From e96588b8b54e3fd7ebd0bf1bd2e65207643aaf80 Mon Sep 17 00:00:00 2001
From: Milan Broz <gmazyland@gmail.com>
Date: Fri, 18 Nov 2022 00:23:16 +0100
Subject: [PATCH] Check and allocate header early so wipe fails only for IO
 errors.

The device_check is done in header write functions,
but these are not recached in normal format path as wipe call
is called earlier.

Call the device check also from wipe function to get better error
description.

This situation happens for example when a block device is too small
(regular file can be enlarged by falloc(); block device cannot).
---
 lib/luks1/keymanage.c         | 4 ++++
 lib/luks2/luks2_json_format.c | 4 ++++
 2 files changed, 8 insertions(+)

diff --git a/lib/luks1/keymanage.c b/lib/luks1/keymanage.c
index 1da00895..abedf02a 100644
--- a/lib/luks1/keymanage.c
+++ b/lib/luks1/keymanage.c
@@ -1228,6 +1228,10 @@ int LUKS_wipe_header_areas(struct luks_phdr *hdr,
 	uint64_t offset, length;
 	size_t wipe_block;
 
+	r = LUKS_check_device_size(ctx, hdr, 1);
+	if (r)
+		return r;
+
 	/* Wipe complete header, keyslots and padding areas with zeroes. */
 	offset = 0;
 	length = (uint64_t)hdr->payloadOffset * SECTOR_SIZE;
diff --git a/lib/luks2/luks2_json_format.c b/lib/luks2/luks2_json_format.c
index ec3fe8ca..d7287344 100644
--- a/lib/luks2/luks2_json_format.c
+++ b/lib/luks2/luks2_json_format.c
@@ -362,6 +362,10 @@ int LUKS2_wipe_header_areas(struct crypt_device *cd,
 		wipe_block = 4096;
 	}
 
+	r = device_check_size(cd, crypt_metadata_device(cd), length, 1);
+	if (r)
+		return r;
+
 	log_dbg(cd, "Wiping LUKS areas (0x%06" PRIx64 " - 0x%06" PRIx64") with zeroes.",
 		offset, length + offset);