Site Navigation

FreeBSD Manual Pages

   man apropos
 
   All Sections 1 - General Commands 2 - System Calls 3 - Subroutines 4 - Special Files 5 - File Formats 6 - Games 7 - Macros and Conventions 8 - Maintenance Commands 9 - Kernel Interface n - New Commands FreeBSD 16.0-CURRENT FreeBSD 15.0-STABLE FreeBSD 14.3-RELEASE FreeBSD 14.3-RELEASE and Ports FreeBSD 14.3-STABLE FreeBSD 14.2-RELEASE FreeBSD 14.2-RELEASE and Ports FreeBSD 14.1-RELEASE FreeBSD 14.1-RELEASE and Ports FreeBSD 14.0-RELEASE FreeBSD 14.0-RELEASE and Ports FreeBSD 13.5-RELEASE FreeBSD 13.5-RELEASE and Ports FreeBSD 13.5-STABLE FreeBSD 13.4-RELEASE FreeBSD 13.4-RELEASE and Ports FreeBSD 13.3-RELEASE FreeBSD 13.3-RELEASE and Ports FreeBSD 13.2-RELEASE FreeBSD 13.2-RELEASE and Ports FreeBSD 13.1-RELEASE FreeBSD 13.1-RELEASE and Ports FreeBSD 13.0-RELEASE FreeBSD 13.0-RELEASE and Ports FreeBSD 12.4-RELEASE FreeBSD 12.4-RELEASE and Ports FreeBSD 12.3-RELEASE FreeBSD 12.3-RELEASE and Ports FreeBSD 12.2-RELEASE FreeBSD 12.2-RELEASE and Ports FreeBSD 12.1-RELEASE FreeBSD 12.1-RELEASE and Ports FreeBSD 12.0-RELEASE FreeBSD 12.0-RELEASE and Ports FreeBSD 11.4-RELEASE FreeBSD 11.4-RELEASE and Ports FreeBSD 11.3-RELEASE FreeBSD 11.3-RELEASE and Ports FreeBSD 11.2-RELEASE FreeBSD 11.2-RELEASE and Ports FreeBSD 11.1-RELEASE FreeBSD 11.1-RELEASE and Ports FreeBSD 11.0-RELEASE FreeBSD 11.0-RELEASE and Ports FreeBSD 10.4-RELEASE FreeBSD 10.4-RELEASE and Ports FreeBSD 10.3-RELEASE FreeBSD 10.3-RELEASE and Ports FreeBSD 10.2-RELEASE FreeBSD 10.2-RELEASE and Ports FreeBSD 10.1-RELEASE FreeBSD 10.1-RELEASE and Ports FreeBSD 10.0-RELEASE FreeBSD 10.0-RELEASE and Ports FreeBSD 9.3-RELEASE FreeBSD 9.3-RELEASE and Ports FreeBSD 9.2-RELEASE FreeBSD 9.2-RELEASE and Ports FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE and Ports FreeBSD 9.0-RELEASE FreeBSD 9.0-RELEASE and Ports FreeBSD 8.4-RELEASE FreeBSD 8.4-RELEASE and Ports FreeBSD 8.3-RELEASE FreeBSD 8.3-RELEASE and Ports FreeBSD 8.2-RELEASE FreeBSD 8.2-RELEASE and Ports FreeBSD 8.1-RELEASE FreeBSD 8.1-RELEASE and Ports FreeBSD 8.0-RELEASE FreeBSD 8.0-RELEASE and Ports FreeBSD 7.4-RELEASE FreeBSD 7.4-RELEASE and Ports FreeBSD 7.3-RELEASE FreeBSD 7.3-RELEASE and Ports FreeBSD 7.2-RELEASE FreeBSD 7.2-RELEASE and Ports FreeBSD 7.1-RELEASE FreeBSD 7.1-RELEASE and Ports FreeBSD 7.0-RELEASE FreeBSD 