2 * QEMU block full disk encryption
4 * Copyright (c) 2015-2016 Red Hat, Inc.
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
21 #include "qemu/osdep.h"
23 #include "block/block_int.h"
24 #include "sysemu/block-backend.h"
25 #include "crypto/block.h"
26 #include "qapi/opts-visitor.h"
27 #include "qapi/qapi-visit-crypto.h"
28 #include "qapi/qmp/qdict.h"
29 #include "qapi/qobject-input-visitor.h"
30 #include "qapi/error.h"
31 #include "qemu/option.h"
32 #include "block/crypto.h"
34 typedef struct BlockCrypto BlockCrypto;
41 static int block_crypto_probe_generic(QCryptoBlockFormat format,
46 if (qcrypto_block_has_format(format, buf, buf_size)) {
54 static ssize_t block_crypto_read_func(QCryptoBlock *block,
61 BlockDriverState *bs = opaque;
64 ret = bdrv_pread(bs->file, offset, buf, buflen);
66 error_setg_errno(errp, -ret, "Could not read encryption header");
73 struct BlockCryptoCreateData {
79 static ssize_t block_crypto_write_func(QCryptoBlock *block,
86 struct BlockCryptoCreateData *data = opaque;
89 ret = blk_pwrite(data->blk, offset, buf, buflen, 0);
91 error_setg_errno(errp, -ret, "Could not write encryption header");
98 static ssize_t block_crypto_init_func(QCryptoBlock *block,
103 struct BlockCryptoCreateData *data = opaque;
105 /* User provided size should reflect amount of space made
106 * available to the guest, so we must take account of that
107 * which will be used by the crypto header
109 return blk_truncate(data->blk, data->size + headerlen, PREALLOC_MODE_OFF,
114 static QemuOptsList block_crypto_runtime_opts_luks = {
116 .head = QTAILQ_HEAD_INITIALIZER(block_crypto_runtime_opts_luks.head),
118 BLOCK_CRYPTO_OPT_DEF_LUKS_KEY_SECRET(""),
119 { /* end of list */ }
124 static QemuOptsList block_crypto_create_opts_luks = {
126 .head = QTAILQ_HEAD_INITIALIZER(block_crypto_create_opts_luks.head),
129 .name = BLOCK_OPT_SIZE,
130 .type = QEMU_OPT_SIZE,
131 .help = "Virtual disk size"
133 BLOCK_CRYPTO_OPT_DEF_LUKS_KEY_SECRET(""),
134 BLOCK_CRYPTO_OPT_DEF_LUKS_CIPHER_ALG(""),
135 BLOCK_CRYPTO_OPT_DEF_LUKS_CIPHER_MODE(""),
136 BLOCK_CRYPTO_OPT_DEF_LUKS_IVGEN_ALG(""),
137 BLOCK_CRYPTO_OPT_DEF_LUKS_IVGEN_HASH_ALG(""),
138 BLOCK_CRYPTO_OPT_DEF_LUKS_HASH_ALG(""),
139 BLOCK_CRYPTO_OPT_DEF_LUKS_ITER_TIME(""),
140 { /* end of list */ }
145 QCryptoBlockOpenOptions *
146 block_crypto_open_opts_init(QCryptoBlockFormat format,
151 QCryptoBlockOpenOptions *ret = NULL;
152 Error *local_err = NULL;
154 ret = g_new0(QCryptoBlockOpenOptions, 1);
155 ret->format = format;
157 v = qobject_input_visitor_new_keyval(QOBJECT(opts));
159 visit_start_struct(v, NULL, NULL, 0, &local_err);
165 case Q_CRYPTO_BLOCK_FORMAT_LUKS:
166 visit_type_QCryptoBlockOptionsLUKS_members(
167 v, &ret->u.luks, &local_err);
170 case Q_CRYPTO_BLOCK_FORMAT_QCOW:
171 visit_type_QCryptoBlockOptionsQCow_members(
172 v, &ret->u.qcow, &local_err);
176 error_setg(&local_err, "Unsupported block format %d", format);
180 visit_check_struct(v, &local_err);
183 visit_end_struct(v, NULL);
187 error_propagate(errp, local_err);
188 qapi_free_QCryptoBlockOpenOptions(ret);
196 QCryptoBlockCreateOptions *
197 block_crypto_create_opts_init(QCryptoBlockFormat format,
202 QCryptoBlockCreateOptions *ret = NULL;
203 Error *local_err = NULL;
