1 /* 2 * QEMU block full disk encryption 3 * 4 * Copyright (c) 2015-2016 Red Hat, Inc. 5 * 6 * This library is free software; you can redistribute it and/or 7 * modify it under the terms of the GNU Lesser General Public 8 * License as published by the Free Software Foundation; either 9 * version 2.1 of the License, or (at your option) any later version. 10 * 11 * This library is distributed in the hope that it will be useful, 12 * but WITHOUT ANY WARRANTY; without even the implied warranty of 13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 14 * Lesser General Public License for more details. 15 * 16 * You should have received a copy of the GNU Lesser General Public 17 * License along with this library; if not, see <http://www.gnu.org/licenses/>. 18 * 19 */ 20 21 #include "qemu/osdep.h" 22 23 #include "block/block_int.h" 24 #include "block/qdict.h" 25 #include "sysemu/block-backend.h" 26 #include "crypto/block.h" 27 #include "qapi/opts-visitor.h" 28 #include "qapi/qapi-visit-crypto.h" 29 #include "qapi/qobject-input-visitor.h" 30 #include "qapi/error.h" 31 #include "qemu/module.h" 32 #include "qemu/option.h" 33 #include "qemu/cutils.h" 34 #include "qemu/memalign.h" 35 #include "crypto.h" 36 37 typedef struct BlockCrypto BlockCrypto; 38 39 struct BlockCrypto { 40 QCryptoBlock *block; 41 bool updating_keys; 42 BdrvChild *header; /* Reference to the detached LUKS header */ 43 }; 44 45 46 static int block_crypto_probe_generic(QCryptoBlockFormat format, 47 const uint8_t *buf, 48 int buf_size, 49 const char *filename) 50 { 51 if (qcrypto_block_has_format(format, buf, buf_size)) { 52 return 100; 53 } else { 54 return 0; 55 } 56 } 57 58 59 static int block_crypto_read_func(QCryptoBlock *block, 60 size_t offset, 61 uint8_t *buf, 62 size_t buflen, 63 void *opaque, 64 Error **errp) 65 { 66 BlockDriverState *bs = opaque; 67 BlockCrypto *crypto = bs->opaque; 68 ssize_t ret; 69 70 GLOBAL_STATE_CODE(); 71 GRAPH_RDLOCK_GUARD_MAINLOOP(); 72 73 ret = bdrv_pread(crypto->header ? crypto->header : bs->file, 74 offset, buflen, buf, 0); 75 if (ret < 0) { 76 error_setg_errno(errp, -ret, "Could not read encryption header"); 77 return ret; 78 } 79 return 0; 80 } 81 82 static int block_crypto_write_func(QCryptoBlock *block, 83 size_t offset, 84 const uint8_t *buf, 85 size_t buflen, 86 void *opaque, 87 Error **errp) 88 { 89 BlockDriverState *bs = opaque; 90 BlockCrypto *crypto = bs->opaque; 91 ssize_t ret; 92 93 GLOBAL_STATE_CODE(); 94 GRAPH_RDLOCK_GUARD_MAINLOOP(); 95 96 ret = bdrv_pwrite(crypto->header ? crypto->header : bs->file, 97 offset, buflen, buf, 0); 98 if (ret < 0) { 99 error_setg_errno(errp, -ret, "Could not write encryption header"); 100 return ret; 101 } 102 return 0; 103 } 104 105 106 struct BlockCryptoCreateData { 107 BlockBackend *blk; 108 uint64_t size; 109 PreallocMode prealloc; 110 }; 111 112 113 static int coroutine_fn GRAPH_UNLOCKED 114 block_crypto_create_write_func(QCryptoBlock *block, size_t offset, 115 const uint8_t *buf, size_t buflen, void *opaque, 116 Error **errp) 117 { 118 struct BlockCryptoCreateData *data = opaque; 119 ssize_t ret; 120 121 ret = blk_pwrite(data->blk, offset, buflen, buf, 0); 122 if (ret < 0) { 123 error_setg_errno(errp, -ret, "Could not write encryption header"); 124 return ret; 125 } 126 return 0; 127 } 128 129 static int coroutine_fn GRAPH_UNLOCKED 