qemu/qapi/crypto.json

43 # The supported algorithms for computing content digests
69 # The supported algorithms for content encryption ciphers
111 # The supported modes for content encryption ciphers
129 # The supported algorithms for generating initialization vectors for
130 # full disk encryption.  The 'plain' generator should not be used for
151 # @qcow: QCow/QCow2 built-in AES-CBC encryption.  Use only for
154 # @luks: LUKS encryption format.  Recommended for new images
179 #     decryption key.  Mandatory except when probing image for
193 #     decryption key.  Mandatory except when probing image for
206 # @cipher-alg: the cipher algorithm for data encryption.  Currently
209 # @cipher-mode: the cipher mode for data encryption.  Currently
238 # The options that are available for all encryption formats when
252 # The options that are available for all encryption formats when
285 # @iters: number of PBKDF2 iterations for key material
287 # @stripes: number of stripes for splitting key material
302 # @cipher-alg: the cipher algorithm for data encryption
304 # @cipher-mode: the cipher mode for data encryption
316 # @master-key-iters: number of PBKDF2 iterations for key material
318 # @uuid: unique identifier for the volume
374 # @old-secret: Optional (for deactivation only).  If given will
378 # @iter-time: Optional (for activation only).  Number of milliseconds to
379 #     spend in PBKDF passphrase processing for the newly activated
382 # @keyslot: Optional.  ID of the keyslot to activate/deactivate.  For
388 #     For keyslot deactivation, this parameter specifies the exact
408 # The options that are available for all encryption formats when
422 # Properties for objects of classes derived from secret-common.
431 # @iv: the random initialization vector used for encryption of this
446 # Properties for secret objects.
464 # Properties for secret_keyring objects.
478 # Properties for objects of classes derived from tls-creds.
481 #     handshake is completed.  This is a no-op for anonymous
504 # Properties for tls-creds-anon objects.
515 # Properties for tls-creds-psk objects.
517 # @username: the username which will be sent to the server.  For
530 # Properties for tls-creds-x509 objects.
535 # @passwordid: For the server-key.pem and client-key.pem files which
539 #     the password for decryption.
550 # The supported algorithms for asymmetric encryption ciphers
576 # The padding algorithm for RSA.
590 # Specific parameters for RSA algorithm.
605 # The options that are available for all asymmetric key algorithms