NULL, NULL,
key_size,
¶ms);
+ check_signal(&r);
if (r < 0)
goto out;
params.hash ? 0 : key_size, 0,
activate_flags);
else {
- r = crypt_get_key(_("Enter passphrase: "),
+ r = tools_get_key(_("Enter passphrase: "),
&password, &passwordLen,
opt_keyfile_offset, opt_keyfile_size,
NULL, opt_timeout,
r = crypt_format(cd, CRYPT_LOOPAES, opt_cipher ?: DEFAULT_LOOPAES_CIPHER,
NULL, NULL, NULL, key_size, ¶ms);
+ check_signal(&r);
if (r < 0)
goto out;
goto out;
/* TCRYPT header is encrypted, get passphrase now */
- r = crypt_get_key(_("Enter passphrase: "),
+ r = tools_get_key(_("Enter passphrase: "),
CONST_CAST(char**)¶ms.passphrase,
¶ms.passphrase_size, 0, 0, NULL, opt_timeout,
_verify_passphrase(0), cd);
params.flags |= CRYPT_TCRYPT_HIDDEN_HEADER;
r = crypt_load(cd, CRYPT_TCRYPT, ¶ms);
+ check_signal(&r);
if (r < 0)
goto out;
goto out;
/* TCRYPT header is encrypted, get passphrase now */
- r = crypt_get_key(_("Enter passphrase: "),
+ r = tools_get_key(_("Enter passphrase: "),
CONST_CAST(char**)¶ms.passphrase,
¶ms.passphrase_size, 0, 0, NULL, opt_timeout,
_verify_passphrase(0), cd);
params.flags |= CRYPT_TCRYPT_HIDDEN_HEADER;
r = crypt_load(cd, CRYPT_TCRYPT, ¶ms);
+ check_signal(&r);
if (r < 0)
goto out;
{ "twofish", "xts", 64, 16 },
{ NULL, NULL, 0, 0 }
};
+ static char *bkdfs[] = {
+ "sha1", "sha256", "sha512", "ripemd160", "whirlpool", NULL
+ };
char cipher[MAX_CIPHER_LEN], cipher_mode[MAX_CIPHER_LEN];
double enc_mbr = 0, dec_mbr = 0;
int key_size = (opt_key_size ?: DEFAULT_PLAIN_KEYBITS);
} else if (r == -ENOENT)
log_err(_("Cipher %s is not available.\n"), opt_cipher);
} else {
- action_benchmark_kdf("sha1");
- action_benchmark_kdf("sha256");
- action_benchmark_kdf("sha512");
- action_benchmark_kdf("ripemd160");
- action_benchmark_kdf("whirlpool");
+ for (i = 0; bkdfs[i]; i++) {
+ r = action_benchmark_kdf(bkdfs[i]);
+ check_signal(&r);
+ if (r == -EINTR)
+ break;
+ }
for (i = 0; bciphers[i].cipher; i++) {
r = crypt_benchmark(NULL, bciphers[i].cipher, bciphers[i].mode,
bciphers[i].key_size, bciphers[i].iv_size,
buffer_size, &enc_mbr, &dec_mbr);
- if (r == -ENOTSUP)
+ check_signal(&r);
+ if (r == -ENOTSUP || r == -EINTR)
break;
if (r == -ENOENT)
skipped++;
else if (opt_urandom)
crypt_set_rng_type(cd, CRYPT_RNG_URANDOM);
- r = crypt_get_key(_("Enter LUKS passphrase: "), &password, &passwordLen,
+ r = tools_get_key(_("Enter LUKS passphrase: "), &password, &passwordLen,
opt_keyfile_offset, opt_keyfile_size, opt_key_file,
opt_timeout, _verify_passphrase(1), cd);
if (r < 0)
r = crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode,
opt_uuid, key, keysize, ¶ms);
+ check_signal(&r);
if (r < 0)
goto out;
if (ki == CRYPT_SLOT_ACTIVE_LAST && msg_last && !yesDialog(msg_last, NULL))
return -EPERM;
- r = crypt_get_key(msg_pass, &password, &passwordLen,
+ r = tools_get_key(msg_pass, &password, &passwordLen,
keyfile_offset, keyfile_size, key_file, opt_timeout,
_verify_passphrase(0), cd);
if(r < 0)
if ((r = crypt_load(cd, CRYPT_LUKS1, NULL)))
goto out;
- r = crypt_get_key(_("Enter LUKS passphrase to be deleted: "),
+ r = tools_get_key(_("Enter LUKS passphrase to be deleted: "),
&password, &passwordLen,
opt_keyfile_offset, opt_keyfile_size, opt_key_file,
opt_timeout,
r = crypt_activate_by_passphrase(cd, NULL, CRYPT_ANY_SLOT,
password, passwordLen, 0);
+ check_signal(&r);
if (r < 0)
goto out;
if (opt_iteration_time)
crypt_set_iteration_time(cd, opt_iteration_time);