6.4-RELEASE FreeBSD 6.4-RELEASE and Ports FreeBSD 6.3-RELEASE FreeBSD 6.3-RELEASE and Ports FreeBSD 6.2-RELEASE FreeBSD 6.1-RELEASE FreeBSD 6.0-RELEASE FreeBSD 6.0-RELEASE and Ports FreeBSD 5.5-RELEASE FreeBSD 5.5-RELEASE and Ports FreeBSD 5.4-RELEASE FreeBSD 5.4-RELEASE and Ports FreeBSD 5.3-RELEASE FreeBSD 5.3-RELEASE and Ports FreeBSD 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE and Ports FreeBSD 5.2-RELEASE FreeBSD 5.2-RELEASE and Ports FreeBSD 5.1-RELEASE FreeBSD 5.0-RELEASE FreeBSD 4.11-RELEASE FreeBSD 4.11-RELEASE and Ports FreeBSD 4.10-RELEASE FreeBSD 4.10-RELEASE and Ports FreeBSD 4.9-RELEASE FreeBSD 4.9-RELEASE and Ports FreeBSD 4.8-RELEASE FreeBSD 4.8-RELEASE and Ports FreeBSD 4.7-RELEASE FreeBSD 4.6.2-RELEASE FreeBSD 4.6.2-RELEASE and Ports FreeBSD 4.6-RELEASE FreeBSD 4.6-RELEASE and Ports FreeBSD 4.5-RELEASE FreeBSD 4.5-RELEASE and Ports FreeBSD 4.4-RELEASE FreeBSD 4.3-RELEASE FreeBSD 4.3-RELEASE and Ports FreeBSD 4.2-RELEASE FreeBSD 4.2-RELEASE and Ports FreeBSD 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE and Ports FreeBSD 4.1-RELEASE FreeBSD 4.0-RELEASE FreeBSD 3.5.1-RELEASE FreeBSD 3.5.1-RELEASE and Ports FreeBSD 3.5-RELEASE and Ports FreeBSD 3.4-RELEASE FreeBSD 3.4-RELEASE and Ports FreeBSD 3.3-RELEASE FreeBSD 3.2-RELEASE FreeBSD 3.1-RELEASE FreeBSD 3.0-RELEASE FreeBSD 2.2.8-RELEASE FreeBSD 2.2.8-RELEASE and Ports FreeBSD 2.2.7-RELEASE FreeBSD 2.2.6-RELEASE FreeBSD 2.2.5-RELEASE FreeBSD 2.2.2-RELEASE FreeBSD 2.2.1-RELEASE FreeBSD 2.1.7.1-RELEASE FreeBSD 2.1.6.1-RELEASE FreeBSD 2.1.5-RELEASE FreeBSD 2.1.0-RELEASE FreeBSD 2.0.5-RELEASE FreeBSD 2.0-RELEASE FreeBSD 1.1.5.1-RELEASE FreeBSD 1.1-RELEASE FreeBSD 1.0-RELEASE FreeBSD Ports 14.3 FreeBSD Ports 14.3.quarterly FreeBSD Ports 14.2 FreeBSD Ports 14.1 FreeBSD Ports 14.0 FreeBSD Ports 13.5 FreeBSD Ports 13.4 FreeBSD Ports 13.3 FreeBSD Ports 13.2 FreeBSD Ports 13.1 FreeBSD Ports 13.0 FreeBSD Ports 12.4 FreeBSD Ports 12.3 FreeBSD Ports 12.2 FreeBSD Ports 12.1 FreeBSD Ports 12.0 FreeBSD Ports 11.4 FreeBSD Ports 11.3 FreeBSD Ports 11.2 FreeBSD Ports 11.1 FreeBSD Ports 11.0 FreeBSD Ports 10.4 FreeBSD Ports 10.3 FreeBSD Ports 10.2 FreeBSD Ports 10.1 FreeBSD Ports 10.0 FreeBSD Ports 9.3 FreeBSD Ports 9.2 FreeBSD Ports 9.1 FreeBSD Ports 9.0 FreeBSD Ports 8.4 FreeBSD Ports 8.3 FreeBSD Ports 8.2 FreeBSD Ports 8.1 FreeBSD Ports 8.0 