205 ret = g_new0(QCryptoBlockCreateOptions, 1);
206 ret->format = format;
208 v = qobject_input_visitor_new_keyval(QOBJECT(opts));
210 visit_start_struct(v, NULL, NULL, 0, &local_err);
216 case Q_CRYPTO_BLOCK_FORMAT_LUKS:
217 visit_type_QCryptoBlockCreateOptionsLUKS_members(
218 v, &ret->u.luks, &local_err);
221 case Q_CRYPTO_BLOCK_FORMAT_QCOW:
222 visit_type_QCryptoBlockOptionsQCow_members(
223 v, &ret->u.qcow, &local_err);
227 error_setg(&local_err, "Unsupported block format %d", format);
231 visit_check_struct(v, &local_err);
234 visit_end_struct(v, NULL);
238 error_propagate(errp, local_err);
239 qapi_free_QCryptoBlockCreateOptions(ret);
247 static int block_crypto_open_generic(QCryptoBlockFormat format,
248 QemuOptsList *opts_spec,
249 BlockDriverState *bs,
254 BlockCrypto *crypto = bs->opaque;
255 QemuOpts *opts = NULL;
256 Error *local_err = NULL;
258 QCryptoBlockOpenOptions *open_opts = NULL;
259 unsigned int cflags = 0;
260 QDict *cryptoopts = NULL;
262 bs->file = bdrv_open_child(NULL, options, "file", bs, &child_file,
268 bs->supported_write_flags = BDRV_REQ_FUA &
269 bs->file->bs->supported_write_flags;
271 opts = qemu_opts_create(opts_spec, NULL, 0, &error_abort);
272 qemu_opts_absorb_qdict(opts, options, &local_err);
274 error_propagate(errp, local_err);
278 cryptoopts = qemu_opts_to_qdict(opts, NULL);
280 open_opts = block_crypto_open_opts_init(format, cryptoopts, errp);
285 if (flags & BDRV_O_NO_IO) {
286 cflags |= QCRYPTO_BLOCK_OPEN_NO_IO;
288 crypto->block = qcrypto_block_open(open_opts, NULL,
289 block_crypto_read_func,
294 if (!crypto->block) {
299 bs->encrypted = true;
304 qapi_free_QCryptoBlockOpenOptions(open_opts);
309 static int block_crypto_create_generic(QCryptoBlockFormat format,
310 const char *filename,
315 QCryptoBlockCreateOptions *create_opts = NULL;
316 QCryptoBlock *crypto = NULL;
317 struct BlockCryptoCreateData data = {
318 .size = ROUND_UP(qemu_opt_get_size_del(opts, BLOCK_OPT_SIZE, 0),
324 cryptoopts = qemu_opts_to_qdict(opts, NULL);
326 create_opts = block_crypto_create_opts_init(format, cryptoopts, errp);
331 /* Create protocol layer */
332 ret = bdrv_create_file(filename, opts, errp);
337 data.blk = blk_new_open(filename, NULL, NULL,
338 BDRV_O_RDWR | BDRV_O_RESIZE | BDRV_O_PROTOCOL,
344 /* Create format layer */
345 crypto = qcrypto_block_create(create_opts, NULL,
346 block_crypto_init_func,
347 block_crypto_write_func,
359 qcrypto_block_free(crypto);
361 qapi_free_QCryptoBlockCreateOptions(create_opts);
365 static int block_crypto_truncate(BlockDriverState *bs, int64_t offset,
366 PreallocMode prealloc, Error **errp)
368 BlockCrypto *crypto = bs->opaque;
369 uint64_t payload_offset =
370 qcrypto_block_get_payload_offset(crypto->block);
371 assert(payload_offset < (INT64_MAX - offset));
373 offset += payload_offset;
375 return bdrv_truncate(bs->file, offset, prealloc, errp);
378 static void block_crypto_close(BlockDriverState *bs)
380 BlockCrypto *crypto = bs->opaque;
381 qcrypto_block_free(crypto->block);
384 static int block_crypto_reopen_prepare(BDRVReopenState *state,
385 BlockReopenQueue *queue, Error **errp)
387 /* nothing needs checking */
392 * 1 MB bounce buffer gives good performance / memory tradeoff
393 * when using cache=none|directsync.