130 block_crypto_create_init_func(QCryptoBlock *block, size_t headerlen, 131 void *opaque, Error **errp) 132 { 133 struct BlockCryptoCreateData *data = opaque; 134 Error *local_error = NULL; 135 int ret; 136 137 if (data->size > INT64_MAX || headerlen > INT64_MAX - data->size) { 138 ret = -EFBIG; 139 goto error; 140 } 141 142 /* User provided size should reflect amount of space made 143 * available to the guest, so we must take account of that 144 * which will be used by the crypto header 145 */ 146 ret = blk_truncate(data->blk, data->size + headerlen, false, 147 data->prealloc, 0, &local_error); 148 149 if (ret >= 0) { 150 return 0; 151 } 152 153 error: 154 if (ret == -EFBIG) { 155 /* Replace the error message with a better one */ 156 error_free(local_error); 157 error_setg(errp, "The requested file size is too large"); 158 } else { 159 error_propagate(errp, local_error); 160 } 161 162 return ret; 163 } 164 165 166 static QemuOptsList block_crypto_runtime_opts_luks = { 167 .name = "crypto", 168 .head = QTAILQ_HEAD_INITIALIZER(block_crypto_runtime_opts_luks.head), 169 .desc = { 170 BLOCK_CRYPTO_OPT_DEF_LUKS_KEY_SECRET(""), 171 { /* end of list */ } 172 }, 173 }; 174 175 176 static QemuOptsList block_crypto_create_opts_luks = { 177 .name = "crypto", 178 .head = QTAILQ_HEAD_INITIALIZER(block_crypto_create_opts_luks.head), 179 .desc = { 180 { 181 .name = BLOCK_OPT_SIZE, 182 .type = QEMU_OPT_SIZE, 183 .help = "Virtual disk size" 184 }, 185 BLOCK_CRYPTO_OPT_DEF_LUKS_KEY_SECRET(""), 186 BLOCK_CRYPTO_OPT_DEF_LUKS_CIPHER_ALG(""), 187 BLOCK_CRYPTO_OPT_DEF_LUKS_CIPHER_MODE(""), 188 BLOCK_CRYPTO_OPT_DEF_LUKS_IVGEN_ALG(""), 189 BLOCK_CRYPTO_OPT_DEF_LUKS_IVGEN_HASH_ALG(""), 190 BLOCK_CRYPTO_OPT_DEF_LUKS_HASH_ALG(""), 191 BLOCK_CRYPTO_OPT_DEF_LUKS_ITER_TIME(""), 192 { /* end of list */ } 193 }, 194 }; 195 196 197 static QemuOptsList block_crypto_amend_opts_luks = { 198 .name = "crypto", 199 .head = QTAILQ_HEAD_INITIALIZER(block_crypto_create_opts_luks.head), 200 .desc = { 201 BLOCK_CRYPTO_OPT_DEF_LUKS_STATE(""), 202 BLOCK_CRYPTO_OPT_DEF_LUKS_KEYSLOT(""), 203 BLOCK_CRYPTO_OPT_DEF_LUKS_OLD_SECRET(""), 204 BLOCK_CRYPTO_OPT_DEF_LUKS_NEW_SECRET(""), 205 BLOCK_CRYPTO_OPT_DEF_LUKS_ITER_TIME(""), 206 { /* end of list */ } 207 }, 208 }; 209 210 QCryptoBlockOpenOptions * 211 block_crypto_open_opts_init(QDict *opts, Error **errp) 212 { 213 Visitor *v; 214 QCryptoBlockOpenOptions *ret; 215 216 v = qobject_input_visitor_new_flat_confused(opts, errp); 217 if (!v) { 218 return NULL; 219 } 220 221 visit_type_QCryptoBlockOpenOptions(v, NULL, &ret, errp); 222 223 visit_free(v); 224 return ret; 225 } 226 227 228 QCryptoBlockCreateOptions * 229 block_crypto_create_opts_init(QDict *opts, Error **errp) 230 { 231 Visitor *v; 232 QCryptoBlockCreateOptions *ret; 233 234 v = qobject_input_visitor_new_flat_confused(opts, errp); 235 if (!v) { 236 return NULL; 237 } 238 239 visit_type_QCryptoBlockCreateOptions(v, NULL, &ret, errp); 240 241 visit_free(v); 242 return ret; 243 } 244 245 QCryptoBlockAmendOptions * 246 block_crypto_amend_opts_init(QDict *opts, Error **errp) 247 { 248 Visitor *v; 249 QCryptoBlockAmendOptions *ret; 250 251 v = qobject_input_visitor_new_flat_confused(opts, errp); 252 if (!v) { 253 return NULL; 254 } 255 256 visit_type_QCryptoBlockAmendOptions(v, NULL, &ret, errp); 257 258 visit_free(v); 259 