2 * cryptsetup library API check functions
4 * Copyright (C) 2009-2023 Red Hat, Inc. All rights reserved.
5 * Copyright (C) 2009-2023 Milan Broz
6 * Copyright (C) 2016-2023 Ondrej Kozina
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License
10 * as published by the Free Software Foundation; either version 2
11 * of the License, or (at your option) any later version.
13 * This program is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 * GNU General Public License for more details.
18 * You should have received a copy of the GNU General Public License
19 * along with this program; if not, write to the Free Software
20 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
31 #include <sys/types.h>
34 #include "luks1/luks.h"
35 #include "libcryptsetup.h"
37 #define DEVICE_1_UUID "28632274-8c8a-493f-835b-da802e1c576b"
38 #define DEVICE_EMPTY_name "crypt_zero"
39 #define DEVICE_EMPTY DMDIR DEVICE_EMPTY_name
40 #define DEVICE_ERROR_name "crypt_error"
41 #define DEVICE_ERROR DMDIR DEVICE_ERROR_name
43 #define CDEVICE_1 "ctest1"
44 #define CDEVICE_2 "ctest2"
45 #define CDEVICE_WRONG "O_o"
46 #define H_DEVICE "head_ok"
47 #define H_DEVICE_WRONG "head_wr"
48 #define L_DEVICE_1S "luks_onesec"
49 #define L_DEVICE_0S "luks_zerosec"
50 #define L_DEVICE_WRONG "luks_wr"
51 #define L_DEVICE_OK "luks_ok"
52 #define EVL_HEADER_1 "evil_hdr-luks_hdr_damage"
53 #define EVL_HEADER_2 "evil_hdr-payload_overwrite"
54 #define EVL_HEADER_3 "evil_hdr-stripes_payload_dmg"
55 #define EVL_HEADER_4 "evil_hdr-small_luks_device"
56 #define EVL_HEADER_5 "evil_hdr-keyslot_overlap"
57 #define VALID_HEADER "valid_header_file"
58 #define BACKUP_FILE "csetup_backup_file"
59 #define IMAGE1 "compatimage.img"
60 #define IMAGE_EMPTY "empty.img"
62 #define KEYFILE1 "key1.file"
63 #define KEY1 "compatkey"
65 #define KEYFILE2 "key2.file"
66 #define KEY2 "0123456789abcdef"
68 #define PASSPHRASE "blablabl"
69 #define PASSPHRASE1 "albalbal"
71 #define DEVICE_TEST_UUID "12345678-1234-1234-1234-123456789abc"
73 #define DEVICE_WRONG "/dev/Ooo_"
74 #define DEVICE_CHAR "/dev/zero"
75 #define THE_LFILE_TEMPLATE "cryptsetup-tstlp.XXXXXX"
77 #define LUKS_PHDR_SIZE_B 1024
79 static int _fips_mode = 0;
81 static char *DEVICE_1 = NULL;
82 static char *DEVICE_2 = NULL;
83 static char *DEVICE_3 = NULL;
85 static char *tmp_file_1 = NULL;
86 static char *test_loop_file = NULL;
88 struct crypt_device *cd = NULL, *cd2 = NULL;
92 static int get_luks_offsets(int metadata_device,
94 unsigned int alignpayload_sec,
95 unsigned int alignoffset_sec,
96 uint64_t *r_header_size,
97 uint64_t *r_payload_offset)
100 uint64_t current_sector;
101 uint32_t sectors_per_stripes_set;
106 if (r_payload_offset)
107 *r_payload_offset = 0;
111 sectors_per_stripes_set = DIV_ROUND_UP(keylength*LUKS_STRIPES, TST_SECTOR_SIZE);
112 current_sector = DIV_ROUND_UP_MODULO(DIV_ROUND_UP(LUKS_PHDR_SIZE_B, TST_SECTOR_SIZE),
113 LUKS_ALIGN_KEYSLOTS / TST_SECTOR_SIZE);
114 for (i=0; i < (LUKS_NUMKEYS - 1); i++)
115 current_sector = DIV_ROUND_UP_MODULO(current_sector + sectors_per_stripes_set,
116 LUKS_ALIGN_KEYSLOTS / TST_SECTOR_SIZE);
118 *r_header_size = current_sector + sectors_per_stripes_set;
120 current_sector = DIV_ROUND_UP_MODULO(current_sector + sectors_per_stripes_set,
121 LUKS_ALIGN_KEYSLOTS / TST_SECTOR_SIZE);
123 if (r_payload_offset) {
125 *r_payload_offset = alignpayload_sec;
127 *r_payload_offset = DIV_ROUND_UP_MODULO(current_sector, alignpayload_sec)
134 static void _remove_keyfiles(void)
140 #if HAVE_DECL_DM_TASK_RETRY_REMOVE
141 #define DM_RETRY "--retry "
146 #define DM_NOSTDERR " 2>/dev/null"
148 static void _cleanup_dmdevices(void)
152 if (!stat(DMDIR H_DEVICE, &st))
153 _system("dmsetup remove " DM_RETRY H_DEVICE DM_NOSTDERR, 0);
155 if (!stat(DMDIR H_DEVICE_WRONG, &st))
156 _system("dmsetup remove " DM_RETRY H_DEVICE_WRONG DM_NOSTDERR, 0);
158 if (!stat(DMDIR L_DEVICE_0S, &st))
159 _system("dmsetup remove " DM_RETRY L_DEVICE_0S DM_NOSTDERR, 0);
161 if (!stat(DMDIR L_DEVICE_1S, &st))
162 _system("dmsetup remove " DM_RETRY L_DEVICE_1S DM_NOSTDERR, 0);
164 if (!stat(DMDIR L_DEVICE_WRONG, &st))
165 _system("dmsetup remove " DM_RETRY L_DEVICE_WRONG DM_NOSTDERR, 0);
167 if (!stat(DMDIR L_DEVICE_OK, &st))
168 _system("dmsetup remove " DM_RETRY L_DEVICE_OK DM_NOSTDERR, 0);
173 static void _cleanup(void)
180 //_system("udevadm settle", 0);
182 if (!stat(DMDIR CDEVICE_1, &st))
183 _system("dmsetup remove " DM_RETRY CDEVICE_1 DM_NOSTDERR, 0);
185 if (!stat(DMDIR CDEVICE_2, &st))
186 _system("dmsetup remove " DM_RETRY CDEVICE_2 DM_NOSTDERR, 0);
188 if (!stat(DEVICE_EMPTY, &st))
189 _system("dmsetup remove " DM_RETRY DEVICE_EMPTY_name DM_NOSTDERR, 0);
191 if (!stat(DEVICE_ERROR, &st))
192 _system("dmsetup remove " DM_RETRY DEVICE_ERROR_name DM_NOSTDERR, 0);
194 _cleanup_dmdevices();
196 if (loop_device(THE_LOOP_DEV))
197 loop_detach(THE_LOOP_DEV);
199 if (loop_device(DEVICE_1))
200 loop_detach(DEVICE_1);
202 if (loop_device(DEVICE_2))
203 loop_detach(DEVICE_2);
205 if (loop_device(DEVICE_3))
206 loop_detach(DEVICE_3);
208 _system("rm -f " IMAGE_EMPTY, 0);
209 _system("rm -f " IMAGE1, 0);
212 remove(test_loop_file);
216 remove(EVL_HEADER_1);
217 remove(EVL_HEADER_2);
218 remove(EVL_HEADER_3);
219 remove(EVL_HEADER_4);
220 remove(EVL_HEADER_5);
221 remove(VALID_HEADER);
227 free(test_loop_file);
234 static int _setup(void)
239 test_loop_file = strdup(THE_LFILE_TEMPLATE);
243 if ((fd=mkstemp(test_loop_file)) == -1) {
244 printf("cannot create temporary file with template %s\n", test_loop_file);
248 if (snprintf(cmd, sizeof(cmd), "dd if=/dev/zero of=%s bs=%d count=%d 2>/dev/null",
249 test_loop_file, TST_SECTOR_SIZE, TST_LOOP_FILE_SIZE) < 0)
254 fd = loop_attach(&THE_LOOP_DEV, test_loop_file, 0, 0, &ro);
257 tmp_file_1 = strdup(THE_LFILE_TEMPLATE);
261 if ((fd=mkstemp(tmp_file_1)) == -1) {
262 printf("cannot create temporary file with template %s\n", tmp_file_1);
266 if (snprintf(cmd, sizeof(cmd), "dd if=/dev/zero of=%s bs=%d count=%d 2>/dev/null",
267 tmp_file_1, TST_SECTOR_SIZE, 10) < 0)
272 _system("dmsetup create " DEVICE_EMPTY_name " --table \"0 10000 zero\"", 1);
273 _system("dmsetup create " DEVICE_ERROR_name " --table \"0 10000 error\"", 1);
275 _system(" [ ! -e " IMAGE1 " ] && xz -dk " IMAGE1 ".xz", 1);
276 fd = loop_attach(&DEVICE_1, IMAGE1, 0, 0, &ro);
279 _system("dd if=/dev/zero of=" IMAGE_EMPTY " bs=1M count=10 2>/dev/null", 1);
280 fd = loop_attach(&DEVICE_2, IMAGE_EMPTY, 0, 0, &ro);
283 /* Keymaterial offset is less than 8 sectors */
284 _system(" [ ! -e " EVL_HEADER_1 " ] && xz -dk " EVL_HEADER_1 ".xz", 1);
285 /* keymaterial offset aims into payload area */
286 _system(" [ ! -e " EVL_HEADER_2 " ] && xz -dk " EVL_HEADER_2 ".xz", 1);
287 /* keymaterial offset is valid, number of stripes causes payload area to be overwritten */
288 _system(" [ ! -e " EVL_HEADER_3 " ] && xz -dk " EVL_HEADER_3 ".xz", 1);
289 /* luks device header for data and header on same device. payloadOffset is greater than
290 * device size (crypt_load() test) */
291 _system(" [ ! -e " EVL_HEADER_4 " ] && xz -dk " EVL_HEADER_4 ".xz", 1);
292 /* two keyslots with same offset (overlapping keyslots) */
293 _system(" [ ! -e " EVL_HEADER_5 " ] && xz -dk " EVL_HEADER_5 ".xz", 1);
294 /* valid header: payloadOffset=4096, key_size=32,
295 * volume_key = bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a */
296 _system(" [ ! -e " VALID_HEADER " ] && xz -dk " VALID_HEADER ".xz", 1);
298 /* Prepare tcrypt images */
299 _system("tar xJf tcrypt-images.tar.xz 2>/dev/null", 1);
301 _system("modprobe dm-crypt >/dev/null 2>&1", 0);
302 _system("modprobe dm-verity >/dev/null 2>&1", 0);
303 _system("modprobe dm-integrity >/dev/null 2>&1", 0);
305 if (t_dm_check_versions())
308 _fips_mode = fips_mode();
310 printf("FIPS MODE: %d\n", _fips_mode);
312 /* Use default log callback */
313 crypt_set_log_callback(NULL, &global_log_callback, NULL);
318 static void AddDevicePlain(void)
320 struct crypt_params_plain params = {
327 char key[128], key2[128], path[128];
328 struct crypt_keyslot_context *kc = NULL;
330 const char *passphrase = "blabla";
331 // hashed hex version of PASSPHRASE
332 const char *vk_hex = "ccadd99b16cd3d200c22d6db45d8b6630ef3d936767127347ec8a76ab992c2ea";
333 size_t key_size = strlen(vk_hex) / 2;
334 const char *cipher = "aes";
335 const char *cipher_mode = "cbc-essiv:sha256";
337 uint64_t size, r_size;
339 crypt_decode_key(key, vk_hex, key_size);
340 FAIL_(crypt_init(&cd, ""), "empty device string");
341 FAIL_(crypt_init(&cd, DEVICE_WRONG), "nonexistent device name ");
342 FAIL_(crypt_init(&cd, DEVICE_CHAR), "character device as backing device");
343 OK_(crypt_init(&cd, tmp_file_1));
346 // test crypt_format, crypt_get_cipher, crypt_get_cipher_mode, crypt_get_volume_key_size
347 OK_(crypt_init(&cd,DEVICE_1));
350 FAIL_(crypt_format(cd,CRYPT_PLAIN,NULL,cipher_mode,NULL,NULL,key_size,¶ms),"cipher param is null");
351 FAIL_(crypt_format(cd,CRYPT_PLAIN,cipher,NULL,NULL,NULL,key_size,¶ms),"cipher_mode param is null");
352 OK_(crypt_format(cd,CRYPT_PLAIN,cipher,cipher_mode,NULL,NULL,key_size,¶ms));
353 OK_(strcmp(cipher_mode,crypt_get_cipher_mode(cd)));
354 OK_(strcmp(cipher,crypt_get_cipher(cd)));
355 EQ_((int)key_size, crypt_get_volume_key_size(cd));
356 EQ_(params.skip, crypt_get_iv_offset(cd));
357 EQ_(params.offset, crypt_get_data_offset(cd));
362 FAIL_(crypt_set_uuid(cd,DEVICE_1_UUID),"can't set uuid to plain device");
366 // default is "plain" hash - no password hash
367 OK_(crypt_init(&cd, DEVICE_1));
368 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, NULL));
369 FAIL_(crypt_activate_by_volume_key(cd, NULL, key, key_size, 0), "cannot verify key with plain");
370 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
371 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
372 OK_(crypt_deactivate(cd, CDEVICE_1));
375 // test boundaries in offset parameter
376 t_device_size(DEVICE_1,&size);
378 // zero sectors length
379 params.offset = size >> TST_SECTOR_SHIFT;
380 OK_(crypt_init(&cd, DEVICE_1));
381 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
382 EQ_(crypt_get_data_offset(cd),params.offset);
383 // device size is 0 sectors
384 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0), "invalid device size (0 blocks)");
385 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
386 // data part of crypt device is of 1 sector size
387 params.offset = (size >> TST_SECTOR_SHIFT) - 1;
390 OK_(crypt_init(&cd, DEVICE_1));
391 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
392 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0));
393 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
394 GE_(snprintf(path, sizeof(path), "%s/%s", crypt_get_dir(), CDEVICE_1), 0);
395 if (t_device_size(path, &r_size) >= 0)
396 EQ_(r_size >> TST_SECTOR_SHIFT, 1);
397 OK_(crypt_deactivate(cd, CDEVICE_1));
400 // size > device_size
402 params.size = (size >> TST_SECTOR_SHIFT) + 1;
403 crypt_init(&cd, DEVICE_1);
404 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
405 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0),"Device too small");
406 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