FreeBSD Ports 7.4 FreeBSD Ports 7.3 FreeBSD Ports 7.2 FreeBSD Ports 7.1 FreeBSD Ports 7.0 FreeBSD Ports 6.4 FreeBSD Ports 6.3 FreeBSD Ports 6.2 FreeBSD Ports 6.0 FreeBSD Ports 5.5 FreeBSD Ports 5.4 FreeBSD Ports 5.3 FreeBSD Ports 5.2.1 FreeBSD Ports 5.2 FreeBSD Ports 5.1 FreeBSD Ports 4.11 FreeBSD Ports 4.10 FreeBSD Ports 4.9 FreeBSD Ports 4.8 FreeBSD Ports 4.7 FreeBSD Ports 4.6.2 FreeBSD Ports 4.6 FreeBSD Ports 4.5 FreeBSD Ports 4.3 FreeBSD Ports 4.2 FreeBSD Ports 4.1.1 FreeBSD Ports 3.5.1 FreeBSD Ports 3.5 FreeBSD Ports 3.4 FreeBSD Ports 2.2.8 4.4BSD Lite2 4.3BSD NET/2 4.3BSD Reno 2.11 BSD 2.10 BSD 2.9.1 BSD 2.8 BSD 386BSD 0.1 386BSD 0.0 CentOS 7.9 CentOS 7.8 CentOS 7.7 CentOS 7.6 CentOS 7.5 CentOS 7.4 CentOS 7.3 CentOS 7.2 CentOS 7.1 CentOS 7.0 CentOS 6.10 CentOS 6.9 CentOS 6.8 CentOS 6.7 CentOS 6.6 CentOS 6.5 CentOS 6.4 CentOS 6.3 CentOS 6.2 CentOS 6.1 CentOS 6.0 CentOS 5.11 CentOS 5.10 CentOS 5.9 CentOS 5.8 CentOS 5.7 CentOS 5.6 CentOS 5.5 CentOS 5.4 CentOS 4.8 CentOS 3.9 Darwin 8.0.1/ppc Darwin 7.0.1 Darwin 6.0.2/x86 Darwin 1.4.1/x86 Darwin 1.3.1/x86 Debian 14.0 unstable Debian 13.1.0 Debian 12.11.0 Debian 11.11.0 Debian 10.13.0 Debian 9.13.0 Debian 8.11.1 Debian 7.11.0 Debian 6.0.10 Debian 5.0.10 Debian 4.0.9 Debian 3.1.8 Debian 2.2.7 Debian 2.0.0 Dell UNIX SVR4 2.2 DragonFly 6.4.0 DragonFly 5.8.3 DragonFly 4.8.1 DragonFly 3.8.2 DragonFly 2.10.1 DragonFly 1.12.1 DragonFly 1.0A HP-UX 11.22 HP-UX 11.20 HP-UX 11.11 HP-UX 11.00 HP-UX 10.20 HP-UX 10.10 HP-UX 10.01 HP-UX 9.07 HP-UX 8.07 Inferno 4th Edition IRIX 6.5.30 Linux Slackware 3.1 MACH 2.5/i386 macOS 26.0 macOS 15.7 macOS 14.8 macOS 13.6.5 macOS 12.7.3 macOS 11.1 macOS 10.15.0 macOS 10.13.6 macOS 10.12.0 Minix 3.3.0 Minix 3.2.1 Minix 3.2.0 Minix 3.1.7 Minix 3.1.6 Minix 3.1.5 Minix 2.0.0 NetBSD 10.1 NetBSD 10.0 NetBSD 9.4 NetBSD 9.3 NetBSD 9.2 NetBSD 9.1 NetBSD 9.0 NetBSD 8.2 NetBSD 8.1 NetBSD 8.0 NetBSD 7.1 NetBSD 7.0 NetBSD 6.1.5 NetBSD 6.0 NetBSD 5.1 NetBSD 5.0 NetBSD 4.0.1 NetBSD 4.0 NetBSD 3.1 NetBSD 3.0 NetBSD 2.1 NetBSD 2.0.2 NetBSD 2.0 NetBSD 1.6.2 NetBSD 1.6.1 NetBSD 1.6 NetBSD 1.5.3 NetBSD 1.5.2 NetBSD 1.5.1 NetBSD 1.5 NetBSD 1.4.3 NetBSD 1.4.2 NetBSD 1.4.1 NetBSD 1.4 NetBSD 1.3.3 NetBSD 1.3.2 NetBSD 1.3.1 NetBSD 1.3 NetBSD 1.2.1 NetBSD 1.2 NetBSD 1.1 NetBSD 1.0 NeXTSTEP 3.3 OpenBSD 7.7 OpenBSD 7.6 OpenBSD 7.5 OpenBSD 7.4 OpenBSD 7.3 