return ret; 260 } 261 262 263 static int block_crypto_open_generic(QCryptoBlockFormat format, 264 QemuOptsList *opts_spec, 265 BlockDriverState *bs, 266 QDict *options, 267 int flags, 268 Error **errp) 269 { 270 ERRP_GUARD(); 271 272 BlockCrypto *crypto = bs->opaque; 273 QemuOpts *opts = NULL; 274 int ret; 275 QCryptoBlockOpenOptions *open_opts = NULL; 276 unsigned int cflags = 0; 277 QDict *cryptoopts = NULL; 278 279 GLOBAL_STATE_CODE(); 280 281 ret = bdrv_open_file_child(NULL, options, "file", bs, errp); 282 if (ret < 0) { 283 return ret; 284 } 285 286 crypto->header = bdrv_open_child(NULL, options, "header", bs, 287 &child_of_bds, BDRV_CHILD_METADATA, 288 true, errp); 289 if (*errp != NULL) { 290 return -EINVAL; 291 } 292 293 GRAPH_RDLOCK_GUARD_MAINLOOP(); 294 295 bs->supported_write_flags = BDRV_REQ_FUA & 296 bs->file->bs->supported_write_flags; 297 298 opts = qemu_opts_create(opts_spec, NULL, 0, &error_abort); 299 if (!qemu_opts_absorb_qdict(opts, options, errp)) { 300 ret = -EINVAL; 301 goto cleanup; 302 } 303 304 cryptoopts = qemu_opts_to_qdict(opts, NULL); 305 qdict_put_str(cryptoopts, "format", QCryptoBlockFormat_str(format)); 306 307 open_opts = block_crypto_open_opts_init(cryptoopts, errp); 308 if (!open_opts) { 309 ret = -EINVAL; 310 goto cleanup; 311 } 312 313 if (flags & BDRV_O_NO_IO) { 314 cflags |= QCRYPTO_BLOCK_OPEN_NO_IO; 315 } 316 if (crypto->header != NULL) { 317 cflags |= QCRYPTO_BLOCK_OPEN_DETACHED; 318 } 319 crypto->block = qcrypto_block_open(open_opts, NULL, 320 block_crypto_read_func, 321 bs, 322 cflags, 323 1, 324 errp); 325 326 if (!crypto->block) { 327 ret = -EIO; 328 goto cleanup; 329 } 330 331 bs->encrypted = true; 332 333 ret = 0; 334 cleanup: 335 qobject_unref(cryptoopts); 336 qapi_free_QCryptoBlockOpenOptions(open_opts); 337 return ret; 338 } 339 340 341 static int coroutine_fn GRAPH_UNLOCKED 342 block_crypto_co_create_generic(BlockDriverState *bs, int64_t size, 343 QCryptoBlockCreateOptions *opts, 344 PreallocMode prealloc, Error **errp) 345 { 346 int ret; 347 BlockBackend *blk; 348 QCryptoBlock *crypto = NULL; 349 struct BlockCryptoCreateData data; 350 351 blk = blk_co_new_with_bs(bs, BLK_PERM_WRITE | BLK_PERM_RESIZE, BLK_PERM_ALL, 352 errp); 353 if (!blk) { 354 ret = -EPERM; 355 goto cleanup; 356 } 357 358 if (prealloc == PREALLOC_MODE_METADATA) { 359 prealloc = PREALLOC_MODE_OFF; 360 } 361 362 data = (struct BlockCryptoCreateData) { 363 .blk = blk, 364 .size = size, 365 .prealloc = prealloc, 366 }; 367 368 crypto = qcrypto_block_create(opts, NULL, 369 block_crypto_create_init_func, 370 block_crypto_create_write_func, 371 &data, 372 errp); 373 374 if (!crypto) { 375 ret = -EIO; 376 goto cleanup; 377 } 378 379 ret = 0; 380 cleanup: 381 qcrypto_block_free(crypto); 382 blk_co_unref(blk); 383 return ret; 384 } 385 386 static int coroutine_fn GRAPH_RDLOCK 387 block_crypto_co_truncate(BlockDriverState *bs, int64_t offset, bool exact, 388 PreallocMode prealloc, BdrvRequestFlags flags, 389 Error **errp) 390 { 391 BlockCrypto *crypto = bs->opaque; 392 uint64_t payload_offset = 393 qcrypto_block_get_payload_offset(crypto->block); 394 395 if (payload_offset > INT64_MAX - offset) { 396 error_setg(errp, "The requested file size is too large"); 397 return -EFBIG; 398 } 399 400 offset += payload_offset; 401 402 return bdrv_co_truncate(bs->file, offset, exact, prealloc, 0, errp); 403 } 404 405 static void block_crypto_close(BlockDriverState *bs) 406 { 407 BlockCrypto *crypto = bs->opaque; 408 qcrypto_block_free(crypto->block); 409 } 410 411 static int block_crypto_reopen_prepare(BDRVReopenState *state, 412 BlockReopenQueue *queue, Error **errp) 413 { 414 /* nothing needs checking */ 415 return 0; 416 } 417 418 /* 419 * 1 MB bounce buffer gives good performance / memory tradeoff 420 * when using cache=none|directsync. 