1*d8f839f9SJason King#!/bin/ksh -p 2*d8f839f9SJason King# 3*d8f839f9SJason King# CDDL HEADER START 4*d8f839f9SJason King# 5*d8f839f9SJason King# This file and its contents are supplied under the terms of the 6*d8f839f9SJason King# Common Development and Distribution License ("CDDL"), version 1.0. 7*d8f839f9SJason King# You may only use this file in accordance with the terms of version 8*d8f839f9SJason King# 1.0 of the CDDL. 9*d8f839f9SJason King# 10*d8f839f9SJason King# A full copy of the text of the CDDL should have accompanied this 11*d8f839f9SJason King# source. A copy of the CDDL is also available via the Internet at 12*d8f839f9SJason King# http://www.illumos.org/license/CDDL. 13*d8f839f9SJason King# 14*d8f839f9SJason King# CDDL HEADER END 15*d8f839f9SJason King# 16*d8f839f9SJason King 17*d8f839f9SJason King# 18*d8f839f9SJason King# Copyright 2020 Joyent, Inc. 19*d8f839f9SJason King# 20*d8f839f9SJason King 21*d8f839f9SJason King. $STF_SUITE/include/libtest.shlib 22*d8f839f9SJason King. $STF_SUITE/tests/functional/cli_root/zfs_load-key/zfs_load-key_common.kshlib 23*d8f839f9SJason King. $STF_SUITE/tests/functional/channel_program/channel_common.kshlib 24*d8f839f9SJason King 25*d8f839f9SJason King# 26*d8f839f9SJason King# DESCRIPTION: 27*d8f839f9SJason King# Try to change an encrypted dataset key via a ZFS channel program 28*d8f839f9SJason King 29*d8f839f9SJason Kingverify_runnable "both" 30*d8f839f9SJason King 31*d8f839f9SJason Kingfunction cleanup 32*d8f839f9SJason King{ 33*d8f839f9SJason King datasetexists $TESTPOOL/$TESTFS1 && \ 34*d8f839f9SJason King log_must zfs destroy -f $TESTPOOL/$TESTFS1 35*d8f839f9SJason King} 36*d8f839f9SJason Kinglog_onexit cleanup 37*d8f839f9SJason King 38*d8f839f9SJason Kinglog_assert "zfs.sync.change_key should change key material" 39*d8f839f9SJason King 40*d8f839f9SJason Kinglog_must eval "echo $HEXKEY | zfs create -o encryption=on" \ 41*d8f839f9SJason King "-o keyformat=hex -o keylocation=prompt $TESTPOOL/$TESTFS1" 42*d8f839f9SJason King 43*d8f839f9SJason Kinglog_must $ZCP_ROOT/synctask_core/change_key.exe $TESTPOOL/$TESTFS1 $HEXKEY1 44*d8f839f9SJason King 45*d8f839f9SJason King# Key shouldn't appear in zpool history when using change_key.exe 46*d8f839f9SJason Kinglog_mustnot eval "zfs history -il $TESTPOOL | grep $HEXKEY1" 47*d8f839f9SJason King 48*d8f839f9SJason Kinglog_must zfs unmount $TESTPOOL/$TESTFS1 49*d8f839f9SJason Kinglog_must zfs unload-key $TESTPOOL/$TESTFS1 50*d8f839f9SJason King 51*d8f839f9SJason Kinglog_mustnot eval "echo $HEXKEY | zfs load-key $TESTPOOL/$TESTFS1" 52*d8f839f9SJason Kinglog_must key_unavailable $TESTPOOL/$TESTFS1 53*d8f839f9SJason King 54*d8f839f9SJason Kinglog_must eval "echo $HEXKEY1 | zfs load-key $TESTPOOL/$TESTFS1" 55*d8f839f9SJason King 56*d8f839f9SJason Kinglog_pass "zfs.sync.change_key should change key material" 57