OpenBSD 7.2 OpenBSD 7.1 OpenBSD 7.0 OpenBSD 6.9 OpenBSD 6.8 OpenBSD 6.7 OpenBSD 6.6 OpenBSD 6.5 OpenBSD 6.4 OpenBSD 6.3 OpenBSD 6.2 OpenBSD 6.1 OpenBSD 6.0 OpenBSD 5.9 OpenBSD 5.8 OpenBSD 5.7 OpenBSD 5.6 OpenBSD 5.5 OpenBSD 5.4 OpenBSD 5.3 OpenBSD 5.2 OpenBSD 5.1 OpenBSD 5.0 OpenBSD 4.9 OpenBSD 4.8 OpenBSD 4.7 OpenBSD 4.6 OpenBSD 4.5 OpenBSD 4.4 OpenBSD 4.3 OpenBSD 4.2 OpenBSD 4.1 OpenBSD 4.0 OpenBSD 3.9 OpenBSD 3.8 OpenBSD 3.7 OpenBSD 3.6 OpenBSD 3.5 OpenBSD 3.4 OpenBSD 3.3 OpenBSD 3.2 OpenBSD 3.1 OpenBSD 3.0 OpenBSD 2.9 OpenBSD 2.8 OpenBSD 2.7 OpenBSD 2.6 OpenBSD 2.5 OpenBSD 2.4 OpenBSD 2.3 OpenBSD 2.2 OpenBSD 2.1 OpenBSD 2.0 OpenDarwin 7.2.1 OpenDarwin 6.6.2/x86 OpenDarwin 6.6.1/x86 OpenDarwin 20030208pre4/ppc OpenIndiana 2024.10 OpenIndiana 2022.10 OpenIndiana 2020.10 OpenIndiana 2017.10 OpenIndiana 2015.10 OpenIndiana 2013.08 OpenSolaris 2010.03 OpenSolaris 2009.06 OpenStep 4.2 openSUSE 42.3 openSUSE 42.2 openSUSE 42.1 openSUSE 16.0 openSUSE 15.6 openSUSE 15.5 openSUSE 15.4 openSUSE 15.3 openSUSE 15.2 openSUSE 15.1 openSUSE 15.0 openSUSE 13.2 openSUSE 13.1 openSUSE 11.4 openSUSE 11.3 openSUSE 11.2 openSUSE 10.3 openSUSE 10.2 OSF1 V5.1/alpha OSF1 V4.0/alpha OSF1 V1.0/mips Plan 9 Red Hat 9.0 Red Hat 8.0 Red Hat 7.3 Red Hat 7.2 Red Hat 7.1 Red Hat 7.0 Red Hat 6.2 Red Hat 6.1 Red Hat 5.2 Red Hat 5.0 Red Hat 4.2 Rhapsody DR1 Rhapsody DR2 Rocky 10.0 Rocky 9.6 Rocky 9.5 Rocky 9.4 Rocky 9.3 Rocky 9.2 Rocky 9.1 Rocky 9.0 Rocky 8.10 Rocky 8.9 Rocky 8.8 Rocky 8.7 Rocky 8.6 Rocky 8.5 Rocky 8.4 Rocky 8.3 Sun UNIX 0.4 SunOS 5.10 SunOS 5.9 SunOS 5.8 SunOS 5.7 SunOS 5.6 SunOS 5.5.1 SunOS 4.1.3 SuSE 11.3 SuSE 11.2 SuSE 11.1 SuSE 11.0 SuSE 10.3 SuSE 10.2 SuSE 10.1 SuSE 10.0 SuSE 9.3 SuSE 9.2 SuSE 8.2 SuSE 8.1 SuSE 8.0 SuSE 7.3 SuSE 7.2 SuSE 7.1 SuSE 7.0 SuSE 6.4 SuSE 6.3 SuSE 6.1 SuSE 6.0 SuSE 5.3 SuSE 5.2 SuSE 5.0 SuSE 4.3 SuSE ES 10 SP1 Ubuntu 24.04 noble Ubuntu 23.10 mantic Ubuntu 22.04 jammy Ubuntu 20.04 focal Ubuntu 18.04 bionic Ubuntu 16.04 xenial Ubuntu 14.04 trusty ULTRIX 4.2 Ultrix-32 2.0/VAX Unix Seventh Edition X11R7.4 X11R7.3.2 X11R7.2 X11R6.9.0 X11R6.8.2 X11R6.7.0 XFree86 4.8.0 XFree86 4.7.0 XFree86 4.6.0 XFree86 4.5.0 XFree86 4.4.0 XFree86 4.3.0 XFree86 4.2.99.3 XFree86 4.2.0 XFree86 4.1.0 XFree86 4.0.2 XFree86 4.0.1 XFree86 4.0 XFree86 3.3.6 XFree86 3.3 XFree86 2.1 All Architectures html pdf ascii