421 */ 422 #define BLOCK_CRYPTO_MAX_IO_SIZE (1024 * 1024) 423 424 static int coroutine_fn GRAPH_RDLOCK 425 block_crypto_co_preadv(BlockDriverState *bs, int64_t offset, int64_t bytes, 426 QEMUIOVector *qiov, BdrvRequestFlags flags) 427 { 428 BlockCrypto *crypto = bs->opaque; 429 uint64_t cur_bytes; /* number of bytes in current iteration */ 430 uint64_t bytes_done = 0; 431 uint8_t *cipher_data = NULL; 432 QEMUIOVector hd_qiov; 433 int ret = 0; 434 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block); 435 uint64_t payload_offset = qcrypto_block_get_payload_offset(crypto->block); 436 437 assert(payload_offset < INT64_MAX); 438 assert(QEMU_IS_ALIGNED(offset, sector_size)); 439 assert(QEMU_IS_ALIGNED(bytes, sector_size)); 440 441 qemu_iovec_init(&hd_qiov, qiov->niov); 442 443 /* Bounce buffer because we don't wish to expose cipher text 444 * in qiov which points to guest memory. 445 */ 446 cipher_data = 447 qemu_try_blockalign(bs->file->bs, MIN(BLOCK_CRYPTO_MAX_IO_SIZE, 448 qiov->size)); 449 if (cipher_data == NULL) { 450 ret = -ENOMEM; 451 goto cleanup; 452 } 453 454 while (bytes) { 455 cur_bytes = MIN(bytes, BLOCK_CRYPTO_MAX_IO_SIZE); 456 457 qemu_iovec_reset(&hd_qiov); 458 qemu_iovec_add(&hd_qiov, cipher_data, cur_bytes); 459 460 ret = bdrv_co_preadv(bs->file, payload_offset + offset + bytes_done, 461 cur_bytes, &hd_qiov, 0); 462 if (ret < 0) { 463 goto cleanup; 464 } 465 466 if (qcrypto_block_decrypt(crypto->block, offset + bytes_done, 467 cipher_data, cur_bytes, NULL) < 0) { 468 ret = -EIO; 469 goto cleanup; 470 } 471 472 qemu_iovec_from_buf(qiov, bytes_done, cipher_data, cur_bytes); 473 474 bytes -= cur_bytes; 475 bytes_done += cur_bytes; 476 } 477 478 cleanup: 479 qemu_iovec_destroy(&hd_qiov); 480 qemu_vfree(cipher_data); 481 482 return ret; 483 } 484 485 486 static int coroutine_fn GRAPH_RDLOCK 487 block_crypto_co_pwritev(BlockDriverState *bs, int64_t offset, int64_t bytes, 488 QEMUIOVector *qiov, BdrvRequestFlags flags) 489 { 490 BlockCrypto *crypto = bs->opaque; 491 uint64_t cur_bytes; /* number of bytes in current iteration */ 492 uint64_t bytes_done = 0; 493 uint8_t *cipher_data = NULL; 494 QEMUIOVector hd_qiov; 495 int ret = 0; 496 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block); 497 uint64_t payload_offset = qcrypto_block_get_payload_offset(crypto->block); 498 499 flags &= ~BDRV_REQ_REGISTERED_BUF; 500 501 assert(payload_offset < INT64_MAX); 502 assert(QEMU_IS_ALIGNED(offset, sector_size)); 503 assert(QEMU_IS_ALIGNED(bytes, sector_size)); 504 505 qemu_iovec_init(&hd_qiov, qiov->niov); 506 507 /* Bounce buffer because we're not permitted to touch 508 * contents of qiov - it points to guest memory. 