1*d8f839f9SJason King#!/bin/ksh -p
2*d8f839f9SJason King#
3*d8f839f9SJason King# CDDL HEADER START
4*d8f839f9SJason King#
5*d8f839f9SJason King# This file and its contents are supplied under the terms of the
6*d8f839f9SJason King# Common Development and Distribution License ("CDDL"), version 1.0.
7*d8f839f9SJason King# You may only use this file in accordance with the terms of version
8*d8f839f9SJason King# 1.0 of the CDDL.
9*d8f839f9SJason King#
10*d8f839f9SJason King# A full copy of the text of the CDDL should have accompanied this
11*d8f839f9SJason King# source.  A copy of the CDDL is also available via the Internet at
12*d8f839f9SJason King# http://www.illumos.org/license/CDDL.
13*d8f839f9SJason King#
14*d8f839f9SJason King# CDDL HEADER END
15*d8f839f9SJason King#
16*d8f839f9SJason King
17*d8f839f9SJason King#
18*d8f839f9SJason King# Copyright 2020 Joyent, Inc.
19*d8f839f9SJason King#
20*d8f839f9SJason King
21*d8f839f9SJason King. $STF_SUITE/include/libtest.shlib
22*d8f839f9SJason King. $STF_SUITE/tests/functional/cli_root/zfs_load-key/zfs_load-key_common.kshlib
23*d8f839f9SJason King. $STF_SUITE/tests/functional/channel_program/channel_common.kshlib
24*d8f839f9SJason King
25*d8f839f9SJason King#
26*d8f839f9SJason King# DESCRIPTION:
27*d8f839f9SJason King#	Try to change an encrypted dataset key via a ZFS channel program
28*d8f839f9SJason King
29*d8f839f9SJason Kingverify_runnable "both"
30*d8f839f9SJason King
31*d8f839f9SJason Kingfunction cleanup
32*d8f839f9SJason King{
33*d8f839f9SJason King	datasetexists $TESTPOOL/$TESTFS1 && \
34*d8f839f9SJason King		log_must zfs destroy -f $TESTPOOL/$TESTFS1
35*d8f839f9SJason King}
36*d8f839f9SJason Kinglog_onexit cleanup
37*d8f839f9SJason King
38*d8f839f9SJason Kinglog_assert "zfs.sync.change_key should change key material"
39*d8f839f9SJason King
40*d8f839f9SJason Kinglog_must eval "echo $HEXKEY | zfs create -o encryption=on" \
41*d8f839f9SJason King        "-o keyformat=hex -o keylocation=prompt $TESTPOOL/$TESTFS1"
42*d8f839f9SJason King
43*d8f839f9SJason Kinglog_must $ZCP_ROOT/synctask_core/change_key.exe $TESTPOOL/$TESTFS1 $HEXKEY1
44*d8f839f9SJason King
45*d8f839f9SJason King# Key shouldn't appear in zpool history when using change_key.exe
46*d8f839f9SJason Kinglog_mustnot eval "zfs history -il $TESTPOOL | grep $HEXKEY1"
47*d8f839f9SJason King
48*d8f839f9SJason Kinglog_must zfs unmount $TESTPOOL/$TESTFS1
49*d8f839f9SJason Kinglog_must zfs unload-key $TESTPOOL/$TESTFS1
50*d8f839f9SJason King
51*d8f839f9SJason Kinglog_mustnot eval "echo $HEXKEY | zfs load-key $TESTPOOL/$TESTFS1"
52*d8f839f9SJason Kinglog_must key_unavailable $TESTPOOL/$TESTFS1
53*d8f839f9SJason King
54*d8f839f9SJason Kinglog_must eval "echo $HEXKEY1 | zfs load-key $TESTPOOL/$TESTFS1"
55*d8f839f9SJason King
56*d8f839f9SJason Kinglog_pass "zfs.sync.change_key should change key material"
57