395 #define BLOCK_CRYPTO_MAX_IO_SIZE (1024 * 1024)
397 static coroutine_fn int
398 block_crypto_co_preadv(BlockDriverState *bs, uint64_t offset, uint64_t bytes,
399 QEMUIOVector *qiov, int flags)
401 BlockCrypto *crypto = bs->opaque;
402 uint64_t cur_bytes; /* number of bytes in current iteration */
403 uint64_t bytes_done = 0;
404 uint8_t *cipher_data = NULL;
405 QEMUIOVector hd_qiov;
407 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block);
408 uint64_t payload_offset = qcrypto_block_get_payload_offset(crypto->block);
411 assert(payload_offset < INT64_MAX);
412 assert(QEMU_IS_ALIGNED(offset, sector_size));
413 assert(QEMU_IS_ALIGNED(bytes, sector_size));
415 qemu_iovec_init(&hd_qiov, qiov->niov);
417 /* Bounce buffer because we don't wish to expose cipher text
418 * in qiov which points to guest memory.
421 qemu_try_blockalign(bs->file->bs, MIN(BLOCK_CRYPTO_MAX_IO_SIZE,
423 if (cipher_data == NULL) {
429 cur_bytes = MIN(bytes, BLOCK_CRYPTO_MAX_IO_SIZE);
431 qemu_iovec_reset(&hd_qiov);
432 qemu_iovec_add(&hd_qiov, cipher_data, cur_bytes);
434 ret = bdrv_co_preadv(bs->file, payload_offset + offset + bytes_done,
435 cur_bytes, &hd_qiov, 0);
440 if (qcrypto_block_decrypt(crypto->block, offset + bytes_done,
441 cipher_data, cur_bytes, NULL) < 0) {
446 qemu_iovec_from_buf(qiov, bytes_done, cipher_data, cur_bytes);
449 bytes_done += cur_bytes;
453 qemu_iovec_destroy(&hd_qiov);
454 qemu_vfree(cipher_data);
460 static coroutine_fn int
461 block_crypto_co_pwritev(BlockDriverState *bs, uint64_t offset, uint64_t bytes,
462 QEMUIOVector *qiov, int flags)
464 BlockCrypto *crypto = bs->opaque;
465 uint64_t cur_bytes; /* number of bytes in current iteration */
466 uint64_t bytes_done = 0;
467 uint8_t *cipher_data = NULL;
468 QEMUIOVector hd_qiov;
470 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block);
471 uint64_t payload_offset = qcrypto_block_get_payload_offset(crypto->block);
473 assert(!(flags & ~BDRV_REQ_FUA));
474 assert(payload_offset < INT64_MAX);
475 assert(QEMU_IS_ALIGNED(offset, sector_size));
476 assert(QEMU_IS_ALIGNED(bytes, sector_size));
478 qemu_iovec_init(&hd_qiov, qiov->niov);
480 /* Bounce buffer because we're not permitted to touch
481 * contents of qiov - it points to guest memory.