509 */ 510 cipher_data = 511 qemu_try_blockalign(bs->file->bs, MIN(BLOCK_CRYPTO_MAX_IO_SIZE, 512 qiov->size)); 513 if (cipher_data == NULL) { 514 ret = -ENOMEM; 515 goto cleanup; 516 } 517 518 while (bytes) { 519 cur_bytes = MIN(bytes, BLOCK_CRYPTO_MAX_IO_SIZE); 520 521 qemu_iovec_to_buf(qiov, bytes_done, cipher_data, cur_bytes); 522 523 if (qcrypto_block_encrypt(crypto->block, offset + bytes_done, 524 cipher_data, cur_bytes, NULL) < 0) { 525 ret = -EIO; 526 goto cleanup; 527 } 528 529 qemu_iovec_reset(&hd_qiov); 530 qemu_iovec_add(&hd_qiov, cipher_data, cur_bytes); 531 532 ret = bdrv_co_pwritev(bs->file, payload_offset + offset + bytes_done, 533 cur_bytes, &hd_qiov, flags); 534 if (ret < 0) { 535 goto cleanup; 536 } 537 538 bytes -= cur_bytes; 539 bytes_done += cur_bytes; 540 } 541 542 cleanup: 543 qemu_iovec_destroy(&hd_qiov); 544 qemu_vfree(cipher_data); 545 546 return ret; 547 } 548 549 static void block_crypto_refresh_limits(BlockDriverState *bs, Error **errp) 550 { 551 BlockCrypto *crypto = bs->opaque; 552 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block); 553 bs->bl.request_alignment = sector_size; /* No sub-sector I/O */ 554 } 555 556 557 static int64_t coroutine_fn GRAPH_RDLOCK 558 block_crypto_co_getlength(BlockDriverState *bs) 559 { 560 BlockCrypto *crypto = bs->opaque; 561 int64_t len = bdrv_co_getlength(bs->file->bs); 562 563 uint64_t offset = qcrypto_block_get_payload_offset(crypto->block); 564 assert(offset < INT64_MAX); 565 566 if (offset > len) { 567 return -EIO; 568 } 569 570 len -= offset; 571 572 return len; 573 } 574 575 576 static BlockMeasureInfo *block_crypto_measure(QemuOpts *opts, 577 BlockDriverState *in_bs, 578 Error **errp) 579 { 580 g_autoptr(QCryptoBlockCreateOptions) create_opts = NULL; 581 Error *local_err = NULL; 582 BlockMeasureInfo *info; 583 uint64_t size; 584 size_t luks_payload_size; 585 QDict *cryptoopts; 586 587 /* 588 * Preallocation mode doesn't affect size requirements but we must consume 589 * the option. 590 */ 591 g_free(qemu_opt_get_del(opts, BLOCK_OPT_PREALLOC)); 592 593 size = qemu_opt_get_size_del(opts, BLOCK_OPT_SIZE, 0); 594 595 if (in_bs) { 596 int64_t ssize = bdrv_getlength(in_bs); 597 598 if (ssize < 0) { 599 error_setg_errno(&local_err, -ssize, 600 "Unable to get image virtual_size"); 601 goto err; 602 } 603 604 size = ssize; 605 } 606 607 cryptoopts = qemu_opts_to_qdict_filtered(opts, NULL, 608 &block_crypto_create_opts_luks, true); 609 qdict_put_str(cryptoopts, "format", "luks"); 610 create_opts = block_crypto_create_opts_init(cryptoopts, &local_err); 611 qobject_unref(cryptoopts); 612 if (!create_opts) { 613 goto err; 614 } 615 616 if (!qcrypto_block_calculate_payload_offset(create_opts, NULL, 617 &luks_payload_size, 618 &local_err)) { 619 goto err; 620 } 621 622 /* 623 * Unallocated blocks are still encrypted so allocation status makes no 624 * difference to the file size. 625 */ 626 info = g_new0(BlockMeasureInfo, 1); 627 info->fully_allocated = luks_payload_size + size; 628 info->required = luks_payload_size + size; 629 return info; 630 631 err: 632 error_propagate(errp, local_err); 633 return NULL; 634 } 635 636 637 static int block_crypto_probe_luks(const uint8_t *buf, 638 int buf_size, 639 const char *filename) { 640 return block_crypto_probe_generic(Q_CRYPTO_BLOCK_FORMAT_LUKS, 641 buf, buf_size, filename); 642 } 643 644 static int block_crypto_open_luks(BlockDriverState *bs, 645 QDict *options, 646 int flags, 647 Error **errp) 648 { 649 return block_crypto_open_generic(Q_CRYPTO_BLOCK_FORMAT_LUKS, 