eessppeelllloo/cryptsetup
1
0
Fork 0
mirror of https://gitlab.com/cryptsetup/cryptsetup.git synced 2025-12-05 16:00:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
fd9be9e777c14ab70ba9d91233dc1d7c00ba9482
cryptsetup/lib/volumekey.c
Ondrej Kozina fd9be9e777 Add severeal helpers (get methods) for volume key. 
crypt_volume_key_length() for key length
crypt_volume_key_get_key() to access key data (if initialized)
crypt_volume_key_description() for kernel key description
crypt_volume_key_kernel_key_type() for kernel keyring key type
2025-02-16 18:00:20 +00:00

189 lines
3.5 KiB
C
Raw Blame History

// SPDX-License-Identifier: GPL-2.0-or-later
/*
* cryptsetup volume key implementation
*
* Copyright (C) 2004-2006 Clemens Fruhwirth <clemens@endorphin.org>
* Copyright (C) 2010-2025 Red Hat, Inc. All rights reserved.
*/
#include <string.h>
#include <stdint.h>
#include <stdlib.h>
#include <errno.h>
#include "internal.h"
struct volume_key *crypt_alloc_volume_key(size_t keylength, const char *key)
{
struct volume_key *vk;
if (keylength > (SIZE_MAX - sizeof(*vk)))
return NULL;
vk = crypt_safe_alloc(sizeof(*vk) + keylength);
if (!vk)
return NULL;
vk->keyring_key_type = INVALID_KEY;
vk->keylength = keylength;
vk->id = KEY_NOT_VERIFIED;
/* keylength 0 is valid => no key */
if (vk->keylength) {
if (key)
crypt_safe_memcpy(&vk->key, key, keylength);
else
crypt_safe_memzero(&vk->key, keylength);
}
return vk;
}
const char *crypt_volume_key_get_key(const struct volume_key *vk)
{
assert(vk);
return (const char *)vk->key;
}
size_t crypt_volume_key_length(const struct volume_key *vk)
{
assert(vk);
return vk->keylength;
}
int crypt_volume_key_set_description(struct volume_key *vk,
const char *key_description, key_type_t keyring_key_type)
{
if (!vk)
return -EINVAL;
free(CONST_CAST(void*)vk->key_description);
vk->key_description = NULL;
vk->keyring_key_type = keyring_key_type;
if (key_description && !(vk->key_description = strdup(key_description)))
return -ENOMEM;
return 0;
}
int crypt_volume_key_set_description_by_name(struct volume_key *vk, const char *key_name)
{
const char *key_description = NULL;
key_type_t keyring_key_type = keyring_type_and_name(key_name, &key_description);
if (keyring_key_type == INVALID_KEY)
return -EINVAL;
return crypt_volume_key_set_description(vk, key_description, keyring_key_type);
}
const char *crypt_volume_key_description(const struct volume_key *vk)
{
assert(vk);
return vk->key_description;
}
key_type_t crypt_volume_key_kernel_key_type(const struct volume_key *vk)
{
assert(vk);
return vk->keyring_key_type;
}
void crypt_volume_key_set_id(struct volume_key *vk, int id)
{
if (vk && id >= 0)
vk->id = id;
}
int crypt_volume_key_get_id(const struct volume_key *vk)
{
return vk ? vk->id : -1;
}
struct volume_key *crypt_volume_key_by_id(struct volume_key *vks, int id)
{
struct volume_key *vk = vks;
if (id < 0)
return NULL;
while (vk && vk->id != id)
vk = vk->next;
return vk;
}
void crypt_volume_key_add_next(struct volume_key **vks, struct volume_key *vk)
{
struct volume_key *tmp;
if (!vks)
return;
if (!*vks) {
*vks = vk;
return;
}
tmp = *vks;
while (tmp->next)
tmp = tmp->next;
tmp->next = vk;
}
struct volume_key *crypt_volume_key_next(struct volume_key *vk)
{
return vk ? vk->next : NULL;
}
void crypt_free_volume_key(struct volume_key *vk)
{
struct volume_key *vk_next;
while (vk) {
free(CONST_CAST(void*)vk->key_description);
vk_next = vk->next;
crypt_safe_free(vk);
vk = vk_next;
}
}
struct volume_key *crypt_generate_volume_key(struct crypt_device *cd, size_t keylength,
key_quality_info quality)
{
int r;
struct volume_key *vk;
vk = crypt_alloc_volume_key(keylength, NULL);
if (!vk)
return NULL;
switch (quality) {
case KEY_QUALITY_KEY:
r = crypt_random_get(cd, vk->key, keylength, CRYPT_RND_KEY);
break;
case KEY_QUALITY_NORMAL:
r = crypt_random_get(cd, vk->key, keylength, CRYPT_RND_NORMAL);
break;
case KEY_QUALITY_EMPTY:
r = 0;
break;
default:
abort();
}
if (r) {
crypt_free_volume_key(vk);
vk = NULL;
}
return vk;
}
Reference in New Issue View Git Blame Copy Permalink