internal.h 7.91 KB
Newer Older
Milan Broz's avatar
Milan Broz committed
1 2 3
/*
 * libcryptsetup - cryptsetup library internal
 *
Milan Broz's avatar
Milan Broz committed
4
 * Copyright (C) 2004, Jana Saout <jana@saout.de>
Milan Broz's avatar
Milan Broz committed
5
 * Copyright (C) 2004-2007, Clemens Fruhwirth <clemens@endorphin.org>
Milan Broz's avatar
Milan Broz committed
6 7
 * Copyright (C) 2009-2017, Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2017, Milan Broz
Milan Broz's avatar
Milan Broz committed
8 9 10
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
11 12
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
Milan Broz's avatar
Milan Broz committed
13 14 15 16 17 18 19 20 21 22 23
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

24 25 26 27 28
#ifndef INTERNAL_H
#define INTERNAL_H

#include <stdint.h>
#include <stdarg.h>
29
#include <stdbool.h>
30
#include <unistd.h>
31
#include <inttypes.h>
32

33
#include "nls.h"
34
#include "bitops.h"
35
#include "utils_crypt.h"
36
#include "utils_loop.h"
37
#include "utils_dm.h"
38
#include "utils_fips.h"
39
#include "utils_keyring.h"
40
#include "crypto_backend.h"
41

42 43
#include "libcryptsetup.h"

44 45 46
/* to silent gcc -Wcast-qual for const cast */
#define CONST_CAST(x) (x)(uintptr_t)

47 48
#define SECTOR_SHIFT		9
#define SECTOR_SIZE		(1 << SECTOR_SHIFT)
49
#define MAX_SECTOR_SIZE		4096 /* min page size among all platforms */
50 51
#define DEFAULT_DISK_ALIGNMENT	1048576 /* 1MiB */
#define DEFAULT_MEM_ALIGNMENT	4096
52
#define MAX_ERROR_LENGTH	512
53

54
#define MAX_PBKDF_THREADS	4
Milan Broz's avatar
Milan Broz committed
55
#define MAX_PBKDF_MEMORY	1024*1024 /* 1GiB */
56
#define MIN_PBKDF2_ITERATIONS	1000 /* recommendation in NIST SP 800-132 */
Milan Broz's avatar
Milan Broz committed
57

58
#define at_least(a, b) ({ __typeof__(a) __at_least = (a); (__at_least >= (b))?__at_least:(b); })
59

60 61
struct crypt_device;

62 63
struct volume_key {
	size_t keylength;
64
	const char *key_description;
65 66
	char key[];
};
67

68
struct volume_key *crypt_alloc_volume_key(size_t keylength, const char *key);
69
struct volume_key *crypt_generate_volume_key(struct crypt_device *cd, size_t keylength);
70
void crypt_free_volume_key(struct volume_key *vk);
71 72
void crypt_volume_key_set_description(struct volume_key *key, const char *key_description);
const char *crypt_volume_key_get_description(const struct volume_key *key);
73

74 75 76 77 78 79
struct crypt_pbkdf_type *crypt_get_pbkdf(struct crypt_device *cd);
int init_pbkdf_type(struct crypt_device *cd,
		    const struct crypt_pbkdf_type *pbkdf,
		    const char *dev_type);
int verify_pbkdf_params(struct crypt_device *cd,
			const struct crypt_pbkdf_type *pbkdf);
80 81 82 83
int crypt_benchmark_pbkdf_internal(struct crypt_device *cd,
				   struct crypt_pbkdf_type *pbkdf,
				   size_t volume_key_size);

Milan Broz's avatar
Milan Broz committed
84 85 86
/* Device backend */
struct device;
int device_alloc(struct device **device, const char *path);
87
int device_alloc_no_check(struct device **device, const char *path);
Milan Broz's avatar
Milan Broz committed
88 89
void device_free(struct device *device);
const char *device_path(const struct device *device);
90
const char *device_dm_name(const struct device *device);
Milan Broz's avatar
Milan Broz committed
91 92 93 94 95
const char *device_block_path(const struct device *device);
void device_topology_alignment(struct device *device,
			    unsigned long *required_alignment, /* bytes */
			    unsigned long *alignment_offset,   /* bytes */
			    unsigned long default_alignment);
96
size_t device_block_size(struct device *device);
Milan Broz's avatar
Milan Broz committed
97 98
int device_read_ahead(struct device *device, uint32_t *read_ahead);
int device_size(struct device *device, uint64_t *size);
99
int device_open(struct device *device, int flags);
100
void device_disable_direct_io(struct device *device);
101
int device_is_identical(struct device *device1, struct device *device2);
102
int device_is_rotational(struct device *device);
103
size_t device_alignment(struct device *device);
104
int device_direct_io(const struct device *device);
105
int device_fallocate(struct device *device, uint64_t size);
106 107 108 109 110 111

int device_open_locked(struct device *device, int flags);
int device_read_lock(struct crypt_device *cd, struct device *device);
int device_write_lock(struct crypt_device *cd, struct device *device);
void device_read_unlock(struct device *device);
void device_write_unlock(struct device *device);
Milan Broz's avatar
Milan Broz committed
112 113

enum devcheck { DEV_OK = 0, DEV_EXCL = 1, DEV_SHARED = 2 };
114 115 116
int device_check_access(struct crypt_device *cd,
			struct device *device,
			enum devcheck device_check);
Milan Broz's avatar
Milan Broz committed
117 118 119 120 121 122
int device_block_adjust(struct crypt_device *cd,
			struct device *device,
			enum devcheck device_check,
			uint64_t device_offset,
			uint64_t *size,
			uint32_t *flags);
123
size_t size_round_up(size_t size, size_t block);
Milan Broz's avatar
Milan Broz committed
124 125 126 127 128