484 qemu_try_blockalign(bs->file->bs, MIN(BLOCK_CRYPTO_MAX_IO_SIZE,
486 if (cipher_data == NULL) {
492 cur_bytes = MIN(bytes, BLOCK_CRYPTO_MAX_IO_SIZE);
494 qemu_iovec_to_buf(qiov, bytes_done, cipher_data, cur_bytes);
496 if (qcrypto_block_encrypt(crypto->block, offset + bytes_done,
497 cipher_data, cur_bytes, NULL) < 0) {
502 qemu_iovec_reset(&hd_qiov);
503 qemu_iovec_add(&hd_qiov, cipher_data, cur_bytes);
505 ret = bdrv_co_pwritev(bs->file, payload_offset + offset + bytes_done,
506 cur_bytes, &hd_qiov, flags);
512 bytes_done += cur_bytes;
516 qemu_iovec_destroy(&hd_qiov);
517 qemu_vfree(cipher_data);
522 static void block_crypto_refresh_limits(BlockDriverState *bs, Error **errp)
524 BlockCrypto *crypto = bs->opaque;
525 uint64_t sector_size = qcrypto_block_get_sector_size(crypto->block);
526 bs->bl.request_alignment = sector_size; /* No sub-sector I/O */
530 static int64_t block_crypto_getlength(BlockDriverState *bs)
532 BlockCrypto *crypto = bs->opaque;
533 int64_t len = bdrv_getlength(bs->file->bs);
535 uint64_t offset = qcrypto_block_get_payload_offset(crypto->block);
536 assert(offset < INT64_MAX);
537 assert(offset < len);
545 static int block_crypto_probe_luks(const uint8_t *buf,
547 const char *filename) {
548 return block_crypto_probe_generic(Q_CRYPTO_BLOCK_FORMAT_LUKS,
549 buf, buf_size, filename);
552 static int block_crypto_open_luks(BlockDriverState *bs,
557 return block_crypto_open_generic(Q_CRYPTO_BLOCK_FORMAT_LUKS,
558 &block_crypto_runtime_opts_luks,
559 bs, options, flags, errp);
562 static int coroutine_fn block_crypto_co_create_opts_luks(const char *filename,
566 return block_crypto_create_generic(Q_CRYPTO_BLOCK_FORMAT_LUKS,
567 filename, opts, errp);
570 static int block_crypto_get_info_luks(BlockDriverState *bs,
571 BlockDriverInfo *bdi)
573 BlockDriverInfo subbdi;
576 ret = bdrv_get_info(bs->file->bs, &subbdi);
581 bdi->unallocated_blocks_are_zero = false;
582 bdi->cluster_size = subbdi.cluster_size;
587 static ImageInfoSpecific *
588 block_crypto_get_specific_info_luks(BlockDriverState *bs)
590 BlockCrypto *crypto = bs->opaque;
591 ImageInfoSpecific *spec_info;
592 QCryptoBlockInfo *info;
594 info = qcrypto_block_get_info(crypto->block, NULL);
598 if (info->format != Q_CRYPTO_BLOCK_FORMAT_LUKS) {
599 qapi_free_QCryptoBlockInfo(info);
603 spec_info = g_new(ImageInfoSpecific, 1);
604 spec_info->type = IMAGE_INFO_SPECIFIC_KIND_LUKS;
605 spec_info->u.luks.data = g_new(QCryptoBlockInfoLUKS, 1);
606 *spec_info->u.luks.data = info->u.luks;
608 /* Blank out pointers we've just stolen to avoid double free */
609 memset(&info->u.luks, 0, sizeof(info->u.luks));
611 qapi_free_QCryptoBlockInfo(info);
616 BlockDriver bdrv_crypto_luks = {
617 .format_name = "luks",
618 .instance_size = sizeof(BlockCrypto),
619 .bdrv_probe = block_crypto_probe_luks,
620 .bdrv_open = block_crypto_open_luks,
621 .bdrv_close = block_crypto_close,
622 .bdrv_child_perm = bdrv_format_default_perms,
623 .bdrv_co_create_opts = block_crypto_co_create_opts_luks,
624 .bdrv_truncate = block_crypto_truncate,
625 .create_opts = &block_crypto_create_opts_luks,
627 .bdrv_reopen_prepare = block_crypto_reopen_prepare,
628 .bdrv_refresh_limits = block_crypto_refresh_limits,
629 .bdrv_co_preadv = block_crypto_co_preadv,
630 .bdrv_co_pwritev = block_crypto_co_pwritev,
631 .bdrv_getlength = block_crypto_getlength,
632 .bdrv_get_info = block_crypto_get_info_luks,
633 .bdrv_get_specific_info = block_crypto_get_specific_info_luks,
636 static void block_crypto_init(void)
638 bdrv_register(&bdrv_crypto_luks);
641 block_init(block_crypto_init);
projects / qemu.git / blob