409 // offset == device_size (autodetect size)
410 params.offset = (size >> TST_SECTOR_SHIFT);
412 crypt_init(&cd, DEVICE_1);
413 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
414 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0),"Device too small");
415 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
418 // offset == device_size (user defined size)
419 params.offset = (size >> TST_SECTOR_SHIFT);
421 crypt_init(&cd, DEVICE_1);
422 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
423 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0),"Device too small");
424 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
427 // offset+size > device_size
429 params.size = (size >> TST_SECTOR_SHIFT) - params.offset + 1;
430 crypt_init(&cd, DEVICE_1);
431 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
432 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0),"Offset and size are beyond device real size");
433 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
436 // offset+size == device_size
438 params.size = (size >> TST_SECTOR_SHIFT) - params.offset;
439 crypt_init(&cd, DEVICE_1);
440 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
441 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0));
442 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
443 if (!t_device_size(path, &r_size))
444 EQ_((r_size >> TST_SECTOR_SHIFT),params.size);
445 OK_(crypt_deactivate(cd,CDEVICE_1));
448 params.hash = "sha256";
453 // Now use hashed password
454 OK_(crypt_init(&cd, DEVICE_1));
455 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
456 FAIL_(crypt_activate_by_passphrase(cd, NULL, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0),
457 "cannot verify passphrase with plain" );
458 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0));
460 // device status check
461 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
462 GE_(snprintf(path, sizeof(path), "%s/%s", crypt_get_dir(), CDEVICE_1), 0);
463 fd = open(path, O_RDONLY);
464 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_BUSY);
465 FAIL_(crypt_deactivate(cd, CDEVICE_1), "Device is busy");
467 OK_(crypt_deactivate(cd, CDEVICE_1));
468 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
471 // crypt_init_by_name_and_header
472 OK_(crypt_init(&cd,DEVICE_1));
473 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
474 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
477 // init with detached header is not supported
478 OK_(crypt_init_data_device(&cd, DEVICE_2, DEVICE_1));
479 FAIL_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms),
480 "can't use plain with separate metadata device");
483 FAIL_(crypt_init_by_name_and_header(&cd, CDEVICE_1, H_DEVICE),"can't init plain device by header device");
484 OK_(crypt_init_by_name(&cd, CDEVICE_1));
485 OK_(strcmp(cipher_mode,crypt_get_cipher_mode(cd)));
486 OK_(strcmp(cipher,crypt_get_cipher(cd)));
487 EQ_((int)key_size, crypt_get_volume_key_size(cd));
488 EQ_(params.skip, crypt_get_iv_offset(cd));
489 EQ_(params.offset, crypt_get_data_offset(cd));
490 OK_(crypt_deactivate(cd, CDEVICE_1));
493 OK_(crypt_init(&cd,DEVICE_1));
494 OK_(crypt_format(cd,CRYPT_PLAIN,cipher,cipher_mode,NULL,NULL,key_size,¶ms));
498 // crypt_set_data_device
499 FAIL_(crypt_set_data_device(cd,H_DEVICE),"can't set data device for plain device");
500 NULL_(crypt_get_metadata_device_name(cd));
501 FAIL_(crypt_header_is_detached(cd), "plain has no header");
504 OK_(strcmp(crypt_get_type(cd),CRYPT_PLAIN));
506 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
507 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
510 OK_(crypt_resize(cd, CDEVICE_1, size >> TST_SECTOR_SHIFT)); // same size
511 if (!t_device_size(path,&r_size))
515 FAIL_(crypt_resize(cd, CDEVICE_1, (uint64_t)-1),"Backing device is too small");
516 FAIL_(crypt_resize(cd, CDEVICE_1, (size >> TST_SECTOR_SHIFT) + 1),"crypt device overlaps backing device");
519 OK_(crypt_resize(cd,CDEVICE_1, 123));
520 if (!t_device_size(path,&r_size))
521 EQ_(r_size >> TST_SECTOR_SHIFT, 123);
522 OK_(crypt_resize(cd,CDEVICE_1,0)); // full size (autodetect)
523 if (!t_device_size(path,&r_size))
525 OK_(crypt_deactivate(cd,CDEVICE_1));
526 EQ_(crypt_status(cd,CDEVICE_1),CRYPT_INACTIVE);
530 OK_(crypt_init(&cd,DEVICE_1));
532 params.size = (size >> TST_SECTOR_SHIFT) - params.offset - 10;
533 OK_(crypt_format(cd,CRYPT_PLAIN,cipher,cipher_mode,NULL,NULL,key_size,¶ms));
534 OK_(crypt_activate_by_volume_key(cd,CDEVICE_1,key,key_size,0));
535 if (!t_device_size(path,&r_size))
536 EQ_(r_size >> TST_SECTOR_SHIFT, params.size);
537 // resize to fill remaining capacity
538 OK_(crypt_resize(cd,CDEVICE_1,params.size + 10));
539 if (!t_device_size(path,&r_size))
540 EQ_(r_size >> TST_SECTOR_SHIFT, params.size + 10);
542 // 1 sector beyond real size
543 FAIL_(crypt_resize(cd,CDEVICE_1,params.size + 11), "new device size overlaps backing device"); // with respect to offset
544 if (!t_device_size(path,&r_size))
545 EQ_(r_size >> TST_SECTOR_SHIFT, params.size + 10);
546 GE_(crypt_status(cd,CDEVICE_1),CRYPT_ACTIVE);
547 fd = open(path, O_RDONLY);
548 NOTFAIL_(fd, "Bad loop device.");
551 // resize to minimal size
552 OK_(crypt_resize(cd,CDEVICE_1, 1)); // minimal device size
553 if (!t_device_size(path,&r_size))
554 EQ_(r_size >> TST_SECTOR_SHIFT, 1);
555 // use size of backing device (autodetect with respect to offset)
556 OK_(crypt_resize(cd,CDEVICE_1,0));
557 if (!t_device_size(path,&r_size))
558 EQ_(r_size >> TST_SECTOR_SHIFT, (size >> TST_SECTOR_SHIFT)- 42);
559 OK_(crypt_deactivate(cd,CDEVICE_1));
564 OK_(crypt_init(&cd,DEVICE_1));
565 OK_(crypt_format(cd,CRYPT_PLAIN,cipher,cipher_mode,NULL,NULL,key_size,¶ms));
566 OK_(crypt_activate_by_volume_key(cd,CDEVICE_1,key,key_size,0));
568 // suspend/resume tests
569 FAIL_(crypt_suspend(cd,CDEVICE_1),"cannot suspend plain device");
570 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
571 FAIL_(crypt_resume_by_passphrase(cd,CDEVICE_1,CRYPT_ANY_SLOT,passphrase, strlen(passphrase)),"cannot resume plain device");
572 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
574 // retrieve volume key check
575 memset(key2, 0, key_size);
578 FAIL_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key2, &key_size, passphrase, strlen(passphrase)), "small buffer");
580 OK_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key2, &key_size, passphrase, strlen(passphrase)));
581 OK_(memcmp(key, key2, key_size));
582 memset(key2, 0, key_size);
583 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase, strlen(passphrase), &kc));
584 OK_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, kc));
585 OK_(memcmp(key, key2, key_size));
586 crypt_keyslot_context_free(kc);
588 OK_(strcmp(cipher, crypt_get_cipher(cd)));
589 OK_(strcmp(cipher_mode, crypt_get_cipher_mode(cd)));
590 EQ_((int)key_size, crypt_get_volume_key_size(cd));
591 EQ_(0, crypt_get_data_offset(cd));
592 OK_(crypt_deactivate(cd, CDEVICE_1));
595 OK_(prepare_keyfile(KEYFILE1, KEY1, strlen(KEY1)));
596 OK_(prepare_keyfile(KEYFILE2, KEY2, strlen(KEY2)));
597 FAIL_(crypt_activate_by_keyfile(cd, NULL, CRYPT_ANY_SLOT, KEYFILE1, 0, 0), "cannot verify key with plain");
598 EQ_(0, crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0));
599 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
600 OK_(crypt_deactivate(cd, CDEVICE_1));
601 FAIL_(crypt_activate_by_keyfile_offset(cd, NULL, CRYPT_ANY_SLOT, KEYFILE1, 0, strlen(KEY1) + 1, 0), "cannot seek");
602 FAIL_(crypt_activate_by_keyfile_device_offset(cd, NULL, CRYPT_ANY_SLOT, KEYFILE1, 0, strlen(KEY1) + 1, 0), "cannot seek");
603 EQ_(0, crypt_activate_by_keyfile_offset(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0, 0));
604 OK_(crypt_deactivate(cd, CDEVICE_1));
605 EQ_(0, crypt_activate_by_keyfile_device_offset(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0, 0));
606 OK_(crypt_deactivate(cd, CDEVICE_1));
610 OK_(crypt_init(&cd,DEVICE_1));
611 OK_(crypt_format(cd,CRYPT_PLAIN,cipher,cipher_mode,NULL,NULL,key_size,¶ms));
614 FAIL_(crypt_keyslot_add_by_passphrase(cd,CRYPT_ANY_SLOT,passphrase,strlen(passphrase),passphrase,strlen(passphrase)), "can't add keyslot to plain device");
615 FAIL_(crypt_keyslot_add_by_volume_key(cd,CRYPT_ANY_SLOT ,key,key_size,passphrase,strlen(passphrase)),"can't add keyslot to plain device");
616 FAIL_(crypt_keyslot_add_by_keyfile(cd,CRYPT_ANY_SLOT,KEYFILE1,strlen(KEY1),KEYFILE2,strlen(KEY2)),"can't add keyslot to plain device");
617 FAIL_(crypt_keyslot_destroy(cd,1),"can't manipulate keyslots on plain device");
618 EQ_(crypt_keyslot_status(cd, 0), CRYPT_SLOT_INVALID);
619 FAIL_(crypt_set_label(cd, "label", "subsystem"), "can't set labels for plain device");
620 NULL_(crypt_get_label(cd));
621 NULL_(crypt_get_subsystem(cd));
627 static int new_messages = 0;
628 static void new_log(int level, const char *msg, void *usrptr)
630 if (level == CRYPT_LOG_ERROR)
632 global_log_callback(level, msg, usrptr);
635 static void CallbacksTest(void)
637 struct crypt_params_plain params = {
643 size_t key_size = 256 / 8;
644 const char *cipher = "aes";
645 const char *cipher_mode = "cbc-essiv:sha256";
646 const char *passphrase = PASSPHRASE;
648 OK_(crypt_init(&cd, DEVICE_1));
650 crypt_set_log_callback(cd, &new_log, NULL);
651 EQ_(new_messages, 0);
652 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, ¶ms));
653 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0));
654 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
655 EQ_(new_messages, 0);
656 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0), "already exists");
657 EQ_(new_messages, 1);
658 crypt_set_log_callback(cd, NULL, NULL);
659 OK_(crypt_deactivate(cd, CDEVICE_1));
663 static void UseLuksDevice(void)
668 OK_(crypt_init(&cd, DEVICE_1));
669 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
670 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
671 OK_(crypt_activate_by_passphrase(cd, NULL, CRYPT_ANY_SLOT, KEY1, strlen(KEY1), 0));
672 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1), 0));
673 FAIL_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1), 0), "already open");
674 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
675 OK_(crypt_deactivate(cd, CDEVICE_1));
676 FAIL_(crypt_deactivate(cd, CDEVICE_1), "no such device");
679 OK_(strcmp("aes", crypt_get_cipher(cd)));
680 OK_(strcmp("cbc-essiv:sha256", crypt_get_cipher_mode(cd)));
681 OK_(strcmp(DEVICE_1_UUID, crypt_get_uuid(cd)));
682 EQ_((int)key_size, crypt_get_volume_key_size(cd));
683 EQ_(1032, crypt_get_data_offset(cd));
685 EQ_(0, crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key, &key_size, KEY1, strlen(KEY1)));
686 OK_(crypt_volume_key_verify(cd, key, key_size));
687 OK_(crypt_activate_by_volume_key(cd, NULL, key, key_size, 0));
688 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
689 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
690 OK_(crypt_deactivate(cd, CDEVICE_1));
693 FAIL_(crypt_volume_key_verify(cd, key, key_size), "key mismatch");
694 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0), "key mismatch");
699 static void SuspendDevice(void)