home | help

---

krb5_crypto(3)		  Heimdal Kerberos 5 library		krb5_crypto(3)

NAME
       krb5_crypto - Heimdal Kerberos 5	cryptography functions

SYNOPSIS
   Functions
       HEIMDAL_WARN_UNUSED_RESULT_ATTRIBUTE KRB5_LIB_FUNCTION krb5_error_code
	   KRB5_LIB_CALL krb5_generate_random (void *buf, size_t len)
       KRB5_LIB_FUNCTION void KRB5_LIB_CALL krb5_generate_random_block (void
	   *buf, size_t	len)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_enctype_valid
	   (krb5_context context, krb5_enctype etype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_cksumtype_to_enctype (krb5_context context, krb5_cksumtype
	   ctype, krb5_enctype *etype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_encrypt_iov_ivec
	   (krb5_context context, krb5_crypto crypto, unsigned usage,
	   krb5_crypto_iov *data, int num_data,	void *ivec)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_decrypt_iov_ivec
	   (krb5_context context, krb5_crypto crypto, unsigned usage,
	   krb5_crypto_iov *data, unsigned int num_data, void *ivec)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_create_checksum_iov (krb5_context context, krb5_crypto crypto,
	   unsigned usage, krb5_crypto_iov *data, unsigned int num_data,
	   krb5_cksumtype *type)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_verify_checksum_iov (krb5_context context, krb5_crypto crypto,
	   unsigned usage, krb5_crypto_iov *data, unsigned int num_data,
	   krb5_cksumtype *type)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_init
	   (krb5_context context, const	krb5_keyblock *key, krb5_enctype
	   etype, krb5_crypto *crypto)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_destroy
	   (krb5_context context, krb5_crypto crypto)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_crypto_getblocksize (krb5_context context, krb5_crypto crypto,
	   size_t *blocksize)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_getenctype
	   (krb5_context context, krb5_crypto crypto, krb5_enctype *enctype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_getpadsize
	   (krb5_context context, krb5_crypto crypto, size_t *padsize)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_crypto_getconfoundersize (krb5_context context,	krb5_crypto
	   crypto, size_t *confoundersize)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_enctype_disable
	   (krb5_context context, krb5_enctype enctype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_enctype_enable
	   (krb5_context context, krb5_enctype enctype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_allow_weak_crypto
	   (krb5_context context, krb5_boolean enable)
       KRB5_LIB_FUNCTION krb5_boolean KRB5_LIB_CALL krb5_is_enctype_weak
	   (krb5_context context, krb5_enctype enctype)
       KRB5_LIB_FUNCTION krb5_boolean KRB5_LIB_CALL
	   _krb5_enctype_requires_random_salt (krb5_context context,
	   krb5_enctype	enctype)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_random_to_key
	   (krb5_context context, krb5_enctype type, const void	*data, size_t
	   size, krb5_keyblock *key)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_fx_cf2
	   (krb5_context context, const	krb5_crypto crypto1, const krb5_crypto
	   crypto2, krb5_data *pepper1,	krb5_data *pepper2, krb5_enctype
	   enctype, krb5_keyblock *res)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_generate_subkey_extended (krb5_context context,	const
	   krb5_keyblock *key, krb5_enctype etype, krb5_keyblock **subkey)
       KRB5_LIB_FUNCTION void KRB5_LIB_CALL krb5_keyblock_zero (krb5_keyblock
	   *keyblock)
       KRB5_LIB_FUNCTION void KRB5_LIB_CALL krb5_free_keyblock_contents
	   (krb5_context context, krb5_keyblock	*keyblock)
       KRB5_LIB_FUNCTION void KRB5_LIB_CALL krb5_free_keyblock (krb5_context
	   context, krb5_keyblock *keyblock)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
	   krb5_copy_keyblock_contents (krb5_context context, const
	   krb5_keyblock *inblock, krb5_keyblock *to)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_copy_keyblock
	   (krb5_context context, const	krb5_keyblock *inblock,	krb5_keyblock
	   **to)
       KRB5_LIB_FUNCTION krb5_enctype KRB5_LIB_CALL krb5_keyblock_get_enctype
	   (const krb5_keyblock	*block)
       KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_keyblock_init
	   (krb5_context context, krb5_enctype type, const void	*data, size_t
	   size, krb5_keyblock *key)
       krb5_error_code _krb5_SP800_108_HMAC_KDF	(krb5_context context, const
	   krb5_data *kdf_K1, const krb5_data *kdf_label, const	krb5_data
	   *kdf_context, const EVP_MD *md, krb5_data *kdf_K0)

Detailed Description
Function Documentation
   KRB5_LIB_FUNCTION krb5_boolean KRB5_LIB_CALL
       _krb5_enctype_requires_random_salt (krb5_context	context, krb5_enctype
       enctype)
       Returns whether the encryption type should use randomly generated salts

       Parameters
	   context Kerberos 5 context
	   enctype encryption type to probe

       Returns
	   Returns true	if generated salts should have random component

   krb5_error_code _krb5_SP800_108_HMAC_KDF (krb5_context context, const
       krb5_data * kdf_K1, const krb5_data * kdf_label,	const krb5_data	*
       kdf_context, const EVP_MD * md, krb5_data * kdf_K0)
       As described in SP800-108 5.1 (for HMAC)

       Parameters
	   context Kerberos 5 context
	   kdf_K1 Base key material.
	   kdf_label A string that identifies the purpose for the derived key.
	   kdf_context A binary	string containing parties, nonce, etc.
	   md Message digest function to use for PRF.
	   kdf_K0 Derived key data.