650 &block_crypto_runtime_opts_luks, 651 bs, options, flags, errp); 652 } 653 654 static int coroutine_fn GRAPH_UNLOCKED 655 block_crypto_co_create_luks(BlockdevCreateOptions *create_options, Error **errp) 656 { 657 BlockdevCreateOptionsLUKS *luks_opts; 658 BlockDriverState *bs = NULL; 659 QCryptoBlockCreateOptions create_opts; 660 PreallocMode preallocation = PREALLOC_MODE_OFF; 661 int ret; 662 663 assert(create_options->driver == BLOCKDEV_DRIVER_LUKS); 664 luks_opts = &create_options->u.luks; 665 666 if (luks_opts->file == NULL) { 667 error_setg(errp, "Formatting LUKS disk requires parameter 'file'"); 668 return -EINVAL; 669 } 670 671 create_opts = (QCryptoBlockCreateOptions) { 672 .format = Q_CRYPTO_BLOCK_FORMAT_LUKS, 673 .u.luks = *qapi_BlockdevCreateOptionsLUKS_base(luks_opts), 674 }; 675 676 if (luks_opts->has_preallocation) { 677 preallocation = luks_opts->preallocation; 678 } 679 680 if (luks_opts->file) { 681 bs = bdrv_co_open_blockdev_ref(luks_opts->file, errp); 682 if (bs == NULL) { 683 return -EIO; 684 } 685 686 ret = block_crypto_co_create_generic(bs, luks_opts->size, &create_opts, 687 preallocation, errp); 688 if (ret < 0) { 689 goto fail; 690 } 691 } 692 693 ret = 0; 694 fail: 695 bdrv_co_unref(bs); 696 return ret; 697 } 698 699 static int coroutine_fn GRAPH_UNLOCKED 700 block_crypto_co_create_opts_luks(BlockDriver *drv, const char *filename, 701 QemuOpts *opts, Error **errp) 702 { 703 QCryptoBlockCreateOptions *create_opts = NULL; 704 BlockDriverState *bs = NULL; 705 QDict *cryptoopts; 706 PreallocMode prealloc; 707 char *buf = NULL; 708 int64_t size; 709 int ret; 710 Error *local_err = NULL; 711 712 /* Parse options */ 713 size = qemu_opt_get_size_del(opts, BLOCK_OPT_SIZE, 0); 714 715 buf = qemu_opt_get_del(opts, BLOCK_OPT_PREALLOC); 716 prealloc = qapi_enum_parse(&PreallocMode_lookup, buf, 717 PREALLOC_MODE_OFF, &local_err); 718 g_free(buf); 719 if (local_err) { 720 error_propagate(errp, local_err); 721 return -EINVAL; 722 } 723 724 cryptoopts = qemu_opts_to_qdict_filtered(opts, NULL, 725 &block_crypto_create_opts_luks, 726 true); 727 728 qdict_put_str(cryptoopts, "format", "luks"); 729 create_opts = block_crypto_create_opts_init(cryptoopts, errp); 730 if (!create_opts) { 731 ret = -EINVAL; 732 goto fail; 733 } 734 735 /* Create protocol layer */ 736 ret = bdrv_co_create_file(filename, opts, errp); 737 if (ret < 0) { 738 goto fail; 739 } 740 741 bs = bdrv_co_open(filename, NULL, NULL, 742 BDRV_O_RDWR | BDRV_O_RESIZE | BDRV_O_PROTOCOL, errp); 743 if (!bs) { 744 ret = -EINVAL; 745 goto fail; 746 } 747 748 /* Create format layer */ 749 ret = block_crypto_co_create_generic(bs, size, create_opts, prealloc, errp); 750 if (ret < 0) { 751 goto fail; 752 } 753 754 ret = 0; 755 fail: 756 /* 757 * If an error occurred, delete 'filename'. Even if the file existed 758 * beforehand, it has been truncated and corrupted in the process. 