701 struct crypt_active_device cad;
705 uint64_t r_payload_offset;
706 const struct crypt_pbkdf_type fast_pbkdf = {
710 .flags = CRYPT_PBKDF_NO_BENCHMARK
713 OK_(crypt_init(&cd, DEVICE_1));
714 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
715 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1), 0));
717 suspend_status = crypt_suspend(cd, CDEVICE_1);
718 if (suspend_status == -ENOTSUP) {
719 printf("WARNING: Suspend/Resume not supported, skipping test.\n");
720 OK_(crypt_deactivate(cd, CDEVICE_1));
726 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
727 EQ_(CRYPT_ACTIVATE_SUSPENDED, cad.flags & CRYPT_ACTIVATE_SUSPENDED);
729 FAIL_(crypt_suspend(cd, CDEVICE_1), "already suspended");
731 FAIL_(crypt_resume_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1)-1), "wrong key");
732 OK_(crypt_resume_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1)));
733 FAIL_(crypt_resume_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1)), "not suspended");
735 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
736 EQ_(0, cad.flags & CRYPT_ACTIVATE_SUSPENDED);
738 OK_(prepare_keyfile(KEYFILE1, KEY1, strlen(KEY1)));
739 OK_(crypt_suspend(cd, CDEVICE_1));
740 FAIL_(crypt_resume_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1 "blah", 0), "wrong keyfile");
741 FAIL_(crypt_resume_by_keyfile_offset(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 1, 0), "wrong key");
742 FAIL_(crypt_resume_by_keyfile_device_offset(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 1, 0), "wrong key");
743 OK_(crypt_resume_by_keyfile_device_offset(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0));
744 FAIL_(crypt_resume_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0), "not suspended");
745 OK_(crypt_deactivate(cd, CDEVICE_1));
748 /* create LUKS device with detached header */
749 OK_(crypt_init(&cd, DEVICE_1));
750 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
751 OK_(crypt_set_data_device(cd, DEVICE_2));
752 OK_(crypt_activate_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1), 0));
755 /* Should be able to suspend but not resume if not header specified */
756 OK_(crypt_init_by_name(&cd, CDEVICE_1));
757 OK_(crypt_suspend(cd, CDEVICE_1));
758 FAIL_(crypt_suspend(cd, CDEVICE_1), "already suspended");
759 FAIL_(crypt_resume_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1)-1), "no header");
762 OK_(crypt_init_by_name_and_header(&cd, CDEVICE_1, DEVICE_1));
763 OK_(crypt_resume_by_passphrase(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEY1, strlen(KEY1)));
765 /* Resume by volume key */
766 OK_(crypt_suspend(cd, CDEVICE_1));
767 key_size = sizeof(key);
768 memset(key, 0, key_size);
769 FAIL_(crypt_resume_by_volume_key(cd, CDEVICE_1, key, key_size), "wrong key");
770 OK_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key, &key_size, KEY1, strlen(KEY1)));
771 OK_(crypt_resume_by_volume_key(cd, CDEVICE_1, key, key_size));
772 OK_(crypt_deactivate(cd, CDEVICE_1));
775 /* skip tests using empty passphrase */
779 OK_(get_luks_offsets(0, key_size, 1024*2, 0, NULL, &r_payload_offset));
780 OK_(create_dmdevice_over_loop(L_DEVICE_OK, r_payload_offset + 1));
782 /* Resume device with cipher_null */
783 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
784 OK_(crypt_set_pbkdf_type(cd, &fast_pbkdf));
785 OK_(crypt_format(cd, CRYPT_LUKS1, "cipher_null", "ecb", NULL, key, key_size, NULL));
786 EQ_(0, crypt_keyslot_add_by_volume_key(cd, 0, key, key_size, "", 0));
787 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
788 OK_(crypt_suspend(cd, CDEVICE_1));
789 OK_(crypt_resume_by_volume_key(cd, CDEVICE_1, key, key_size));
790 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
791 EQ_(0, cad.flags & CRYPT_ACTIVATE_SUSPENDED);
792 OK_(crypt_suspend(cd, CDEVICE_1));
793 OK_(crypt_resume_by_passphrase(cd, CDEVICE_1, 0, "", 0));
794 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
795 EQ_(0, cad.flags & CRYPT_ACTIVATE_SUSPENDED);
796 OK_(crypt_deactivate(cd, CDEVICE_1));
800 _cleanup_dmdevices();
803 static void AddDeviceLuks(void)
805 enum { OFFSET_1M = 2048 , OFFSET_2M = 4096, OFFSET_4M = 8192, OFFSET_8M = 16384 };
806 struct crypt_params_luks1 params = {
808 .data_alignment = OFFSET_1M, // 4M, data offset will be 4096
809 .data_device = DEVICE_2
811 char key[128], key2[128], key3[128];
813 const char *passphrase = PASSPHRASE, *passphrase2 = "nsdkFI&Y#.sd";
814 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
815 const char *vk_hex2 = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1e";
816 size_t key_size = strlen(vk_hex) / 2;
817 const char *cipher = "aes";
818 const char *cipher_mode = "cbc-essiv:sha256";
819 uint64_t r_payload_offset, r_header_size, r_size_1;
820 struct crypt_pbkdf_type pbkdf;
822 crypt_decode_key(key, vk_hex, key_size);
823 crypt_decode_key(key3, vk_hex2, key_size);
826 OK_(get_luks_offsets(1, key_size, 0, 0, &r_header_size, &r_payload_offset));
827 OK_(create_dmdevice_over_loop(H_DEVICE, r_header_size));
828 OK_(create_dmdevice_over_loop(H_DEVICE_WRONG, r_header_size - 1));
831 OK_(crypt_init(&cd, DMDIR H_DEVICE_WRONG));
832 params.data_alignment = 0;
833 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms), "Not enough space for keyslots material");
836 // test payload_offset = 0 for encrypted device with external header device
837 OK_(crypt_init(&cd, DMDIR H_DEVICE));
838 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
839 EQ_(crypt_get_data_offset(cd), 0);
842 params.data_alignment = 0;
843 params.data_device = NULL;
845 // test payload_offset = 0. format() should look up alignment offset from device topology
846 OK_(crypt_init(&cd, DEVICE_2));
847 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
848 OK_(!(crypt_get_data_offset(cd) > 0));
851 // set_data_offset has priority, alignment must be 0 or must be compatible
852 params.data_alignment = 0;
853 OK_(crypt_init(&cd, DEVICE_2));
854 OK_(crypt_set_data_offset(cd, OFFSET_8M));
855 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
856 EQ_(crypt_get_data_offset(cd), OFFSET_8M);
859 // Load gets the value from metadata
860 OK_(crypt_init(&cd, DEVICE_2));
861 OK_(crypt_set_data_offset(cd, OFFSET_2M));
862 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
863 EQ_(crypt_get_data_offset(cd), OFFSET_8M);
866 params.data_alignment = OFFSET_4M;
867 OK_(crypt_init(&cd, DEVICE_2));
868 FAIL_(crypt_set_data_offset(cd, OFFSET_2M + 1), "Not aligned to 4096"); // must be aligned to 4k
869 OK_(crypt_set_data_offset(cd, OFFSET_2M));
870 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms), "Alignment not compatible");
871 OK_(crypt_set_data_offset(cd, OFFSET_4M));
872 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
873 EQ_(crypt_get_data_offset(cd), OFFSET_4M);
877 * test limit values for backing device size
879 params.data_alignment = OFFSET_2M;
880 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
881 OK_(create_dmdevice_over_loop(L_DEVICE_0S, r_payload_offset));
882 OK_(create_dmdevice_over_loop(L_DEVICE_1S, r_payload_offset + 1));
883 //OK_(create_dmdevice_over_loop(L_DEVICE_WRONG, r_payload_offset - 1));
884 OK_(create_dmdevice_over_loop(L_DEVICE_WRONG, 2050 - 1)); //FIXME last keyslot - 1 sector
886 // 1 sector less than required
887 OK_(crypt_init(&cd, DMDIR L_DEVICE_WRONG));
888 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms), "Device too small");
891 // 0 sectors for encrypted area
892 OK_(crypt_init(&cd, DMDIR L_DEVICE_0S));
893 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
894 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0), "Encrypted area too small");
897 // 1 sector for encrypted area
898 OK_(crypt_init(&cd, DMDIR L_DEVICE_1S));
899 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
900 EQ_(crypt_get_data_offset(cd), params.data_alignment);
901 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
902 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
903 OK_(t_device_size(DMDIR CDEVICE_1, &r_size_1));
904 EQ_(r_size_1, TST_SECTOR_SIZE);
905 OK_(crypt_deactivate(cd, CDEVICE_1));
906 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
907 // restrict format only to empty context
908 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms), "Context is already formatted");
909 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, NULL), "Context is already formatted");
910 // change data device to wrong one
911 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_0S));
912 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0), "Device too small");
913 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_1S));
914 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
915 OK_(crypt_deactivate(cd, CDEVICE_1));
918 params.data_alignment = 0;
919 params.data_device = DEVICE_2;
921 // generate keyslot material at the end of luks header
922 OK_(crypt_init(&cd, DMDIR H_DEVICE));
923 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
924 EQ_(crypt_keyslot_add_by_volume_key(cd, 7, key, key_size, passphrase, strlen(passphrase)), 7);
925 EQ_(crypt_activate_by_passphrase(cd, CDEVICE_1, 7, passphrase, strlen(passphrase) ,0), 7);
927 OK_(crypt_init_by_name_and_header(&cd, CDEVICE_1, DMDIR H_DEVICE));
928 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms), "Context is already formatted");
929 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
931 // check active status without header
932 OK_(crypt_init_by_name_and_header(&cd, CDEVICE_1, NULL));
933 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
934 NULL_(crypt_get_type(cd));
935 OK_(strcmp(cipher, crypt_get_cipher(cd)));
936 OK_(strcmp(cipher_mode, crypt_get_cipher_mode(cd)));
937 EQ_((int)key_size, crypt_get_volume_key_size(cd));
938 OK_(crypt_deactivate(cd, CDEVICE_1));
941 params.data_alignment = OFFSET_1M;
942 params.data_device = NULL;
944 // test uuid mismatch and _init_by_name_and_header
945 OK_(crypt_init(&cd, DMDIR L_DEVICE_1S));
946 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
947 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
948 EQ_(0, crypt_header_is_detached(cd));
950 params.data_alignment = 0;
951 params.data_device = DEVICE_2;
952 OK_(crypt_init(&cd, DMDIR H_DEVICE));
953 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
955 // there we've got uuid mismatch
956 OK_(crypt_init_by_name_and_header(&cd, CDEVICE_1, DMDIR H_DEVICE));
957 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
958 NULL_(crypt_get_type(cd));
959 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0), "Device is active");
960 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, key, key_size, 0), "Device is active");
961 EQ_(crypt_status(cd, CDEVICE_2), CRYPT_INACTIVE);
962 OK_(crypt_deactivate(cd, CDEVICE_1));
963 EQ_(crypt_header_is_detached(cd), 1);
966 params.data_device = NULL;
968 OK_(crypt_init(&cd, DEVICE_2));
969 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
971 // even with no keyslots defined it can be activated by volume key
972 OK_(crypt_volume_key_verify(cd, key, key_size));
973 OK_(crypt_activate_by_volume_key(cd, CDEVICE_2, key, key_size, 0));
974 GE_(crypt_status(cd, CDEVICE_2), CRYPT_ACTIVE);