       Returns
	   Return an error code	for an failure or 0 on success.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_allow_weak_crypto
       (krb5_context context, krb5_boolean enable)
       Enable or disable all weak encryption types

       Parameters
	   context Kerberos 5 context
	   enable true to enable, false	to disable

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_cksumtype_to_enctype
       (krb5_context context, krb5_cksumtype ctype, krb5_enctype * etype)
       Return the coresponding encryption type for a checksum type.

       Parameters
	   context Kerberos context
	   ctype The checksum type to get the result enctype for
	   etype The returned encryption, when the matching etype is not
	   found, etype	is set to ETYPE_NULL.

       Returns
	   Return an error code	for an failure or 0 on success.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_copy_keyblock
       (krb5_context context, const krb5_keyblock * inblock, krb5_keyblock **
       to)
       Copy a keyblock,	free the output	keyblock with krb5_free_keyblock().

       Parameters
	   context a Kerberos 5	context
	   inblock the key to copy
	   to the output key.

       Returns
	   0 on	success	or a Kerberos 5	error code

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_copy_keyblock_contents
       (krb5_context context, const krb5_keyblock * inblock, krb5_keyblock *
       to)
       Copy a keyblock,	free the output	keyblock with
       krb5_free_keyblock_contents().

       Parameters
	   context a Kerberos 5	context
	   inblock the key to copy
	   to the output key.

       Returns
	   0 on	success	or a Kerberos 5	error code

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_create_checksum_iov
       (krb5_context context, krb5_crypto crypto, unsigned usage,
       krb5_crypto_iov * data, unsigned	int num_data, krb5_cksumtype * type)
       Create a	Kerberos message checksum.

       Parameters
	   context Kerberos context
	   crypto Kerberos crypto context
	   usage Key usage for this buffer
	   data	array of buffers to process
	   num_data length of array
	   type	output data

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_destroy
       (krb5_context context, krb5_crypto crypto)
       Free a crypto context created by	krb5_crypto_init().

       Parameters
	   context Kerberos context
	   crypto crypto context to free

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_fx_cf2
       (krb5_context context, const krb5_crypto	crypto1, const krb5_crypto
       crypto2,	krb5_data * pepper1, krb5_data * pepper2, krb5_enctype
       enctype,	krb5_keyblock *	res)
       The FX-CF2 key derivation function, used	in FAST	and preauth framework.

       Parameters
	   context Kerberos 5 context
	   crypto1 first key to	combine
	   crypto2 second key to combine
	   pepper1 factor to combine with first	key to garante uniqueness
	   pepper2 factor to combine with second key to	garante	uniqueness
	   enctype the encryption type of the resulting	key
	   res allocated key, free with	krb5_free_keyblock_contents()

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_getblocksize
       (krb5_context context, krb5_crypto crypto, size_t * blocksize)
       Return the blocksize used algorithm referenced by the crypto context

       Parameters
	   context Kerberos context
	   crypto crypto context to query
	   blocksize the resulting blocksize

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL
       krb5_crypto_getconfoundersize (krb5_context context, krb5_crypto
       crypto, size_t *	confoundersize)
       Return the confounder size used by the crypto context

       Parameters
	   context Kerberos context
	   crypto crypto context to query
	   confoundersize the returned confounder size

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_getenctype
       (krb5_context context, krb5_crypto crypto, krb5_enctype * enctype)
       Return the encryption type used by the crypto context

       Parameters
	   context Kerberos context
	   crypto crypto context to query
	   enctype the resulting encryption type

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_getpadsize
       (krb5_context context, krb5_crypto crypto, size_t * padsize)
       Return the padding size used by the crypto context

       Parameters
	   context Kerberos context
	   crypto crypto context to query
	   padsize the return padding size

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_crypto_init
       (krb5_context context, const krb5_keyblock * key, krb5_enctype etype,
       krb5_crypto * crypto)
       Create a	crypto context used for	all encryption and signature
       operation. The encryption type to use is	taken from the key, but	can be
       overridden with the enctype parameter. This can be useful for
       encryptions types which is compatiable (DES for example).

       To free the crypto context, use krb5_crypto_destroy().