/* Receive backend devices from context helpers */
struct device *crypt_metadata_device(struct crypt_device *cd);
struct device *crypt_data_device(struct crypt_device *cd);

129
int crypt_confirm(struct crypt_device *cd, const char *msg);
130

131
char *crypt_lookup_dev(const char *dev_id);
Milan Broz's avatar
Milan Broz committed
132 133
int crypt_dev_is_rotational(int major, int minor);
int crypt_dev_is_partition(const char *dev_path);
134
char *crypt_get_partition_device(const char *dev_path, uint64_t offset, uint64_t size);
135 136
char *crypt_get_base_device(const char *dev_path);
uint64_t crypt_dev_partition_offset(const char *dev_path);
137 138
int lookup_by_disk_id(const char *dm_uuid);
int lookup_by_sysfs_uuid_field(const char *dm_uuid, size_t max_len);
139

140 141
ssize_t write_buffer(int fd, const void *buf, size_t count);
ssize_t read_buffer(int fd, void *buf, size_t count);
142 143 144 145
ssize_t write_blockwise(int fd, size_t bsize, size_t alignment, void *orig_buf, size_t count);
ssize_t read_blockwise(int fd, size_t bsize, size_t alignment, void *buf, size_t count);
ssize_t write_lseek_blockwise(int fd, size_t bsize, size_t alignment, void *buf, size_t count, off_t offset);
ssize_t read_lseek_blockwise(int fd, size_t bsize, size_t alignment, void *buf, size_t count, off_t offset);
146

147
size_t crypt_getpagesize(void);
Milan Broz's avatar
Milan Broz committed
148
unsigned crypt_cpusonline(void);
149
uint64_t crypt_getphysmemory_kb(void);
Milan Broz's avatar
Milan Broz committed
150

151
int init_crypto(struct crypt_device *ctx);
152

153
void logger(struct crypt_device *cd, int class, const char *file, int line, const char *format, ...) __attribute__ ((format (printf, 5, 6)));
154 155
#define log_dbg(x...) logger(NULL, CRYPT_LOG_DEBUG, __FILE__, __LINE__, x)
#define log_std(c, x...) logger(c, CRYPT_LOG_NORMAL, __FILE__, __LINE__, x)
156
#define log_verbose(c, x...) logger(c, CRYPT_LOG_VERBOSE, __FILE__, __LINE__, x)
Milan Broz's avatar
Milan Broz committed
157
#define log_err(c, x...) logger(c, CRYPT_LOG_ERROR, __FILE__, __LINE__, x)
158

159 160
int crypt_get_debug_level(void);

161 162
int crypt_memlock_inc(struct crypt_device *ctx);
int crypt_memlock_dec(struct crypt_device *ctx);
163

164 165
int crypt_metadata_locking_enabled(void);

166 167 168 169 170
int crypt_random_init(struct crypt_device *ctx);
int crypt_random_get(struct crypt_device *ctx, char *buf, size_t len, int quality);
void crypt_random_exit(void);
int crypt_random_default_key_rng(void);

171 172 173 174
int crypt_plain_hash(struct crypt_device *ctx,
		     const char *hash_name,
		     char *key, size_t key_size,
		     const char *passphrase, size_t passphrase_size);
175 176 177 178 179
int PLAIN_activate(struct crypt_device *cd,
		     const char *name,
		     struct volume_key *vk,
		     uint64_t size,
		     uint32_t flags);
180

181 182
void *crypt_get_hdr(struct crypt_device *cd, const char *type);

183 184 185 186 187 188 189 190
int crypt_wipe_device(struct crypt_device *cd,
	struct device *device,
	crypt_wipe_pattern pattern,
	uint64_t offset,
	uint64_t length,
	size_t wipe_block_size,
	int (*progress)(uint64_t size, uint64_t offset, void *usrptr),
	void *usrptr);
191

192 193 194 195 196
/* Internal integrity helpers */
const char *crypt_get_integrity(struct crypt_device *cd);
int crypt_get_integrity_key_size(struct crypt_device *cd);
int crypt_get_integrity_tag_size(struct crypt_device *cd);

197 198 199
int crypt_key_in_keyring(struct crypt_device *cd);
void crypt_set_key_in_keyring(struct crypt_device *cd, unsigned key_in_keyring);

200 201 202 203 204 205 206
static inline uint64_t version(uint16_t major, uint16_t minor, uint16_t patch, uint16_t release)
{
	return (uint64_t)release | ((uint64_t)patch << 16) | ((uint64_t)minor << 32) | ((uint64_t)major << 48);
}

int kernel_version(uint64_t *kversion);

207
#endif /* INTERNAL_H */