975 OK_(crypt_deactivate(cd, CDEVICE_2));
978 EQ_(7, crypt_keyslot_add_by_volume_key(cd, 7, key, key_size, passphrase, strlen(passphrase)));
979 EQ_(CRYPT_SLOT_ACTIVE_LAST, crypt_keyslot_status(cd, 7));
980 EQ_(7, crypt_activate_by_passphrase(cd, CDEVICE_2, CRYPT_ANY_SLOT, passphrase, strlen(passphrase), 0));
981 GE_(crypt_status(cd, CDEVICE_2), CRYPT_ACTIVE);
982 OK_(crypt_deactivate(cd, CDEVICE_2));
984 crypt_set_iteration_time(cd, 1);
985 EQ_(1, crypt_keyslot_add_by_volume_key(cd, 1, key, key_size, KEY1, strlen(KEY1)));
987 // PBKDF info (in LUKS1 slots are the same)
988 FAIL_(crypt_keyslot_get_pbkdf(cd, 1, NULL), "PBKDF struct required");
989 OK_(crypt_keyslot_get_pbkdf(cd, 1, &pbkdf));
990 OK_(strcmp(pbkdf.type, CRYPT_KDF_PBKDF2));
991 OK_(strcmp(pbkdf.hash, params.hash));
992 OK_(pbkdf.iterations < 1000); /* set by minimum iterations above */
993 EQ_(0, pbkdf.max_memory_kb);
994 EQ_(0, pbkdf.parallel_threads);
995 FAIL_(crypt_keyslot_get_pbkdf(cd, 2, &pbkdf), "Keyslot 2 is inactive.");
997 OK_(prepare_keyfile(KEYFILE1, KEY1, strlen(KEY1)));
998 OK_(prepare_keyfile(KEYFILE2, KEY2, strlen(KEY2)));
999 EQ_(2, crypt_keyslot_add_by_keyfile(cd, 2, KEYFILE1, 0, KEYFILE2, 0));
1000 FAIL_(crypt_keyslot_add_by_keyfile_offset(cd, 3, KEYFILE1, 0, 1, KEYFILE2, 0, 1), "wrong key");
1001 EQ_(3, crypt_keyslot_add_by_keyfile_offset(cd, 3, KEYFILE1, 0, 0, KEYFILE2, 0, 1));
1002 EQ_(4, crypt_keyslot_add_by_keyfile_offset(cd, 4, KEYFILE2, 0, 1, KEYFILE1, 0, 1));
1003 FAIL_(crypt_activate_by_keyfile(cd, CDEVICE_2, CRYPT_ANY_SLOT, KEYFILE2, strlen(KEY2)-1, 0), "key mismatch");
1004 EQ_(2, crypt_activate_by_keyfile(cd, NULL, CRYPT_ANY_SLOT, KEYFILE2, 0, 0));
1005 EQ_(3, crypt_activate_by_keyfile_offset(cd, NULL, CRYPT_ANY_SLOT, KEYFILE2, 0, 1, 0));
1006 EQ_(4, crypt_activate_by_keyfile_offset(cd, NULL, CRYPT_ANY_SLOT, KEYFILE1, 0, 1, 0));
1007 FAIL_(crypt_activate_by_keyfile_offset(cd, CDEVICE_2, CRYPT_ANY_SLOT, KEYFILE2, strlen(KEY2), 2, 0), "not enough data");
1008 FAIL_(crypt_activate_by_keyfile_offset(cd, CDEVICE_2, CRYPT_ANY_SLOT, KEYFILE2, 0, strlen(KEY2) + 1, 0), "cannot seek");
1009 FAIL_(crypt_activate_by_keyfile_offset(cd, CDEVICE_2, CRYPT_ANY_SLOT, KEYFILE2, 0, 2, 0), "wrong key");
1010 EQ_(2, crypt_activate_by_keyfile(cd, CDEVICE_2, CRYPT_ANY_SLOT, KEYFILE2, 0, 0));
1011 OK_(crypt_keyslot_destroy(cd, 1));
1012 OK_(crypt_keyslot_destroy(cd, 2));
1013 OK_(crypt_keyslot_destroy(cd, 3));
1014 OK_(crypt_keyslot_destroy(cd, 4));
1015 OK_(crypt_deactivate(cd, CDEVICE_2));
1018 FAIL_(crypt_keyslot_add_by_volume_key(cd, 7, key, key_size, passphrase, strlen(passphrase)), "slot used");
1020 FAIL_(crypt_keyslot_add_by_volume_key(cd, 6, key, key_size, passphrase, strlen(passphrase)), "key mismatch");
1022 EQ_(6, crypt_keyslot_add_by_volume_key(cd, 6, key, key_size, passphrase, strlen(passphrase)));
1023 EQ_(CRYPT_SLOT_ACTIVE, crypt_keyslot_status(cd, 6));
1025 FAIL_(crypt_keyslot_destroy(cd, 8), "invalid keyslot");
1026 FAIL_(crypt_keyslot_destroy(cd, CRYPT_ANY_SLOT), "invalid keyslot");
1027 FAIL_(crypt_keyslot_destroy(cd, 0), "keyslot not used");
1028 OK_(crypt_keyslot_destroy(cd, 7));
1029 EQ_(CRYPT_SLOT_INACTIVE, crypt_keyslot_status(cd, 7));
1030 EQ_(CRYPT_SLOT_ACTIVE_LAST, crypt_keyslot_status(cd, 6));
1032 EQ_(7, crypt_keyslot_change_by_passphrase(cd, 6, 7, passphrase, strlen(passphrase), passphrase2, strlen(passphrase2)));
1033 EQ_(CRYPT_SLOT_ACTIVE_LAST, crypt_keyslot_status(cd, 7));
1034 EQ_(7, crypt_activate_by_passphrase(cd, NULL, 7, passphrase2, strlen(passphrase2), 0));
1035 EQ_(6, crypt_keyslot_change_by_passphrase(cd, CRYPT_ANY_SLOT, 6, passphrase2, strlen(passphrase2), passphrase, strlen(passphrase)));
1037 EQ_(6, crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key2, &key_size, passphrase, strlen(passphrase)));
1038 OK_(crypt_volume_key_verify(cd, key2, key_size));
1040 OK_(memcmp(key, key2, key_size));
1042 OK_(strcmp(cipher, crypt_get_cipher(cd)));
1043 OK_(strcmp(cipher_mode, crypt_get_cipher_mode(cd)));
1044 EQ_((int)key_size, crypt_get_volume_key_size(cd));
1045 EQ_(OFFSET_2M, crypt_get_data_offset(cd));
1046 OK_(strcmp(DEVICE_2, crypt_get_device_name(cd)));
1049 OK_(crypt_dump(cd));
1050 OK_(!(global_lines != 0));
1052 FAIL_(crypt_dump_json(cd, NULL, 0), "LUKS1 not supported");
1054 FAIL_(crypt_set_uuid(cd, "blah"), "wrong UUID format");
1055 OK_(crypt_set_uuid(cd, DEVICE_TEST_UUID));
1056 OK_(strcmp(DEVICE_TEST_UUID, crypt_get_uuid(cd)));
1058 FAIL_(crypt_set_label(cd, "label", "subsystem"), "can't set labels for LUKS1 device");
1059 NULL_(crypt_get_label(cd));
1060 NULL_(crypt_get_subsystem(cd));
1062 FAIL_(crypt_deactivate(cd, CDEVICE_2), "not active");
1065 // No benchmark PBKDF2
1066 pbkdf.flags = CRYPT_PBKDF_NO_BENCHMARK;
1067 pbkdf.hash = "sha256";
1068 pbkdf.iterations = 1000;
1071 OK_(crypt_init(&cd, DEVICE_2));
1072 OK_(crypt_set_pbkdf_type(cd, &pbkdf));
1073 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1076 _cleanup_dmdevices();
1079 static void UseTempVolumes(void)
1083 // Tepmporary device without keyslot but with on-disk LUKS header
1084 OK_(crypt_init(&cd, DEVICE_2));
1085 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, NULL, 0, 0), "not yet formatted");
1086 OK_(crypt_format(cd, CRYPT_LUKS1, "aes", "cbc-essiv:sha256", NULL, NULL, 16, NULL));
1087 OK_(crypt_activate_by_volume_key(cd, CDEVICE_2, NULL, 0, 0));
1088 GE_(crypt_status(cd, CDEVICE_2), CRYPT_ACTIVE);
1091 OK_(crypt_init_by_name(&cd, CDEVICE_2));
1092 OK_(crypt_deactivate(cd, CDEVICE_2));
1095 // Dirty checks: device without UUID
1096 // we should be able to remove it but not manipulate with it
1097 GE_(snprintf(tmp, sizeof(tmp), "dmsetup create %s --table \""
1098 "0 100 crypt aes-cbc-essiv:sha256 deadbabedeadbabedeadbabedeadbabe 0 "
1099 "%s 2048\"", CDEVICE_2, DEVICE_2), 0);
1101 OK_(crypt_init_by_name(&cd, CDEVICE_2));
1102 OK_(crypt_deactivate(cd, CDEVICE_2));
1103 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, NULL, 0, 0), "No known device type");
1106 // Dirty checks: device with UUID but LUKS header key fingerprint must fail)
1107 GE_(snprintf(tmp, sizeof(tmp), "dmsetup create %s --table \""
1108 "0 100 crypt aes-cbc-essiv:sha256 deadbabedeadbabedeadbabedeadbabe 0 "
1109 "%s 2048\" -u CRYPT-LUKS1-aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa-ctest1",
1110 CDEVICE_2, DEVICE_2), 0);
1112 OK_(crypt_init_by_name(&cd, CDEVICE_2));
1113 OK_(crypt_deactivate(cd, CDEVICE_2));
1114 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, NULL, 0, 0), "wrong volume key");
1118 OK_(crypt_init(&cd, DEVICE_2));
1119 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1120 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, NULL, 0, 0), "volume key is lost");
1124 OK_(crypt_init(&cd, DEVICE_2));
1125 OK_(crypt_format(cd, CRYPT_PLAIN, "aes", "cbc-essiv:sha256", NULL, NULL, 16, NULL));
1126 FAIL_(crypt_activate_by_volume_key(cd, NULL, "xxx", 3, 0), "cannot verify key with plain");
1127 FAIL_(crypt_volume_key_verify(cd, "xxx", 3), "cannot verify key with plain");
1128 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_2, "xxx", 3, 0), "wrong key length");
1129 OK_(crypt_activate_by_volume_key(cd, CDEVICE_2, "volumekeyvolumek", 16, 0));
1130 GE_(crypt_status(cd, CDEVICE_2), CRYPT_ACTIVE);
1131 OK_(crypt_deactivate(cd, CDEVICE_2));
1135 static void LuksHeaderRestore(void)
1137 struct crypt_params_luks1 params = {
1139 .data_alignment = 2048, // 4M, data offset will be 4096
1141 struct crypt_params_plain pl_params = {
1147 char key[128], key2[128], cmd[256];
1149 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
1150 size_t key_size = strlen(vk_hex) / 2;
1151 const char *cipher = "aes";
1152 const char *cipher_mode = "cbc-essiv:sha256";
1153 uint64_t r_payload_offset;
1155 crypt_decode_key(key, vk_hex, key_size);
1157 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
1158 OK_(create_dmdevice_over_loop(L_DEVICE_OK, r_payload_offset + 5000));
1160 // do not restore header over plain device
1161 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1162 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, NULL, key_size, &pl_params));
1163 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1164 FAIL_(crypt_header_restore(cd, CRYPT_PLAIN, VALID_HEADER), "Cannot restore header to PLAIN type device");
1165 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER), "Cannot restore header over PLAIN type device");
1166 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1167 OK_(crypt_deactivate(cd, CDEVICE_1));
1171 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1172 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1173 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_1), "Header corrupted");
1174 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_2), "Header corrupted");
1175 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_3), "Header corrupted");
1176 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_4), "Header too small");
1177 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_5), "Header corrupted");
1178 OK_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER));
1179 // wipe valid luks header
1180 GE_(snprintf(cmd, sizeof(cmd), "dd if=/dev/zero of=" DMDIR L_DEVICE_OK " bs=512 count=%" PRIu64 " 2>/dev/null", r_payload_offset), 0);
1181 OK_(_system(cmd, 1));
1182 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_1), "Header corrupted");
1183 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_2), "Header corrupted");
1184 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_3), "Header corrupted");
1185 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_4), "Header too small");
1186 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, EVL_HEADER_5), "Header corrupted");
1187 OK_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER));
1188 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1189 OK_(crypt_deactivate(cd, CDEVICE_1));
1192 // volume key_size mismatch
1193 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1194 memcpy(key2, key, key_size / 2);
1195 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key2, key_size / 2, ¶ms));
1196 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER), "Volume keysize mismatch");
1199 // payload offset mismatch
1200 params.data_alignment = 8192;
1201 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1202 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1203 FAIL_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER), "Payload offset mismatch");
1204 //_system("dmsetup table;sleep 1",1);
1207 /* check crypt_header_restore() properly loads crypt_device context */
1208 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1209 OK_(crypt_wipe(cd, NULL, CRYPT_WIPE_ZERO, 0, 1*1024*1024, 1*1024*1024, 0, NULL, NULL));
1210 OK_(crypt_header_restore(cd, CRYPT_LUKS1, VALID_HEADER));
1211 OK_(crypt_activate_by_volume_key(cd, NULL, key, key_size, 0));
1212 /* same test, any LUKS */
1213 OK_(crypt_wipe(cd, NULL, CRYPT_WIPE_ZERO, 0, 1*1024*1024, 1*1024*1024, 0, NULL, NULL));
1214 OK_(crypt_header_restore(cd, CRYPT_LUKS, VALID_HEADER));