       Parameters
	   context Kerberos context
	   key the key block information with all key data
	   etype the encryption	type
	   crypto the resulting	crypto context

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION krb5_error_code KRB5_LIB_CALL krb5_decrypt_iov_ivec
       (krb5_context context, krb5_crypto crypto, unsigned usage,
       krb5_crypto_iov * data, unsigned	int num_data, void * ivec)
       Inline decrypt a	Kerberos message.

       Parameters
	   context Kerberos context
	   crypto Kerberos crypto context
	   usage Key usage for this buffer
	   data	array of buffers to process
	   num_data length of array
	   ivec	initial	cbc/cts	vector

       Returns
	   Return an error code	or 0.

       1.  KRB5_CRYPTO_TYPE_HEADER

       2.  one	    KRB5_CRYPTO_TYPE_DATA     and     array	[0,...]	    of
	   KRB5_CRYPTO_TYPE_SIGN_ONLY in any order, however the	receiver  have
	   to  aware of	the order. KRB5_CRYPTO_TYPE_SIGN_ONLY is commonly used
	   unencrypoted	protocol headers and trailers. The output data will be
	   of same size	as the input data or shorter.

   KRB5_LIB_FUNCTION   krb5_error_code	 KRB5_LIB_CALL	 krb5_encrypt_iov_ivec
       (krb5_context	context,    krb5_crypto	   crypto,   unsigned	usage,
       krb5_crypto_iov * data, int num_data, void * ivec)
       Inline encrypt a	kerberos message

       Parameters
	   context Kerberos context
	   crypto Kerberos crypto context
	   usage Key usage for this buffer
	   data	array of buffers to process
	   num_data length of array
	   ivec	initial	cbc/cts	vector

       Returns
	   Return an error code	or 0.

       Kerberos	encrypted data look like this:

       1.  KRB5_CRYPTO_TYPE_HEADER

       2.  array   [1,...]    KRB5_CRYPTO_TYPE_DATA    and    array    [0,...]
	   KRB5_CRYPTO_TYPE_SIGN_ONLY  in any order, however the receiver have
	   to aware of the order. KRB5_CRYPTO_TYPE_SIGN_ONLY is	commonly  used
	   headers and trailers.

       3.  KRB5_CRYPTO_TYPE_PADDING, at	least on padsize long if padsize > 1

       4.  KRB5_CRYPTO_TYPE_TRAILER

   KRB5_LIB_FUNCTION	krb5_error_code	  KRB5_LIB_CALL	  krb5_enctype_disable
       (krb5_context context, krb5_enctype enctype)
       Disable encryption type

       Parameters
	   context Kerberos 5 context
	   enctype encryption type to disable

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION   krb5_error_code	  KRB5_LIB_CALL	   krb5_enctype_enable
       (krb5_context context, krb5_enctype enctype)
       Enable encryption type

       Parameters
	   context Kerberos 5 context
	   enctype encryption type to enable

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION	krb5_error_code	   KRB5_LIB_CALL    krb5_enctype_valid
       (krb5_context context, krb5_enctype etype)
       Check if	a enctype is valid, return 0 if	it is.

       Parameters
	   context Kerberos context
	   etype enctype to check if its valid or not

       Returns
	   Return an error code	for  an	 failure  or  0	 on  success  (enctype
	   valid).

   KRB5_LIB_FUNCTION   void   KRB5_LIB_CALL  krb5_free_keyblock	 (krb5_context
       context,	krb5_keyblock *	keyblock)
       Free a keyblock,	also zero  out	the  content  of  the  keyblock,  uses
       krb5_free_keyblock_contents() to	free the content.

       Parameters
	   context a Kerberos 5	context
	   keyblock keyblock to	free, NULL is valid argument

   KRB5_LIB_FUNCTION	 void	  KRB5_LIB_CALL	   krb5_free_keyblock_contents
       (krb5_context context, krb5_keyblock * keyblock)
       Free a keyblock's content, also zero out	the content of the keyblock.

       Parameters
	   context a Kerberos 5	context
	   keyblock keyblock content to	free, NULL is valid argument

   HEIMDAL_WARN_UNUSED_RESULT_ATTRIBUTE	  KRB5_LIB_FUNCTION    krb5_error_code
       KRB5_LIB_CALL krb5_generate_random (void	* buf, size_t len)
       Fill buffer buf with len	bytes of PRNG randomness that is ok to use for
       key  generation,	 padding  and  public  diclosing  the  randomness  w/o
       disclosing the randomness source.

       This function can fail, and callers must	check the return value.

       Parameters
	   buf a buffer	to fill	with randomness
	   len length of memory	that buf points	to.