- r = crypt_get_key(_("Enter LUKS passphrase to be changed: "),
+ r = tools_get_key(_("Enter LUKS passphrase to be changed: "),
&password, &password_size,
opt_keyfile_offset, opt_keyfile_size, opt_key_file,
opt_timeout, _verify_passphrase(0), cd);
/* Check password before asking for new one */
r = crypt_activate_by_passphrase(cd, NULL, opt_key_slot,
password, password_size, 0);
+ check_signal(&r);
if (r < 0)
goto out;
- r = crypt_get_key(_("Enter new LUKS passphrase: "),
+ r = tools_get_key(_("Enter new LUKS passphrase: "),
&password_new, &password_new_size,
opt_new_keyfile_offset, opt_new_keyfile_size,
opt_new_key_file,
if (!vk)
return -ENOMEM;
- r = crypt_get_key(_("Enter LUKS passphrase: "), &password, &passwordLen,
+ r = tools_get_key(_("Enter LUKS passphrase: "), &password, &passwordLen,
opt_keyfile_offset, opt_keyfile_size, opt_key_file,
opt_timeout, 0, cd);
if (r < 0)
r = crypt_volume_key_get(cd, CRYPT_ANY_SLOT, vk, &vk_size,
password, passwordLen);
+ check_signal(&r);
if (r < 0)
goto out;
if (action->required_memlock)
crypt_memory_lock(NULL, 1);
+ set_int_handler(0);
r = action->handler();
if (action->required_memlock)
/* Some functions returns keyslot # */
if (r > 0)
r = 0;
+ check_signal(&r);
show_status(r);
return translate_errno(r);
/* interrupt handling */
volatile int quit = 0;
+static int signals_blocked = 0;
static void int_handler(int sig __attribute__((__unused__)))
{
{
sigset_t signals_open;
+ log_dbg("%slocking interruption on signal.", block ? "B" : "Unb");
+
sigemptyset(&signals_open);
sigaddset(&signals_open, SIGINT);
sigaddset(&signals_open, SIGTERM);
sigprocmask(block ? SIG_SETMASK : SIG_UNBLOCK, &signals_open, NULL);
+ signals_blocked = block;
+ quit = 0;
}
-void set_int_handler(void)
+void set_int_handler(int block)
{
struct sigaction sigaction_open;
+ log_dbg("Installing SIGINT/SIGTERM handler.");
memset(&sigaction_open, 0, sizeof(struct sigaction));
sigaction_open.sa_handler = int_handler;
sigaction(SIGINT, &sigaction_open, 0);
sigaction(SIGTERM, &sigaction_open, 0);
- set_int_block(0);
+ set_int_block(block);
+}
+
+void check_signal(int *r)
+{
+ if (quit && !*r)
+ *r = -EINTR;
+}
+
+/* crypt_get_key() with signal handler */
+int tools_get_key(const char *prompt,
+ char **key, size_t *key_size,
+ size_t keyfile_offset, size_t keyfile_size_max,
+ const char *key_file,
+ int timeout, int verify,
+ struct crypt_device *cd)
+{
+ int r, block;
+
+ block = signals_blocked;
+ if (block)
+ set_int_block(0);
+
+ r = crypt_get_key(prompt, key, key_size, keyfile_offset,
+ keyfile_size_max, key_file, timeout, verify, cd);
+ if (block && !quit)
+ set_int_block(1);
+
+ return r;
}
__attribute__((format(printf, 5, 6)))
{
char *answer = NULL;
size_t size = 0;
- int r = 1;
+ int r = 1, block;
+
+ block = signals_blocked;
+ if (block)
+ set_int_block(0);
if(isatty(STDIN_FILENO) && !opt_batch_mode) {
log_std("\nWARNING!\n========\n");
log_std("%s\n\nAre you sure? (Type uppercase yes): ", msg);
if(getline(&answer, &size, stdin) == -1) {
- perror("getline");
- free(answer);
- return 0;
- }
- if(strcmp(answer, "YES\n"))
r = 0;
- free(answer);
+ /* Aborted by signal */
+ if (!quit)
+ log_err(_("Error reading response from terminal.\n"));
+ else
+ log_dbg("Query interrupted on signal.");
+ } else if(strcmp(answer, "YES\n"))
+ r = 0;
}
+ if (block && !quit)
+ set_int_block(1);
+
+ free(answer);
return r;
}
projects / platform / upstream / cryptsetup.git / commitdiff