1215 OK_(crypt_activate_by_volume_key(cd, NULL, key, key_size, 0));
1219 _cleanup_dmdevices();
1222 static void LuksHeaderLoad(void)
1224 struct crypt_params_luks1 params = {
1226 .data_alignment = 2048,
1228 struct crypt_params_plain pl_params = {
1234 char key[128], cmd[256];
1236 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
1237 size_t key_size = strlen(vk_hex) / 2;
1238 const char *cipher = "aes";
1239 const char *cipher_mode = "cbc-essiv:sha256";
1240 uint64_t r_payload_offset, r_header_size;
1241 uint64_t mdata_size, keyslots_size;
1243 crypt_decode_key(key, vk_hex, key_size);
1246 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, &r_header_size, &r_payload_offset));
1247 // external header device
1248 OK_(create_dmdevice_over_loop(H_DEVICE, r_header_size));
1249 // prepared header on a device too small to contain header and payload
1250 //OK_(create_dmdevice_over_loop(H_DEVICE_WRONG, r_payload_offset - 1));
1251 OK_(create_dmdevice_over_loop(H_DEVICE_WRONG, 2050 - 1)); //FIXME
1252 //GE_(snprintf(cmd, sizeof(cmd), "dd if=" EVL_HEADER_4 " of=" DMDIR H_DEVICE_WRONG " bs=512 count=%" PRIu64, r_payload_offset - 1), 0);
1253 GE_(snprintf(cmd, sizeof(cmd), "dd if=" EVL_HEADER_4 " of=" DMDIR H_DEVICE_WRONG " bs=512 count=%d 2>/dev/null", 2050 - 1), 0);
1254 OK_(_system(cmd, 1));
1256 OK_(create_dmdevice_over_loop(L_DEVICE_OK, r_payload_offset + 1000));
1258 OK_(create_dmdevice_over_loop(L_DEVICE_1S, r_payload_offset + 1));
1259 // 0 sectors device for payload
1260 OK_(create_dmdevice_over_loop(L_DEVICE_0S, r_payload_offset));
1262 // valid metadata and device size
1263 params.data_alignment = 0;
1264 params.data_device = DMDIR L_DEVICE_OK;
1265 OK_(crypt_init(&cd, DMDIR H_DEVICE));
1266 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1268 OK_(crypt_init(&cd, DMDIR H_DEVICE));
1269 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1270 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_OK));
1271 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1272 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1273 OK_(!crypt_get_metadata_device_name(cd));
1274 EQ_(strcmp(DMDIR H_DEVICE, crypt_get_metadata_device_name(cd)), 0);
1275 OK_(crypt_deactivate(cd, CDEVICE_1));
1276 EQ_(1, crypt_header_is_detached(cd));
1279 // repeat with init with two devices
1280 OK_(crypt_init_data_device(&cd, DMDIR H_DEVICE, DMDIR L_DEVICE_OK));
1281 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1283 OK_(crypt_init_data_device(&cd, DMDIR H_DEVICE, DMDIR L_DEVICE_OK));
1284 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1285 OK_(!crypt_get_metadata_device_name(cd));
1286 EQ_(strcmp(DMDIR H_DEVICE, crypt_get_metadata_device_name(cd)), 0);
1287 EQ_(1, crypt_header_is_detached(cd));
1290 // bad header: device too small (payloadOffset > device_size)
1291 OK_(crypt_init(&cd, DMDIR H_DEVICE_WRONG));
1292 FAIL_(crypt_load(cd, CRYPT_LUKS1, NULL), "Device too small");
1293 NULL_(crypt_get_type(cd));
1296 // 0 secs for encrypted data area
1297 params.data_alignment = 2048;
1298 params.data_device = NULL;
1299 OK_(crypt_init(&cd, DMDIR L_DEVICE_0S));
1300 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1301 FAIL_(crypt_set_metadata_size(cd, 0x004000, 0x004000), "Wrong context type");
1302 OK_(crypt_get_metadata_size(cd, &mdata_size, &keyslots_size));
1303 EQ_(mdata_size, LUKS_ALIGN_KEYSLOTS);
1304 EQ_(keyslots_size, r_header_size * TST_SECTOR_SIZE - mdata_size);
1306 // load should be ok
1307 OK_(crypt_init(&cd, DMDIR L_DEVICE_0S));
1308 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1309 FAIL_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0), "Device too small");
1310 EQ_(crypt_status(cd, CDEVICE_1), CRYPT_INACTIVE);
1314 OK_(_system("dd if=/dev/zero of=" DMDIR L_DEVICE_OK " bs=512 count=8 2>/dev/null", 1));
1315 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1316 FAIL_(crypt_load(cd, CRYPT_LUKS1, NULL), "Header not found");
1320 OK_(crypt_init(&cd, DMDIR H_DEVICE));
1321 FAIL_(crypt_load(cd, CRYPT_PLAIN, NULL), "Can't load nonLUKS device type");
1323 OK_(crypt_init(&cd, DMDIR H_DEVICE));
1324 OK_(crypt_format(cd, CRYPT_PLAIN, cipher, cipher_mode, NULL, key, key_size, &pl_params));
1325 FAIL_(crypt_load(cd, CRYPT_LUKS1, NULL), "Can't load over nonLUKS device type");
1326 FAIL_(crypt_set_metadata_size(cd, 0x004000, 0x004000), "Wrong context type");
1327 FAIL_(crypt_get_metadata_size(cd, &mdata_size, &keyslots_size), "Wrong context type");
1330 /* check load sets proper device type */
1331 OK_(crypt_init(&cd, DMDIR L_DEVICE_0S));
1332 OK_(crypt_load(cd, CRYPT_LUKS, NULL));
1333 EQ_(strcmp(CRYPT_LUKS1, crypt_get_type(cd)), 0);
1336 _cleanup_dmdevices();
1339 static void LuksHeaderBackup(void)
1341 struct crypt_params_luks1 params = {
1343 .data_alignment = 2048,
1346 int fd, ro = O_RDONLY;
1348 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
1349 size_t key_size = strlen(vk_hex) / 2;
1350 const char *cipher = "aes";
1351 const char *cipher_mode = "cbc-essiv:sha256";
1352 uint64_t r_payload_offset;
1354 const char *passphrase = PASSPHRASE;
1356 crypt_decode_key(key, vk_hex, key_size);
1358 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
1359 OK_(create_dmdevice_over_loop(L_DEVICE_OK, r_payload_offset + 1));
1361 // create LUKS device and backup the header
1362 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1363 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1364 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1365 EQ_(crypt_keyslot_add_by_volume_key(cd, 7, key, key_size, passphrase, strlen(passphrase)), 7);
1366 EQ_(crypt_keyslot_add_by_volume_key(cd, 0, key, key_size, passphrase, strlen(passphrase)), 0);
1367 OK_(crypt_header_backup(cd, CRYPT_LUKS1, BACKUP_FILE));
1368 OK_(crypt_deactivate(cd, CDEVICE_1));
1371 // restore header from backup
1372 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1373 OK_(crypt_header_restore(cd, CRYPT_LUKS1, BACKUP_FILE));
1374 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1375 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1376 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1377 OK_(crypt_deactivate(cd, CDEVICE_1));
1378 EQ_(0, crypt_header_is_detached(cd));
1381 // exercise luksOpen using backup header in file
1382 OK_(crypt_init(&cd, BACKUP_FILE));
1383 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1384 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_OK));
1385 EQ_(crypt_activate_by_passphrase(cd, CDEVICE_1, 0, passphrase, strlen(passphrase), 0), 0);
1386 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1387 OK_(crypt_deactivate(cd, CDEVICE_1));
1388 EQ_(1, crypt_header_is_detached(cd));
1391 OK_(crypt_init(&cd, BACKUP_FILE));
1392 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1393 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_OK));
1394 EQ_(crypt_activate_by_passphrase(cd, CDEVICE_1, 7, passphrase, strlen(passphrase), 0), 7);
1395 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1396 OK_(crypt_deactivate(cd, CDEVICE_1));
1399 // exercise luksOpen using backup header on block device
1400 fd = loop_attach(&DEVICE_3, BACKUP_FILE, 0, 0, &ro);
1401 NOTFAIL_(fd, "Bad loop device.");
1403 OK_(crypt_init(&cd, DEVICE_3));
1404 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1405 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_OK));
1406 EQ_(crypt_activate_by_passphrase(cd, CDEVICE_1, 0, passphrase, strlen(passphrase), 0), 0);
1407 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1408 OK_(crypt_deactivate(cd, CDEVICE_1));
1411 OK_(crypt_init(&cd, DEVICE_3));
1412 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
1413 OK_(crypt_set_data_device(cd, DMDIR L_DEVICE_OK));
1414 EQ_(crypt_activate_by_passphrase(cd, CDEVICE_1, 7, passphrase, strlen(passphrase), 0), 7);
1415 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1416 OK_(crypt_deactivate(cd, CDEVICE_1));
1419 _cleanup_dmdevices();
1422 static void ResizeDeviceLuks(void)
1424 struct crypt_params_luks1 params = {
1426 .data_alignment = 2048,
1430 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
1431 size_t key_size = strlen(vk_hex) / 2;
1432 const char *cipher = "aes";
1433 const char *cipher_mode = "cbc-essiv:sha256";
1434 uint64_t r_payload_offset, r_header_size, r_size;
1436 crypt_decode_key(key, vk_hex, key_size);
1439 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
1440 OK_(get_luks_offsets(1, key_size, 0, 0, &r_header_size, NULL));
1441 OK_(create_dmdevice_over_loop(H_DEVICE, r_header_size));
1442 OK_(create_dmdevice_over_loop(L_DEVICE_OK, r_payload_offset + 1000));
1443 OK_(create_dmdevice_over_loop(L_DEVICE_0S, 1000));
1444 OK_(create_dmdevice_over_loop(L_DEVICE_WRONG, r_payload_offset + 1000));
1446 // test header and encrypted payload all in one device
1447 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1448 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1449 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1450 OK_(crypt_resize(cd, CDEVICE_1, 42));
1451 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1452 EQ_(42, r_size >> TST_SECTOR_SHIFT);
1453 // autodetect encrypted device area size
1454 OK_(crypt_resize(cd, CDEVICE_1, 0));
1455 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1456 EQ_(1000, r_size >> TST_SECTOR_SHIFT);
1457 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
1458 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1459 EQ_(1000, r_size >> TST_SECTOR_SHIFT);
1460 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1461 OK_(crypt_deactivate(cd, CDEVICE_1));
1464 params.data_alignment = 0;
1465 params.data_device = DMDIR L_DEVICE_0S;
1466 // test case for external header
1467 OK_(crypt_init(&cd, DMDIR H_DEVICE));
1468 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
1469 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1470 OK_(crypt_resize(cd, CDEVICE_1, 666));
1471 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1472 EQ_(666, r_size >> TST_SECTOR_SHIFT);
1473 // autodetect encrypted device size
1474 OK_(crypt_resize(cd, CDEVICE_1, 0));
1475 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1476 EQ_(1000, r_size >> TST_SECTOR_SHIFT);
1477 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
1478 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1479 EQ_(1000, r_size >> TST_SECTOR_SHIFT);
1480 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1481 OK_(crypt_deactivate(cd, CDEVICE_1));
1484 OK_(crypt_init(&cd, DMDIR L_DEVICE_OK));
1485 OK_(crypt_load(cd, NULL, NULL));
1486 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, key, key_size, 0));
1488 /* do not allow resize of other device */
1489 OK_(crypt_init(&cd2, DMDIR L_DEVICE_WRONG));
1490 OK_(crypt_format(cd2, CRYPT_LUKS1, cipher, cipher_mode, crypt_get_uuid(cd), key, key_size, ¶ms));
1491 OK_(crypt_activate_by_volume_key(cd2, CDEVICE_2, key, key_size, 0));
1492 FAIL_(crypt_resize(cd2, CDEVICE_1, 1), "Device got resized by wrong device context.");
1493 OK_(crypt_deactivate(cd2, CDEVICE_2));
1496 OK_(crypt_init(&cd2, DMDIR L_DEVICE_WRONG));
1497 OK_(crypt_format(cd2, CRYPT_PLAIN, cipher, cipher_mode, NULL, key, key_size, NULL));