       Returns
	   return 0 on success or  HEIM_ERR_RANDOM_OFFLINE  if	the  funcation
	   failed to initialize	the randomness source.

   KRB5_LIB_FUNCTION  void  KRB5_LIB_CALL  krb5_generate_random_block  (void *
       buf, size_t len)
       Fill buffer buf with len	bytes of PRNG randomness that is ok to use for
       key  generation,	 padding  and  public  diclosing  the  randomness  w/o
       disclosing the randomness source.

       This  function  can  NOT	fail, instead it will abort() and program will
       crash.

       If this function	is called after	a successful krb5_init_context(),  the
       chance  of  it failing is low due to that krb5_init_context() pulls out
       some random, and	quite commonly the randomness sources  will  not  fail
       once it have started to produce good output, /dev/urandom behavies that
       way.

       Parameters
	   buf a buffer	to fill	with randomness
	   len length of memory	that buf points	to.

   KRB5_LIB_FUNCTION		   krb5_error_code		 KRB5_LIB_CALL
       krb5_generate_subkey_extended	 (krb5_context	   context,	 const
       krb5_keyblock * key, krb5_enctype etype,	krb5_keyblock ** subkey)
       Generate	subkey,	from keyblock

       Parameters
	   context kerberos context
	   key session key
	   etype encryption type of subkey, if ETYPE_NULL, use key's enctype
	   subkey returned new,	free with krb5_free_keyblock().

       Returns
	   0 on	success	or a Kerberos 5	error code

   KRB5_LIB_FUNCTION	 krb5_boolean	 KRB5_LIB_CALL	  krb5_is_enctype_weak
       (krb5_context context, krb5_enctype enctype)
       Returns is the encryption is strong or weak

       Parameters
	   context Kerberos 5 context
	   enctype encryption type to probe

       Returns
	   Returns true	if encryption type is weak or is not supported.

   KRB5_LIB_FUNCTION  krb5_enctype   KRB5_LIB_CALL   krb5_keyblock_get_enctype
       (const krb5_keyblock * block)
       Get encryption type of a	keyblock.

   KRB5_LIB_FUNCTION	krb5_error_code	   KRB5_LIB_CALL    krb5_keyblock_init
       (krb5_context context, krb5_enctype type, const	void  *	 data,	size_t
       size, krb5_keyblock * key)
       Fill  in	 `key'	with  key data of type `enctype' from `data' of	length
       `size'. Key should be freed using krb5_free_keyblock_contents().

       Returns
	   0 on	success	or a Kerberos 5	error code

   KRB5_LIB_FUNCTION void KRB5_LIB_CALL	 krb5_keyblock_zero  (krb5_keyblock  *
       keyblock)
       Zero out	a keyblock

       Parameters
	   keyblock keyblock to	zero out

   KRB5_LIB_FUNCTION	krb5_error_code	   KRB5_LIB_CALL    krb5_random_to_key
       (krb5_context context, krb5_enctype type, const	void  *	 data,	size_t
       size, krb5_keyblock * key)
       Converts	 the random bytestring to a protocol key according to Kerberos
       crypto frame work. It may be assumed that all the  bits	of  the	 input
       string  are  equally  random,  even  though  the	entropy	present	in the
       random source may be limited.

       Parameters
	   context Kerberos 5 context
	   type	the enctype resulting key will be of
	   data	input random data to convert to	a key
	   size	size of	input random  data,  at	 least	krb5_enctype_keysize()
	   long
	   key key, output key,	free with krb5_free_keyblock_contents()

       Returns
	   Return an error code	or 0.

   KRB5_LIB_FUNCTION  krb5_error_code  KRB5_LIB_CALL  krb5_verify_checksum_iov
       (krb5_context   context,	  krb5_crypto	 crypto,    unsigned	usage,
       krb5_crypto_iov * data, unsigned	int num_data, krb5_cksumtype * type)
       Verify a	Kerberos message checksum.

       Parameters
	   context Kerberos context
	   crypto Kerberos crypto context
	   usage Key usage for this buffer
	   data	array of buffers to process
	   num_data length of array
	   type	return checksum	type if	not NULL

       Returns
	   Return an error code	or 0.

Author
       Generated  automatically	by Doxygen for Heimdal Kerberos	5 library from
       the source code.

Version	7.8.0			Tue Nov	15 2022			krb5_crypto(3)

---

NAME | SYNOPSIS | Detailed Description | Function Documentation | Author

Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=krb5_decrypt_iov_ivec&sektion=3&manpath=FreeBSD+Ports+14.3.quarterly>

home | help

---

Legal Notices | © 1995-2025 The FreeBSD Project. All rights reserved.

Contact