759 */ 760 if (ret) { 761 bdrv_graph_co_rdlock(); 762 bdrv_co_delete_file_noerr(bs); 763 bdrv_graph_co_rdunlock(); 764 } 765 766 bdrv_co_unref(bs); 767 qapi_free_QCryptoBlockCreateOptions(create_opts); 768 qobject_unref(cryptoopts); 769 return ret; 770 } 771 772 static int coroutine_fn GRAPH_RDLOCK 773 block_crypto_co_get_info_luks(BlockDriverState *bs, BlockDriverInfo *bdi) 774 { 775 BlockDriverInfo subbdi; 776 int ret; 777 778 ret = bdrv_co_get_info(bs->file->bs, &subbdi); 779 if (ret != 0) { 780 return ret; 781 } 782 783 bdi->cluster_size = subbdi.cluster_size; 784 785 return 0; 786 } 787 788 static ImageInfoSpecific * 789 block_crypto_get_specific_info_luks(BlockDriverState *bs, Error **errp) 790 { 791 BlockCrypto *crypto = bs->opaque; 792 ImageInfoSpecific *spec_info; 793 QCryptoBlockInfo *info; 794 795 info = qcrypto_block_get_info(crypto->block, errp); 796 if (!info) { 797 return NULL; 798 } 799 assert(info->format == Q_CRYPTO_BLOCK_FORMAT_LUKS); 800 801 spec_info = g_new(ImageInfoSpecific, 1); 802 spec_info->type = IMAGE_INFO_SPECIFIC_KIND_LUKS; 803 spec_info->u.luks.data = g_new(QCryptoBlockInfoLUKS, 1); 804 *spec_info->u.luks.data = info->u.luks; 805 806 /* Blank out pointers we've just stolen to avoid double free */ 807 memset(&info->u.luks, 0, sizeof(info->u.luks)); 808 809 qapi_free_QCryptoBlockInfo(info); 810 811 return spec_info; 812 } 813 814 static int GRAPH_RDLOCK 815 block_crypto_amend_prepare(BlockDriverState *bs, Error **errp) 816 { 817 BlockCrypto *crypto = bs->opaque; 818 int ret; 819 820 /* apply for exclusive read/write permissions to the underlying file */ 821 crypto->updating_keys = true; 822 ret = bdrv_child_refresh_perms(bs, bs->file, errp); 823 if (ret < 0) { 824 /* Well, in this case we will not be updating any keys */ 825 crypto->updating_keys = false; 826 } 827 return ret; 828 } 829 830 static void GRAPH_RDLOCK 831 block_crypto_amend_cleanup(BlockDriverState *bs) 832 { 833 BlockCrypto *crypto = bs->opaque; 834 Error *errp = NULL; 835 836 /* release exclusive read/write permissions to the underlying file */ 837 crypto->updating_keys = false; 838 bdrv_child_refresh_perms(bs, bs->file, &errp); 839 840 if (errp) { 841 error_report_err(errp); 842 } 843 } 844 845 static int 846 block_crypto_amend_options_generic_luks(BlockDriverState *bs, 847 QCryptoBlockAmendOptions *amend_options, 848 bool force, 849 Error **errp) 850 { 851 BlockCrypto *crypto = bs->opaque; 852 853 assert(crypto); 854 assert(crypto->block); 855 856 return qcrypto_block_amend_options(crypto->block, 857 block_crypto_read_func, 858 block_crypto_write_func, 859 bs, 860 amend_options, 861 force, 862 errp); 863 } 864 865 static int GRAPH_RDLOCK 866 block_crypto_amend_options_luks(BlockDriverState *bs, 867 QemuOpts *opts, 868 BlockDriverAmendStatusCB *status_cb, 869 void *cb_opaque, 870 bool force, 871 Error **errp) 872 { 873 BlockCrypto *crypto = bs->opaque; 874 QDict *cryptoopts = NULL; 875 QCryptoBlockAmendOptions *amend_options = NULL; 876 int ret = -EINVAL; 877 878 assert(crypto); 879 assert(crypto->block); 880 881 cryptoopts = qemu_opts_to_qdict(opts, NULL); 882 qdict_put_str(cryptoopts, "format", "luks"); 883 amend_options = block_crypto_amend_opts_init(cryptoopts, errp); 884 qobject_unref(cryptoopts); 885 if (!amend_options) { 886 goto cleanup; 887 } 888 889 ret = block_crypto_amend_prepare(bs, errp); 890 if (ret) { 891 goto perm_cleanup; 892 } 893 ret = block_crypto_amend_options_generic_luks(bs, amend_options, 894 force, errp); 895 896 perm_cleanup: 897 block_crypto_amend_cleanup(bs); 898 cleanup: 899 qapi_free_QCryptoBlockAmendOptions(amend_options); 900 return ret; 901 } 902 903 static int 904 coroutine_fn block_crypto_co_amend_luks(BlockDriverState *bs, 905 BlockdevAmendOptions *opts, 906 bool force, 907 Error **errp) 