1498 OK_(crypt_activate_by_volume_key(cd2, CDEVICE_2, key, key_size, 0));
1499 FAIL_(crypt_resize(cd2, CDEVICE_1, 1), "Device got resized by wrong device context.");
1500 OK_(crypt_deactivate(cd2, CDEVICE_2));
1503 OK_(crypt_deactivate(cd, CDEVICE_1));
1506 _cleanup_dmdevices();
1509 static void HashDevicePlain(void)
1511 struct crypt_params_plain params = {
1518 const char *vk_hex, *keystr;
1521 OK_(crypt_init(&cd, DEVICE_1));
1522 OK_(crypt_format(cd, CRYPT_PLAIN, "aes", "cbc-essiv:sha256", NULL, NULL, 16, ¶ms));
1524 // hash PLAIN, short key
1525 OK_(prepare_keyfile(KEYFILE1, "tooshort", 8));
1526 FAIL_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 16, 0), "not enough data in keyfile");
1529 // hash PLAIN, exact key
1530 // 0 1 2 3 4 5 6 7 8 9 a b c d e f
1531 vk_hex = "caffeecaffeecaffeecaffeecaffee88";
1533 crypt_decode_key(key, vk_hex, key_size);
1534 OK_(prepare_keyfile(KEYFILE1, key, key_size));
1535 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size, 0));
1536 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1537 OK_(strcmp(key, vk_hex));
1538 OK_(crypt_deactivate(cd, CDEVICE_1));
1541 vk_hex = "caffeecaffeecaffeecaffeeca000000";
1542 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size - 3, 0));
1543 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1544 OK_(strcmp(key, vk_hex));
1545 OK_(crypt_deactivate(cd, CDEVICE_1));
1549 // hash PLAIN, long key
1550 // 0 1 2 3 4 5 6 7 8 9 a b c d e f
1551 vk_hex = "caffeecaffeecaffeecaffeecaffee88babebabe";
1553 crypt_decode_key(key, vk_hex, key_size);
1554 OK_(prepare_keyfile(KEYFILE1, key, strlen(vk_hex) / 2));
1555 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size, 0));
1556 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1557 FAIL_(strcmp(key, vk_hex), "only key length used");
1558 OK_(strncmp(key, vk_hex, key_size));
1559 OK_(crypt_deactivate(cd, CDEVICE_1));
1561 // Now without explicit limit
1562 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0));
1563 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1564 FAIL_(strcmp(key, vk_hex), "only key length used");
1565 OK_(strncmp(key, vk_hex, key_size));
1566 OK_(crypt_deactivate(cd, CDEVICE_1));
1571 // Handling of legacy "plain" hash (no hash)
1572 params.hash = "plain";
1573 // 0 1 2 3 4 5 6 7 8 9 a b c d e f
1574 vk_hex = "aabbcaffeecaffeecaffeecaffeecaff";
1576 crypt_decode_key(key, vk_hex, key_size);
1577 OK_(prepare_keyfile(KEYFILE1, key, strlen(vk_hex) / 2));
1578 OK_(crypt_init(&cd, DEVICE_1));
1579 OK_(crypt_format(cd, CRYPT_PLAIN, "aes", "cbc-essiv:sha256", NULL, NULL, 16, ¶ms));
1580 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size, 0));
1581 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1582 OK_(strcmp(key, vk_hex));
1583 OK_(crypt_deactivate(cd, CDEVICE_1));
1589 params.hash = "sha256";
1590 OK_(crypt_init(&cd, DEVICE_1));
1591 OK_(crypt_format(cd, CRYPT_PLAIN, "aes", "cbc-essiv:sha256", NULL, NULL, 16, ¶ms));
1593 // 0 1 2 3 4 5 6 7 8 9 a b c d e f
1594 vk_hex = "c62e4615bd39e222572f3a1bf7c2132e";
1595 keystr = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";
1596 key_size = strlen(keystr); // 32
1597 OK_(prepare_keyfile(KEYFILE1, keystr, strlen(keystr)));
1598 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size, 0));
1599 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1600 OK_(strcmp(key, vk_hex));
1601 OK_(crypt_deactivate(cd, CDEVICE_1));
1603 // Read full keyfile
1604 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0));
1605 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1606 OK_(strcmp(key, vk_hex));
1607 OK_(crypt_deactivate(cd, CDEVICE_1));
1611 // Limit keyfile read
1612 keystr = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxAAAAAAAA";
1613 OK_(prepare_keyfile(KEYFILE1, keystr, strlen(keystr)));
1614 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, key_size, 0));
1615 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1616 OK_(strcmp(key, vk_hex));
1617 OK_(crypt_deactivate(cd, CDEVICE_1));
1620 OK_(crypt_activate_by_keyfile(cd, CDEVICE_1, CRYPT_ANY_SLOT, KEYFILE1, 0, 0));
1621 OK_(get_key_dm(CDEVICE_1, key, sizeof(key)));
1622 OK_(strcmp(key, "0e49cb34a1dee1df33f6505e4de44a66"));
1623 OK_(crypt_deactivate(cd, CDEVICE_1));
1627 // FIXME: add keyfile="-" tests somehow
1632 static void VerityTest(void)
1634 const char *salt_hex = "20c28ffc129c12360ba6ceea2b6cf04e89c2b41cfe6b8439eb53c1897f50df7b";
1635 const char *root_hex = "ab018b003a967fc782effb293b6dccb60b4f40c06bf80d16391acf686d28b5d6";
1636 char salt[256], root_hash[256], root_hash_out[256];
1637 size_t root_hash_out_size = 256;
1638 struct crypt_active_device cad;
1639 struct crypt_params_verity params = {
1640 .data_device = DEVICE_EMPTY,
1642 .data_size = 0, /* whole device */
1643 .hash_area_offset = 0,
1644 .flags = CRYPT_VERITY_CREATE_HASH,
1647 crypt_decode_key(salt, salt_hex, strlen(salt_hex) / 2);
1648 crypt_decode_key(root_hash, root_hex, strlen(root_hex) / 2);
1651 OK_(crypt_init(&cd, DEVICE_2));
1654 params.data_block_size = 333;
1655 FAIL_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms),
1656 "Unsupported block size.");
1657 params.data_block_size = 4096;
1658 params.hash_block_size = 333;
1659 FAIL_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms),
1660 "Unsupported block size.");
1661 params.hash_block_size = 4096;
1664 params.salt_size = 257;
1665 FAIL_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms),
1667 params.salt_size = 32;
1670 params.hash_type = 3;
1671 FAIL_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms),
1672 "Unsupported hash type.");
1673 params.hash_type = 1;
1674 params.hash_name = "blah";
1675 FAIL_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms),
1676 "Unsupported hash name.");
1677 params.hash_name = "sha256";
1679 OK_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms));
1682 params.data_device = NULL;
1683 OK_(crypt_init_data_device(&cd, DEVICE_2, DEVICE_EMPTY));
1684 OK_(crypt_format(cd, CRYPT_VERITY, NULL, NULL, NULL, NULL, 0, ¶ms));
1685 EQ_(strcmp(DEVICE_2, crypt_get_metadata_device_name(cd)), 0);
1689 OK_(crypt_init(&cd, DEVICE_2));
1690 memset(¶ms, 0, sizeof(params));
1691 params.data_device = DEVICE_EMPTY;
1692 params.flags = CRYPT_VERITY_CHECK_HASH;
1693 OK_(crypt_load(cd, CRYPT_VERITY, ¶ms));
1695 /* check verity params */
1696 EQ_(crypt_get_volume_key_size(cd), 32);
1697 OK_(strcmp(CRYPT_VERITY, crypt_get_type(cd)));
1698 memset(¶ms, 0, sizeof(params));
1699 OK_(crypt_get_verity_info(cd, ¶ms));
1700 OK_(strcmp("sha256", params.hash_name));
1701 EQ_(strlen(salt_hex) / 2, params.salt_size);
1702 OK_(memcmp(salt, params.salt, params.salt_size));
1703 EQ_(4096, params.data_block_size);
1704 EQ_(4096, params.hash_block_size);
1705 EQ_(1, params.hash_type);
1706 EQ_(crypt_get_volume_key_size(cd), 32);
1708 OK_(crypt_activate_by_volume_key(cd, NULL, root_hash, 32, 0));
1709 OK_(crypt_set_data_device(cd, DEVICE_1));
1710 FAIL_(crypt_activate_by_volume_key(cd, NULL, root_hash, 32, 0), "Data corrupted");;
1712 OK_(crypt_set_data_device(cd, DEVICE_EMPTY));
1713 if (crypt_activate_by_volume_key(cd, CDEVICE_1, root_hash, 32,
1714 CRYPT_ACTIVATE_READONLY) == -ENOTSUP) {
1715 printf("WARNING: kernel dm-verity not supported, skipping test.\n");
1719 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
1720 EQ_(CRYPT_ACTIVATE_READONLY, cad.flags);
1723 OK_(crypt_init_by_name(&cd, CDEVICE_1));
1724 memset(root_hash_out, 0, root_hash_out_size);
1725 OK_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, root_hash_out, &root_hash_out_size, NULL, 0));
1726 EQ_(32, root_hash_out_size);
1727 OK_(memcmp(root_hash, root_hash_out, root_hash_out_size));
1728 memset(root_hash_out, 0, root_hash_out_size);
1729 OK_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, root_hash_out, &root_hash_out_size, NULL));
1730 EQ_(32, root_hash_out_size);
1731 OK_(memcmp(root_hash, root_hash_out, root_hash_out_size));
1732 OK_(crypt_deactivate(cd, CDEVICE_1));
1735 root_hash[1] = ~root_hash[1];
1736 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, root_hash, 32, CRYPT_ACTIVATE_READONLY));
1737 /* Be sure there was some read activity to mark device corrupted. */
1738 _system("blkid " DMDIR CDEVICE_1, 0);
1739 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
1740 EQ_(CRYPT_ACTIVATE_READONLY|CRYPT_ACTIVATE_CORRUPTED, cad.flags);
1741 OK_(crypt_deactivate(cd, CDEVICE_1));
1742 root_hash[1] = ~root_hash[1];
1745 OK_(crypt_set_data_device(cd, DEVICE_1));
1746 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, root_hash, 32, CRYPT_ACTIVATE_READONLY));
1747 _system("blkid " DMDIR CDEVICE_1, 0);
1748 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
1749 EQ_(CRYPT_ACTIVATE_READONLY|CRYPT_ACTIVATE_CORRUPTED, cad.flags);
1750 OK_(crypt_deactivate(cd, CDEVICE_1));
1755 static void TcryptTest(void)
1757 struct crypt_active_device cad;
1758 const char *passphrase = "aaaaaaaaaaaa";
1759 const char *kf1 = "tcrypt-images/keyfile1";
1760 const char *kf2 = "tcrypt-images/keyfile2";
1761 const char *keyfiles[] = { kf1, kf2 };
1762 struct crypt_params_tcrypt params = {
1763 .passphrase = passphrase,
1764 .passphrase_size = strlen(passphrase),
1765 .keyfiles = keyfiles,
1766 .keyfiles_count = 2,
1768 double enc_mbr = 0, dec_mbr = 0;
1769 const char *tcrypt_dev = "tcrypt-images/tck_5-sha512-xts-aes";
1770 const char *tcrypt_dev2 = "tcrypt-images/tc_5-sha512-xts-serpent-twofish-aes";
1771 size_t key_size = 64;
1772 char key[64], key_def[64];
1773 const char *key_hex =
1774 "98dee64abe44bbf41d171c1f7b3e8eacda6d6b01f459097459a167f8c2872a96"
1775 "3979531d1cdc18af62757cf22286f16f8583d848524f128d7594ac2082668c73";
1778 crypt_decode_key(key_def, key_hex, strlen(key_hex) / 2);
1780 // First ensure we can use af_alg skcipher interface
1781 r = crypt_benchmark(NULL, "aes", "xts", 512, 16, 1024, &enc_mbr, &dec_mbr);
1782 if (r == -ENOTSUP || r == -ENOENT) {
1783 printf("WARNING: algif_skcipher interface not present, skipping test.\n");
1787 OK_(crypt_init(&cd, tcrypt_dev));
1788 params.passphrase_size--;
1789 FAIL_(crypt_load(cd, CRYPT_TCRYPT, ¶ms), "Wrong passphrase");
1790 params.passphrase_size++;
1791 OK_(crypt_load(cd, CRYPT_TCRYPT, ¶ms));
1793 // check params after load
1794 OK_(strcmp("xts-plain64", crypt_get_cipher_mode(cd)));
1795 OK_(strcmp("aes", crypt_get_cipher(cd)));
1796 EQ_(key_size, crypt_get_volume_key_size(cd));
1797 EQ_(256, crypt_get_iv_offset(cd));
1798 EQ_(256, crypt_get_data_offset(cd));
1800 memset(key, 0, key_size);
1804 FAIL_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key, &key_size, NULL, 0), "small buffer");
1806 OK_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key, &key_size, NULL, 0));
1807 OK_(memcmp(key, key_def, key_size));
1808 memset(key, 0, key_size);
1809 OK_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key, &key_size, NULL));
1810 OK_(memcmp(key, key_def, key_size));
1813 OK_(crypt_dump(cd));
1814 OK_(!(global_lines != 0));
1817 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, CRYPT_ACTIVATE_READONLY));
1818 NULL_(crypt_get_metadata_device_name(cd));
1821 OK_(crypt_init_by_name_and_header(&cd, CDEVICE_1, NULL));
