Allocate key description in volume key.

The key description is now allocated by volume key wrappers.
2025-12-05 16:00:05 +01:00 · 2018-02-15 13:06:11 +01:00
parent d7686201dc
commit 1ac353d24e
6 changed files with 84 additions and 86 deletions
--- a/lib/luks2/luks2.h
+++ b/lib/luks2/luks2.h
@@ -353,9 +353,8 @@ int LUKS2_config_set_requirements(struct crypt_device *cd, struct luks2_hdr *hdr
 int LUKS2_unmet_requirements(struct crypt_device *cd, struct luks2_hdr *hdr, uint32_t reqs_mask, int quiet);

 int crypt_use_keyring_for_vk(const struct crypt_device *cd);
-int crypt_volume_key_load_in_keyring(struct crypt_device *cd, struct volume_key *vk);
+int crypt_volume_key_load_in_keyring_by_keyslot(struct crypt_device *cd, struct volume_key *vk, int keyslot);
 void crypt_drop_keyring_key(struct crypt_device *cd, const char *key_description);
-const char *crypt_get_key_description_by_keyslot(struct crypt_device *cd, int keyslot);
 int crypt_get_passphrase_from_keyring(const char *key_description,
 				      char **passphrase, size_t *passphrase_len);

--- a/lib/luks2/luks2_token.c
+++ b/lib/luks2/luks2_token.c
@@ -403,16 +403,14 @@ int LUKS2_token_open_and_activate(struct crypt_device *cd,

 	keyslot = r;

-	if ((name || (flags & CRYPT_ACTIVATE_KEYRING_KEY)) && crypt_use_keyring_for_vk(cd)) {
-		crypt_volume_key_set_description(vk, crypt_get_key_description_by_keyslot(cd, keyslot));
-		r = crypt_volume_key_load_in_keyring(cd, vk);
-	}
+	if ((name || (flags & CRYPT_ACTIVATE_KEYRING_KEY)) && crypt_use_keyring_for_vk(cd))
+		r = crypt_volume_key_load_in_keyring_by_keyslot(cd, vk, keyslot);

 	if (r >= 0 && name)
 		r = LUKS2_activate(cd, name, vk, flags);

-	if (r < 0)
-		crypt_drop_keyring_key(cd, crypt_volume_key_get_description(vk));
+	if (r < 0 && vk)
+		crypt_drop_keyring_key(cd, vk->key_description);
 	crypt_free_volume_key(vk);

 	return r < 0 ? r : keyslot;
@@ -449,16 +447,14 @@ int LUKS2_token_open_and_activate_any(struct crypt_device *cd,

 	keyslot = r;

-	if (r >= 0 && (name || (flags & CRYPT_ACTIVATE_KEYRING_KEY)) && crypt_use_keyring_for_vk(cd)) {
-		crypt_volume_key_set_description(vk, crypt_get_key_description_by_keyslot(cd, keyslot));
-		r = crypt_volume_key_load_in_keyring(cd, vk);
-	}
+	if (r >= 0 && (name || (flags & CRYPT_ACTIVATE_KEYRING_KEY)) && crypt_use_keyring_for_vk(cd))
+		r = crypt_volume_key_load_in_keyring_by_keyslot(cd, vk, keyslot);

 	if (r >= 0 && name)
 		r = LUKS2_activate(cd, name, vk, flags);

-	if (r < 0)
-		crypt_drop_keyring_key(cd, crypt_volume_key_get_description(vk));
+	if (r < 0 && vk)
+		crypt_drop_keyring_key(cd, vk->key_description);
 	crypt_free_volume_key(vk);

 	return r < 0 ? r : keyslot;