPS standard bit ordering)
52 45us per encryption (options: 2k tables, no IP/FP)
53 48us per encryption (options: 2k tables, FIPS standard bit ordering)
55 this has the quickest encryption/decryption routines i've seen.
66 53us per encryption (uses 2k of tables)
70 encryption/decryption is still slower on the sparc and 68000.
84 68us per encryption (uses 2k of tables)
[all …]
|
| D | userspace-if.rst | 95 to provide different memory pointers for the encryption and decryption
159 should be processed for encryption or decryption. In addition, the IV is
170 - ALG_OP_ENCRYPT - encryption of data
218 should be processed for encryption or decryption. In addition, the IV is
229 - ALG_OP_ENCRYPT - encryption of data
277 - AEAD encryption input: AAD \|\| plaintext
284 - AEAD encryption output: ciphertext \|\| authentication tag
375 AEAD ciphers. For a encryption operation, the authentication tag of
|
| D | crypto_engine.rst | 32 - do_one_request: (taking a function pointer) Do encryption for current request
|
| /Linux-v4.19/Documentation/virtual/kvm/ |
| D | amd-memory-encryption.rst | 29 Bit[23] 1 = memory encryption can be enabled
30 0 = memory encryption can not be enabled
33 Bit[0] 1 = memory encryption can be enabled
34 0 = memory encryption can not be enabled
43 SEV hardware uses ASIDs to associate a memory encryption key with a VM.
70 The KVM_SEV_LAUNCH_START command is used for creating the memory encryption
71 context. To create the encryption context, user must provide a guest policy,
|
| D | 00-INDEX | 3 amd-memory-encryption.rst
|
| /Linux-v4.19/drivers/net/wireless/cisco/ |
| D | Kconfig | 25 - with or without encryption) as well as card before the Cisco
47 - with or without encryption) as well as card before the Cisco
|
| /Linux-v4.19/fs/cifs/ |
| D | smb2transport.c | 320 struct derivation encryption; member
336 rc = generate_key(ses, ptriplet->encryption.label, in generate_smb3signingkey()
337 ptriplet->encryption.context, ses->smb3encryptionkey, in generate_smb3signingkey()
382 d = &triplet.encryption; in generate_smb30signingkey()
410 d = &triplet.encryption; in generate_smb311signingkey()
|
| D | Kconfig | 40 (smbdirect), advanced security features, per-share encryption,
174 bool "Dump encryption keys for offline decryption (Unsafe)"
177 Enabling this will dump the encryption and decryption keys
|
| /Linux-v4.19/net/tls/ |
| D | Kconfig | 14 encryption handling of the TLS protocol to be done in-kernel.
|
| /Linux-v4.19/Documentation/filesystems/pohmelfs/ |
| D | design_notes.txt | 32 * Strong authentication and possible data encryption in network channel.
65 POHMELFS is capable of full data channel encryption and/or strong crypto hashing.
66 One can select any kernel supported cipher, encryption mode, hash type and operation mode
|
| /Linux-v4.19/drivers/net/wireless/ |
| D | ray_cs.h | 51 UCHAR encryption; member
|
| /Linux-v4.19/fs/ecryptfs/ |
| D | Kconfig | 21 for userspace to wrap/unwrap file encryption keys by other
|
| /Linux-v4.19/Documentation/networking/mac80211_hwsim/ |
| D | README | 36 radio. Software encryption in mac80211 is used so that the frames are
38 complete testing of encryption.
|
| /Linux-v4.19/arch/arm/crypto/ |
| D | Kconfig | 83 and for XTS mode encryption, CBC and XTS mode decryption speedup is
84 around 25%. (CBC encryption speed is not affected by this driver.)
|
| /Linux-v4.19/fs/coda/ |
| D | Kconfig | 10 replication, security model for authentication and encryption,
|
| /Linux-v4.19/drivers/isdn/mISDN/ |
| D | Kconfig | 20 echo cancellation, tone generation, and Blowfish encryption and
|
| /Linux-v4.19/drivers/crypto/ccp/ |
| D | Kconfig | 20 which can be used to offload encryption operations such as SHA, AES
|
| /Linux-v4.19/drivers/crypto/nx/ |
| D | Kconfig | 9 Support for PowerPC Nest (NX) encryption acceleration. This
|
| /Linux-v4.19/crypto/ |
| D | Kconfig | 410 This IV generator generates an IV based on the encryption of
450 for AES encryption.
524 XCBC: Keyed-Hashing with encryption algorithm
526 http://csrc.nist.gov/encryption/modes/proposedmodes/
1052 solely on encryption (although decryption is supported as well, but
1055 Instead of using 16 lookup tables of 1 KB each, (8 for encryption and
1081 See <http://csrc.nist.gov/encryption/aes/> for more information.
1103 See <http://csrc.nist.gov/encryption/aes/> for more information.
1132 See <http://csrc.nist.gov/encryption/aes/> for more information.
1161 See <http://csrc.nist.gov/encryption/aes/> for more information.
[all …]
|
| /Linux-v4.19/arch/x86/platform/ce4100/ |
| D | falconfalls.dts | 182 entertainment-encryption@9,0 {
386 entertainment-encryption@10,0 {
|
| /Linux-v4.19/fs/ext4/ |
| D | sysfs.c | 228 EXT4_ATTR_FEATURE(encryption);
237 ATTR_LIST(encryption),
|