1822 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1824 FAIL_(crypt_volume_key_get(cd, CRYPT_ANY_SLOT, key, &key_size, NULL, 0), "Need crypt_load");
1825 FAIL_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key, &key_size, NULL), "Need crypt_load");
1827 // check params after init_by_name
1828 OK_(strcmp("xts-plain64", crypt_get_cipher_mode(cd)));
1829 OK_(strcmp("aes", crypt_get_cipher(cd)));
1830 EQ_(key_size, crypt_get_volume_key_size(cd));
1831 EQ_(256, crypt_get_iv_offset(cd));
1832 EQ_(256, crypt_get_data_offset(cd));
1834 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
1835 EQ_(CRYPT_ACTIVATE_READONLY, cad.flags);
1836 EQ_(256, cad.offset);
1837 EQ_(256, cad.iv_offset);
1840 OK_(crypt_deactivate(cd, CDEVICE_1));
1843 // init with detached header is not supported
1844 OK_(crypt_init_data_device(&cd, tcrypt_dev2, DEVICE_2));
1845 FAIL_(crypt_load(cd, CRYPT_TCRYPT, ¶ms), "can't use tcrypt with separate metadata device");
1848 // Following test uses non-FIPS algorithms in the cipher chain
1852 OK_(crypt_init(&cd, tcrypt_dev2));
1853 params.keyfiles = NULL;
1854 params.keyfiles_count = 0;
1855 r = crypt_load(cd, CRYPT_TCRYPT, ¶ms);
1857 printf("WARNING: cannot use non-AES encryption, skipping test.\n");
1861 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, CRYPT_ACTIVATE_READONLY));
1864 // Deactivate the whole chain
1865 EQ_(crypt_status(NULL, CDEVICE_1 "_1"), CRYPT_BUSY);
1866 OK_(crypt_deactivate(NULL, CDEVICE_1));
1867 EQ_(crypt_status(NULL, CDEVICE_1 "_1"), CRYPT_INACTIVE);
1870 static void ResizeIntegrity(void)
1872 struct crypt_params_integrity params = {
1874 .integrity = "crc32c",
1875 .sector_size = 4096,
1878 uint64_t r_size, whole_device_size = 0;
1880 if (!t_dm_integrity_resize_support()) {
1881 printf("WARNING: integrity device resize not supported, skipping test.\n");
1885 OK_(crypt_init(&cd, DEVICE_2));
1886 ret = crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,¶ms);
1888 printf("WARNING: cannot format integrity device, skipping test.\n");
1892 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, 0));
1893 t_device_size(DMDIR CDEVICE_1, &whole_device_size);
1894 // shrink the device
1895 OK_(crypt_resize(cd, CDEVICE_1, 1024 * 1024 / 512));
1896 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1897 EQ_(1024 * 1024 / 512, r_size >> TST_SECTOR_SHIFT);
1898 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
1899 // fill the whole device again (size = 0)
1900 OK_(crypt_resize(cd, CDEVICE_1, 0));
1901 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1902 EQ_(whole_device_size, r_size);
1903 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1904 OK_(crypt_deactivate(cd, CDEVICE_1));
1907 // detached metadata
1908 OK_(create_dmdevice_over_loop(H_DEVICE, 1024 * 1024 / 512));
1909 OK_(crypt_init_data_device(&cd, DMDIR H_DEVICE, DEVICE_2));
1910 OK_(crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,¶ms));
1911 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, 0));
1912 if (!t_device_size(DMDIR CDEVICE_1, &whole_device_size))
1913 EQ_(10 * 1024 * 1024 / 512, whole_device_size >> TST_SECTOR_SHIFT);
1914 // shrink the device
1915 OK_(crypt_resize(cd, CDEVICE_1, 1024 * 1024 / 512));
1916 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1917 EQ_(1024 * 1024 / 512, r_size >> TST_SECTOR_SHIFT);
1918 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
1919 // fill the whole device again (size = 0)
1920 OK_(crypt_resize(cd, CDEVICE_1, 0));
1921 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1922 EQ_(whole_device_size, r_size);
1923 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1924 OK_(crypt_deactivate(cd, CDEVICE_1));
1927 _cleanup_dmdevices();
1930 static void ResizeIntegrityWithKey(void)
1932 struct crypt_params_integrity params = {
1934 .integrity = "hmac(sha256)",
1935 .journal_integrity = "hmac(sha256)",
1936 .journal_crypt = "cbc(aes)",
1937 .sector_size = 4096,
1940 uint64_t r_size, whole_device_size = 0;
1942 const char *key_integrity_hex = "41b06f3968ff10783edf3dd8c31d0d6e";
1943 const char *key_journal_integrity_hex = "9a3f924d03ab4a3307b148f844628f59";
1944 const char *key_journal_crypt_hex = "087a6943383f6c344cef03695b4f7277";
1946 char integrity_key[128], journal_integrity_key[128], journal_crypt_key[128];
1948 size_t integrity_key_size = strlen(key_integrity_hex) / 2;
1949 size_t journal_integrity_key_size = strlen(key_journal_integrity_hex) / 2;
1950 size_t journal_crypt_key_size = strlen(key_journal_crypt_hex) / 2;
1952 crypt_decode_key(integrity_key, key_integrity_hex, integrity_key_size);
1953 crypt_decode_key(journal_integrity_key, key_journal_integrity_hex, journal_integrity_key_size);
1954 crypt_decode_key(journal_crypt_key, key_journal_crypt_hex, journal_crypt_key_size);
1956 params.integrity_key_size = integrity_key_size;
1958 params.journal_integrity_key_size = journal_integrity_key_size;
1959 params.journal_integrity_key = journal_integrity_key;
1961 params.journal_crypt_key_size = journal_crypt_key_size;
1962 params.journal_crypt_key = journal_crypt_key;
1964 if (!t_dm_integrity_resize_support()) {
1965 printf("WARNING: integrity device resize not supported, skipping test.\n");
1969 OK_(crypt_init(&cd, DEVICE_2));
1970 ret = crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,¶ms);
1972 printf("WARNING: cannot format integrity device, skipping test.\n");
1976 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, integrity_key, integrity_key_size, 0));
1977 t_device_size(DMDIR CDEVICE_1, &whole_device_size);
1978 // shrink the device
1979 OK_(crypt_resize(cd, CDEVICE_1, 1024*1024/512));
1980 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1981 EQ_(1024*1024/512, r_size >> TST_SECTOR_SHIFT);
1982 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
1983 // fill the whole device again (size = 0)
1984 OK_(crypt_resize(cd, CDEVICE_1, 0));
1985 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
1986 EQ_(whole_device_size, r_size);
1987 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
1988 OK_(crypt_deactivate(cd, CDEVICE_1));
1991 // detached metadata
1992 OK_(create_dmdevice_over_loop(H_DEVICE, 1024 * 1024 / 512));
1993 OK_(crypt_init_data_device(&cd, DMDIR H_DEVICE, DEVICE_2));
1994 OK_(crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,¶ms));
1995 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, integrity_key, integrity_key_size, 0));
1996 if (!t_device_size(DMDIR CDEVICE_1, &whole_device_size))
1997 EQ_(10*1024*1024/512, whole_device_size >> TST_SECTOR_SHIFT);
1998 // shrink the device
1999 OK_(crypt_resize(cd, CDEVICE_1, 1024*1024/512));
2000 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
2001 EQ_(1024*1024/512, r_size >> TST_SECTOR_SHIFT);
2002 FAIL_(crypt_resize(cd, CDEVICE_1, 1001), "Device too small");
2003 // fill the whole device again (size = 0)
2004 OK_(crypt_resize(cd, CDEVICE_1, 0));
2005 if (!t_device_size(DMDIR CDEVICE_1, &r_size))
2006 EQ_(whole_device_size, r_size);
2007 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
2008 OK_(crypt_deactivate(cd, CDEVICE_1));
2011 _cleanup_dmdevices();
2014 static void IntegrityTest(void)
2016 struct crypt_params_integrity params = {
2018 .integrity = "crc32c",
2019 .sector_size = 4096,
2021 struct crypt_active_device cad;
2024 // FIXME: this should be more detailed
2026 OK_(crypt_init(&cd,DEVICE_1));
2027 FAIL_(crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,NULL), "params field required");
2028 ret = crypt_format(cd,CRYPT_INTEGRITY,NULL,NULL,NULL,NULL,0,¶ms);
2030 printf("WARNING: cannot format integrity device, skipping test.\n");
2034 OK_(crypt_get_integrity_info(cd, &ip));
2035 EQ_(ip.tag_size, params.tag_size);
2036 EQ_(ip.sector_size, params.sector_size);
2037 EQ_(crypt_get_sector_size(cd), params.sector_size);
2038 EQ_(ip.interleave_sectors, params.interleave_sectors);
2039 EQ_(ip.journal_size, params.journal_size);
2040 EQ_(ip.journal_watermark, params.journal_watermark);
2041 EQ_(ip.integrity_key_size, 0);
2042 OK_(strcmp(ip.integrity,params.integrity));
2043 FAIL_(crypt_set_uuid(cd,DEVICE_1_UUID),"can't set uuid to integrity device");
2046 OK_(crypt_init(&cd, DEVICE_1));
2047 OK_(crypt_load(cd, CRYPT_INTEGRITY, NULL));
2050 OK_(crypt_init(&cd, DEVICE_1));
2051 //params.tag_size = 8;
2052 //FAIL_(crypt_load(cd, CRYPT_INTEGRITY, ¶ms), "tag size mismatch");
2053 params.tag_size = 4;
2054 OK_(crypt_load(cd, CRYPT_INTEGRITY, ¶ms));
2055 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, 0));
2056 GE_(crypt_status(cd, CDEVICE_1), CRYPT_ACTIVE);
2059 memset(&ip, 0, sizeof(ip));
2060 OK_(crypt_init_by_name(&cd, CDEVICE_1));
2061 OK_(crypt_get_integrity_info(cd, &ip));
2062 EQ_(ip.tag_size, params.tag_size);
2063 OK_(strcmp(ip.integrity,params.integrity));
2064 OK_(strcmp(CRYPT_INTEGRITY,crypt_get_type(cd)));
2066 if (t_dm_integrity_recalculate_support()) {
2067 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
2068 EQ_(cad.flags & CRYPT_ACTIVATE_RECALCULATE, 0);
2069 OK_(crypt_activate_by_volume_key(cd, CDEVICE_1, NULL, 0, CRYPT_ACTIVATE_REFRESH | CRYPT_ACTIVATE_RECALCULATE));
2070 OK_(crypt_get_active_device(cd, CDEVICE_1, &cad));
2071 EQ_(cad.flags & CRYPT_ACTIVATE_RECALCULATE, CRYPT_ACTIVATE_RECALCULATE);
2074 OK_(crypt_deactivate(cd, CDEVICE_1));
2078 static void WipeTest(void)
2080 OK_(crypt_init(&cd, NULL));
2081 FAIL_(crypt_wipe(cd, NULL, CRYPT_WIPE_ZERO, 0, 4096, 0, 0, NULL, NULL), "No device");
2082 FAIL_(crypt_wipe(cd, DEVICE_WRONG, CRYPT_WIPE_ZERO, 0, 4096, 0, 0, NULL, NULL), "Wrong device");
2083 OK_(crypt_wipe(cd, DEVICE_1, CRYPT_WIPE_ZERO, 0, 4096, 0, 0, NULL, NULL));
2084 OK_(crypt_wipe(cd, DEVICE_1, CRYPT_WIPE_RANDOM, 0, 4096, 0, 0, NULL, NULL));
2085 OK_(crypt_wipe(cd, DEVICE_1, CRYPT_WIPE_RANDOM, 0, 4096, 0, CRYPT_WIPE_NO_DIRECT_IO, NULL, NULL));
2088 OK_(crypt_init(&cd, DEVICE_1));
2089 OK_(crypt_wipe(cd, NULL, CRYPT_WIPE_ZERO, 0, 4096, 0, 0, NULL, NULL));
2090 OK_(crypt_wipe(cd, NULL, CRYPT_WIPE_RANDOM, 0, 4096, TST_SECTOR_SIZE, 0, NULL, NULL));
2091 FAIL_(crypt_wipe(cd, NULL, CRYPT_WIPE_RANDOM, 0, 4096, TST_SECTOR_SIZE-1, 0, NULL, NULL), "Sector size");
2092 FAIL_(crypt_wipe(cd, NULL, CRYPT_WIPE_RANDOM, 0, 4096 - 1, 0, 0, NULL, NULL), "Length size not aligned");
2093 FAIL_(crypt_wipe(cd, NULL, CRYPT_WIPE_RANDOM, 1, 4096, 0, 0, NULL, NULL), "Offset not aligned");
2097 static void LuksKeyslotAdd(void)
2099 enum { OFFSET_1M = 2048 , OFFSET_2M = 4096, OFFSET_4M = 8192, OFFSET_8M = 16384 };
2100 struct crypt_params_luks1 params = {
2102 .data_alignment = OFFSET_1M, // 4M, data offset will be 4096
2104 struct crypt_pbkdf_type min_pbkdf2 = {
2108 .flags = CRYPT_PBKDF_NO_BENCHMARK
2110 char key[128], key3[128];
2112 const char *passphrase = PASSPHRASE, *passphrase2 = "nsdkFI&Y#.sd";
2113 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
2114 const char *vk_hex2 = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1e";
2115 size_t key_size = strlen(vk_hex) / 2;
2116 const char *cipher = "aes";
2117 const char *cipher_mode = "cbc-essiv:sha256";
2118 uint64_t r_payload_offset;
2119 struct crypt_keyslot_context *um1, *um2;
2121 crypt_decode_key(key, vk_hex, key_size);
