diff options
author | Milan Broz <mbroz@redhat.com> | 2009-12-10 18:51:55 -0500 |
---|---|---|
committer | Alasdair G Kergon <agk@redhat.com> | 2009-12-10 18:51:55 -0500 |
commit | 0b4309581b5be8749afdd5a9087fd82a2a5c9932 (patch) | |
tree | 4e29641aa1da9e8dc7ab8394f12162976ebef986 /drivers | |
parent | 8e87b9b81b3c370f7e53c1ab6e1c3519ef37a644 (diff) |
dm crypt: make wipe message also wipe tfm key
The "wipe key" message is used to wipe a volume key from memory
temporarily, for example when suspending to RAM.
There are two instances of the key in memory (inside crypto tfm)
but only one got wiped. This patch wipes them both.
Cc: stable@kernel.org
Signed-off-by: Milan Broz <mbroz@redhat.com>
Signed-off-by: Alasdair G Kergon <agk@redhat.com>
Diffstat (limited to 'drivers')
-rw-r--r-- | drivers/md/dm-crypt.c | 19 |
1 files changed, 7 insertions, 12 deletions
diff --git a/drivers/md/dm-crypt.c b/drivers/md/dm-crypt.c index e412980763bd..f2c139305e13 100644 --- a/drivers/md/dm-crypt.c +++ b/drivers/md/dm-crypt.c | |||
@@ -934,14 +934,14 @@ static int crypt_set_key(struct crypt_config *cc, char *key) | |||
934 | 934 | ||
935 | set_bit(DM_CRYPT_KEY_VALID, &cc->flags); | 935 | set_bit(DM_CRYPT_KEY_VALID, &cc->flags); |
936 | 936 | ||
937 | return 0; | 937 | return crypto_ablkcipher_setkey(cc->tfm, cc->key, cc->key_size); |
938 | } | 938 | } |
939 | 939 | ||
940 | static int crypt_wipe_key(struct crypt_config *cc) | 940 | static int crypt_wipe_key(struct crypt_config *cc) |
941 | { | 941 | { |
942 | clear_bit(DM_CRYPT_KEY_VALID, &cc->flags); | 942 | clear_bit(DM_CRYPT_KEY_VALID, &cc->flags); |
943 | memset(&cc->key, 0, cc->key_size * sizeof(u8)); | 943 | memset(&cc->key, 0, cc->key_size * sizeof(u8)); |
944 | return 0; | 944 | return crypto_ablkcipher_setkey(cc->tfm, cc->key, cc->key_size); |
945 | } | 945 | } |
946 | 946 | ||
947 | /* | 947 | /* |
@@ -983,11 +983,6 @@ static int crypt_ctr(struct dm_target *ti, unsigned int argc, char **argv) | |||
983 | return -ENOMEM; | 983 | return -ENOMEM; |
984 | } | 984 | } |
985 | 985 | ||
986 | if (crypt_set_key(cc, argv[1])) { | ||
987 | ti->error = "Error decoding key"; | ||
988 | goto bad_cipher; | ||
989 | } | ||
990 | |||
991 | /* Compatibility mode for old dm-crypt cipher strings */ | 986 | /* Compatibility mode for old dm-crypt cipher strings */ |
992 | if (!chainmode || (strcmp(chainmode, "plain") == 0 && !ivmode)) { | 987 | if (!chainmode || (strcmp(chainmode, "plain") == 0 && !ivmode)) { |
993 | chainmode = "cbc"; | 988 | chainmode = "cbc"; |
@@ -1015,6 +1010,11 @@ static int crypt_ctr(struct dm_target *ti, unsigned int argc, char **argv) | |||
1015 | strcpy(cc->chainmode, chainmode); | 1010 | strcpy(cc->chainmode, chainmode); |
1016 | cc->tfm = tfm; | 1011 | cc->tfm = tfm; |
1017 | 1012 | ||
1013 | if (crypt_set_key(cc, argv[1]) < 0) { | ||
1014 | ti->error = "Error decoding and setting key"; | ||
1015 | goto bad_ivmode; | ||
1016 | } | ||
1017 | |||
1018 | /* | 1018 | /* |
1019 | * Choose ivmode. Valid modes: "plain", "essiv:<esshash>", "benbi". | 1019 | * Choose ivmode. Valid modes: "plain", "essiv:<esshash>", "benbi". |
1020 | * See comments at iv code | 1020 | * See comments at iv code |
@@ -1085,11 +1085,6 @@ static int crypt_ctr(struct dm_target *ti, unsigned int argc, char **argv) | |||
1085 | goto bad_bs; | 1085 | goto bad_bs; |
1086 | } | 1086 | } |
1087 | 1087 | ||
1088 | if (crypto_ablkcipher_setkey(tfm, cc->key, key_size) < 0) { | ||
1089 | ti->error = "Error setting key"; | ||
1090 | goto bad_device; | ||
1091 | } | ||
1092 | |||
1093 | if (sscanf(argv[2], "%llu", &tmpll) != 1) { | 1088 | if (sscanf(argv[2], "%llu", &tmpll) != 1) { |
1094 | ti->error = "Invalid iv_offset sector"; | 1089 | ti->error = "Invalid iv_offset sector"; |
1095 | goto bad_device; | 1090 | goto bad_device; |