908 { 909 QCryptoBlockAmendOptions amend_opts; 910 911 amend_opts = (QCryptoBlockAmendOptions) { 912 .format = Q_CRYPTO_BLOCK_FORMAT_LUKS, 913 .u.luks = *qapi_BlockdevAmendOptionsLUKS_base(&opts->u.luks), 914 }; 915 return block_crypto_amend_options_generic_luks(bs, &amend_opts, 916 force, errp); 917 } 918 919 static void 920 block_crypto_child_perms(BlockDriverState *bs, BdrvChild *c, 921 const BdrvChildRole role, 922 BlockReopenQueue *reopen_queue, 923 uint64_t perm, uint64_t shared, 924 uint64_t *nperm, uint64_t *nshared) 925 { 926 927 BlockCrypto *crypto = bs->opaque; 928 929 bdrv_default_perms(bs, c, role, reopen_queue, perm, shared, nperm, nshared); 930 931 /* 932 * For backward compatibility, manually share the write 933 * and resize permission 934 */ 935 *nshared |= shared & (BLK_PERM_WRITE | BLK_PERM_RESIZE); 936 /* 937 * Since we are not fully a format driver, don't always request 938 * the read/resize permission but only when explicitly 939 * requested 940 */ 941 *nperm &= ~(BLK_PERM_WRITE | BLK_PERM_RESIZE); 942 *nperm |= perm & (BLK_PERM_WRITE | BLK_PERM_RESIZE); 943 944 /* 945 * This driver doesn't modify LUKS metadata except 946 * when updating the encryption slots. 947 * Thus unlike a proper format driver we don't ask for 948 * shared write/read permission. However we need it 949 * when we are updating the keys, to ensure that only we 950 * have access to the device. 951 * 952 * Encryption update will set the crypto->updating_keys 953 * during that period and refresh permissions 954 * 955 */ 956 if (crypto->updating_keys) { 957 /* need exclusive write access for header update */ 958 *nperm |= BLK_PERM_WRITE; 959 /* unshare read and write permission */ 960 *nshared &= ~(BLK_PERM_CONSISTENT_READ | BLK_PERM_WRITE); 961 } 962 } 963 964 965 static const char *const block_crypto_strong_runtime_opts[] = { 966 BLOCK_CRYPTO_OPT_LUKS_KEY_SECRET, 967 968 NULL 969 }; 970 971 static BlockDriver bdrv_crypto_luks = { 972 .format_name = "luks", 973 .instance_size = sizeof(BlockCrypto), 974 .bdrv_probe = block_crypto_probe_luks, 975 .bdrv_open = block_crypto_open_luks, 976 .bdrv_close = block_crypto_close, 977 .bdrv_child_perm = block_crypto_child_perms, 978 .bdrv_co_create = block_crypto_co_create_luks, 979 .bdrv_co_create_opts = block_crypto_co_create_opts_luks, 980 .bdrv_co_truncate = block_crypto_co_truncate, 981 .create_opts = &block_crypto_create_opts_luks, 982 .amend_opts = &block_crypto_amend_opts_luks, 983 984 .bdrv_reopen_prepare = block_crypto_reopen_prepare, 985 .bdrv_refresh_limits = block_crypto_refresh_limits, 986 .bdrv_co_preadv = block_crypto_co_preadv, 987 .bdrv_co_pwritev = block_crypto_co_pwritev, 988 .bdrv_co_getlength = block_crypto_co_getlength, 989 .bdrv_measure = block_crypto_measure, 990 .bdrv_co_get_info = block_crypto_co_get_info_luks, 991 .bdrv_get_specific_info = block_crypto_get_specific_info_luks, 992 .bdrv_amend_options = block_crypto_amend_options_luks, 993 .bdrv_co_amend = block_crypto_co_amend_luks, 994 .bdrv_amend_pre_run = block_crypto_amend_prepare, 995 .bdrv_amend_clean = block_crypto_amend_cleanup, 996 997 .is_format = true, 998 999 .strong_runtime_opts = block_crypto_strong_runtime_opts, 1000 }; 1001 1002 static void block_crypto_init(void) 1003 { 1004 bdrv_register(&bdrv_crypto_luks); 1005 } 1006 1007 block_init(block_crypto_init); 1008