2122 crypt_decode_key(key3, vk_hex2, key_size);
2124 // init test devices
2125 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
2126 OK_(create_dmdevice_over_loop(H_DEVICE, r_payload_offset + 1));
2128 // test support for embedded key (after crypt_format)
2129 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2130 OK_(crypt_set_pbkdf_type(cd, &min_pbkdf2));
2131 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
2132 OK_(crypt_keyslot_context_init_by_volume_key(cd, NULL, key_size, &um1));
2133 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase, strlen(passphrase), &um2));
2134 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 3, um2, 0), 3);
2135 crypt_keyslot_context_free(um1);
2136 crypt_keyslot_context_free(um2);
2139 // test add by volume key
2140 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2141 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
2142 OK_(crypt_set_pbkdf_type(cd, &min_pbkdf2));
2143 OK_(crypt_keyslot_context_init_by_volume_key(cd, key, key_size, &um1));
2144 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase2, strlen(passphrase2), &um2));
2145 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, CRYPT_ANY_SLOT, um2, 0), 0);
2146 crypt_keyslot_context_free(um1);
2147 crypt_keyslot_context_free(um2);
2149 // Add by same passphrase
2150 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase, strlen(passphrase), &um1));
2151 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 1, um1, 0), 1);
2152 crypt_keyslot_context_free(um1);
2154 // new passphrase can't be provided by key method
2155 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase, strlen(passphrase), &um1));
2156 OK_(crypt_keyslot_context_init_by_volume_key(cd, key, key_size, &um2));
2157 FAIL_(crypt_keyslot_add_by_keyslot_context(cd, 1, um1, CRYPT_ANY_SLOT, um2, 0), "Can't get passphrase via selected unlock method");
2158 crypt_keyslot_context_free(um1);
2159 crypt_keyslot_context_free(um2);
2162 OK_(prepare_keyfile(KEYFILE1, passphrase2, strlen(passphrase2)));
2163 OK_(prepare_keyfile(KEYFILE2, KEY1, strlen(KEY1)));
2164 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE1, 0, 0, &um1));
2165 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE2, 0, 0, &um2));
2166 EQ_(crypt_keyslot_add_by_keyslot_context(cd, 0, um1, 2, um2, 0), 2);
2167 crypt_keyslot_context_free(um1);
2168 crypt_keyslot_context_free(um2);
2170 // add by same keyfile
2171 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE2, 0, 0, &um1));
2172 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 4, um1, 0), 4);
2173 crypt_keyslot_context_free(um1);
2175 // keyslot already exists
2176 OK_(crypt_keyslot_context_init_by_passphrase(cd, passphrase2, strlen(passphrase2), &um1));
2177 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE1, 0, 0, &um2));
2178 FAIL_(crypt_keyslot_add_by_keyslot_context(cd, 3, um1, 0, um2, 0), "Keyslot already exists.");
2179 crypt_keyslot_context_free(um2);
2181 // flags not supported with LUKS1
2182 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE1, 0, 0, &um2));
2183 FAIL_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, CRYPT_ANY_SLOT, um2, CRYPT_VOLUME_KEY_NO_SEGMENT), "Not supported with LUKS1.");
2184 crypt_keyslot_context_free(um1);
2185 crypt_keyslot_context_free(um2);
2187 // LUKS2 token not supported
2188 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE2, 0, 0, &um1));
2189 OK_(crypt_keyslot_context_init_by_token(cd, CRYPT_ANY_TOKEN, NULL, NULL, 0, NULL, &um2));
2190 FAIL_(crypt_keyslot_add_by_keyslot_context(cd, 2, um1, CRYPT_ANY_SLOT, um2, 0), "Not supported with LUKS1.");
2191 EQ_(crypt_keyslot_context_get_error(um2), -EINVAL);
2192 crypt_keyslot_context_free(um1);
2193 crypt_keyslot_context_free(um2);
2195 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE2, 0, 0, &um1));
2196 OK_(crypt_keyslot_context_init_by_token(cd, CRYPT_ANY_TOKEN, NULL, NULL, 0, NULL, &um2));
2197 FAIL_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um2, CRYPT_ANY_SLOT, um1, 0), "Not supported with LUKS1.");
2198 crypt_keyslot_context_free(um1);
2199 crypt_keyslot_context_free(um2);
2203 _cleanup_dmdevices();
2206 static void VolumeKeyGet(void)
2208 struct crypt_params_luks1 params = {
2210 .data_alignment = 2048, // 2M, data offset will be 2048
2212 struct crypt_pbkdf_type min_pbkdf2 = {
2216 .flags = CRYPT_PBKDF_NO_BENCHMARK
2218 char key[128], key2[128];
2220 const char *vk_hex = "bb21158c733229347bd4e681891e213d94c685be6a5b84818afe7a78a6de7a1a";
2221 size_t key_size = strlen(vk_hex) / 2;
2222 const char *cipher = "aes";
2223 const char *cipher_mode = "cbc-essiv:sha256";
2224 uint64_t r_payload_offset;
2225 struct crypt_keyslot_context *um1, *um2;
2227 crypt_decode_key(key, vk_hex, key_size);
2229 OK_(prepare_keyfile(KEYFILE1, PASSPHRASE1, strlen(PASSPHRASE1)));
2231 // init test devices
2232 OK_(get_luks_offsets(0, key_size, params.data_alignment, 0, NULL, &r_payload_offset));
2233 OK_(create_dmdevice_over_loop(H_DEVICE, r_payload_offset + 1));
2235 // test support for embedded key (after crypt_format)
2236 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2237 OK_(crypt_set_pbkdf_type(cd, &min_pbkdf2));
2238 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
2240 FAIL_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, NULL), "buffer too small");
2242 // check cached generated volume key can be retrieved
2244 OK_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, NULL));
2245 OK_(crypt_volume_key_verify(cd, key2, key_size));
2248 // check we can add keyslot via retrieved key
2249 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2250 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
2251 OK_(crypt_set_pbkdf_type(cd, &min_pbkdf2));
2252 OK_(crypt_keyslot_context_init_by_volume_key(cd, key2, key_size, &um1));
2253 OK_(crypt_keyslot_context_init_by_passphrase(cd, PASSPHRASE, strlen(PASSPHRASE), &um2));
2254 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 3, um2, 0), 3);
2255 crypt_keyslot_context_free(um1);
2256 crypt_keyslot_context_free(um2);
2259 // check selected volume key can be retrieved and added
2260 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2261 OK_(crypt_set_pbkdf_type(cd, &min_pbkdf2));
2262 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
2263 memset(key2, 0, key_size);
2264 OK_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, NULL));
2265 OK_(memcmp(key, key2, key_size));
2266 OK_(crypt_keyslot_context_init_by_volume_key(cd, key2, key_size, &um1));
2267 OK_(crypt_keyslot_context_init_by_passphrase(cd, PASSPHRASE, strlen(PASSPHRASE), &um2));
2268 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 0, um2, 0), 0);
2269 crypt_keyslot_context_free(um2);
2270 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE1, 0, 0, &um2));
2271 EQ_(crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, um1, 1, um2, 0), 1);
2272 crypt_keyslot_context_free(um2);
2273 crypt_keyslot_context_free(um1);
2276 OK_(crypt_init(&cd, DMDIR H_DEVICE));
2277 OK_(crypt_load(cd, CRYPT_LUKS1, NULL));
2278 // check key context is not usable
2279 OK_(crypt_keyslot_context_init_by_volume_key(cd, key, key_size, &um1));
2280 EQ_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, um1), -EINVAL);
2281 crypt_keyslot_context_free(um1);
2283 // check token context is not usable
2284 OK_(crypt_keyslot_context_init_by_token(cd, CRYPT_ANY_TOKEN, NULL, NULL, 0, NULL, &um1));
2285 EQ_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, um1), -EINVAL);
2286 crypt_keyslot_context_free(um1);
2289 memset(key2, 0, key_size);
2290 OK_(crypt_keyslot_context_init_by_passphrase(cd, PASSPHRASE, strlen(PASSPHRASE), &um1));
2291 EQ_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, um1), 0);
2292 OK_(memcmp(key, key2, key_size));
2293 memset(key2, 0, key_size);
2294 EQ_(crypt_volume_key_get_by_keyslot_context(cd, 0, key2, &key_size, um1), 0);
2295 OK_(memcmp(key, key2, key_size));
2296 crypt_keyslot_context_free(um1);
2299 memset(key2, 0, key_size);
2300 OK_(crypt_keyslot_context_init_by_keyfile(cd, KEYFILE1, 0, 0, &um1));
2301 EQ_(crypt_volume_key_get_by_keyslot_context(cd, CRYPT_ANY_SLOT, key2, &key_size, um1), 1);
2302 OK_(memcmp(key, key2, key_size));
2303 memset(key2, 0, key_size);
2304 EQ_(crypt_volume_key_get_by_keyslot_context(cd, 1, key2, &key_size, um1), 1);
2305 crypt_keyslot_context_free(um1);
2309 _cleanup_dmdevices();
2312 // Check that gcrypt is properly initialised in format
2313 static void NonFIPSAlg(void)
2315 struct crypt_params_luks1 params = {0};
2317 size_t key_size = 128 / 8;
2318 const char *cipher = "aes";
2319 const char *cipher_mode = "cbc-essiv:sha256";
2322 OK_(crypt_init(&cd, DEVICE_2));
2323 params.hash = "sha256";
2324 OK_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms));
2325 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms),
2326 "Already formatted.");
2329 params.hash = "whirlpool";
2330 OK_(crypt_init(&cd, DEVICE_2));
2331 ret = crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms);
2333 printf("WARNING: whirlpool not supported, skipping test.\n");
2339 params.hash = "md5";
2340 OK_(crypt_init(&cd, DEVICE_2));
2341 FAIL_(crypt_format(cd, CRYPT_LUKS1, cipher, cipher_mode, NULL, key, key_size, ¶ms),
2342 "MD5 unsupported, too short");
2346 static void int_handler(int sig __attribute__((__unused__)))
2351 int main(int argc, char *argv[])
2353 struct sigaction sa = { .sa_handler = int_handler };
2356 if (getuid() != 0) {
2357 printf("You must be root to run this test.\n");
2360 #ifndef NO_CRYPTSETUP_PATH
2361 if (getenv("CRYPTSETUP_PATH")) {
2362 printf("Cannot run this test with CRYPTSETUP_PATH set.\n");
2366 for (i = 1; i < argc; i++) {
2367 if (!strcmp("-v", argv[i]) || !strcmp("--verbose", argv[i]))
2369 else if (!strcmp("--debug", argv[i]))
2370 _debug = _verbose = 1;
2373 /* Handle interrupt properly */
2374 sigaction(SIGINT, &sa, NULL);
2375 sigaction(SIGTERM, &sa, NULL);
2377 register_cleanup(_cleanup);
2381 printf("Cannot set test devices.\n");
2386 crypt_set_debug_level(_debug ? CRYPT_DEBUG_ALL : CRYPT_DEBUG_NONE);
2388 RUN_(NonFIPSAlg, "Crypto is properly initialised in format"); //must be the first!
2389 RUN_(AddDevicePlain, "A plain device API creation");
2390 RUN_(HashDevicePlain, "A plain device API hash");
2391 RUN_(AddDeviceLuks, "Format and use LUKS device");
2392 RUN_(LuksHeaderLoad, "Header load");
2393 RUN_(LuksHeaderRestore, "LUKS header restore");
2394 RUN_(LuksHeaderBackup, "LUKS header backup");
2395 RUN_(ResizeDeviceLuks, "LUKS device resize");
2396 RUN_(UseLuksDevice, "Use pre-formated LUKS device");
2397 RUN_(SuspendDevice, "Suspend/Resume");
2398 RUN_(UseTempVolumes, "Format and use temporary encrypted device");
2399 RUN_(CallbacksTest, "API callbacks");
2400 RUN_(VerityTest, "DM verity");
2401 RUN_(TcryptTest, "Tcrypt API");
2402 RUN_(IntegrityTest, "Integrity API");
2403 RUN_(ResizeIntegrity, "Integrity raw resize");
2404 RUN_(ResizeIntegrityWithKey, "Integrity raw resize with key");
2405 RUN_(WipeTest, "Wipe device");
2406 RUN_(LuksKeyslotAdd, "Adding keyslot via new API");
2407 RUN_(VolumeKeyGet, "Getting volume key via keyslot context API");