1 // SPDX-License-Identifier: GPL-2.0
2
3 #include <linux/quotaops.h>
4 #include <linux/uuid.h>
5
6 #include "ext4.h"
7 #include "xattr.h"
8 #include "ext4_jbd2.h"
9
ext4_fname_from_fscrypt_name(struct ext4_filename * dst,const struct fscrypt_name * src)10 static void ext4_fname_from_fscrypt_name(struct ext4_filename *dst,
11 const struct fscrypt_name *src)
12 {
13 memset(dst, 0, sizeof(*dst));
14
15 dst->usr_fname = src->usr_fname;
16 dst->disk_name = src->disk_name;
17 dst->hinfo.hash = src->hash;
18 dst->hinfo.minor_hash = src->minor_hash;
19 dst->crypto_buf = src->crypto_buf;
20 }
21
ext4_fname_setup_filename(struct inode * dir,const struct qstr * iname,int lookup,struct ext4_filename * fname)22 int ext4_fname_setup_filename(struct inode *dir, const struct qstr *iname,
23 int lookup, struct ext4_filename *fname)
24 {
25 struct fscrypt_name name;
26 int err;
27
28 err = fscrypt_setup_filename(dir, iname, lookup, &name);
29 if (err)
30 return err;
31
32 ext4_fname_from_fscrypt_name(fname, &name);
33
34 #if IS_ENABLED(CONFIG_UNICODE)
35 err = ext4_fname_setup_ci_filename(dir, iname, fname);
36 #endif
37 return err;
38 }
39
ext4_fname_prepare_lookup(struct inode * dir,struct dentry * dentry,struct ext4_filename * fname)40 int ext4_fname_prepare_lookup(struct inode *dir, struct dentry *dentry,
41 struct ext4_filename *fname)
42 {
43 struct fscrypt_name name;
44 int err;
45
46 err = fscrypt_prepare_lookup(dir, dentry, &name);
47 if (err)
48 return err;
49
50 ext4_fname_from_fscrypt_name(fname, &name);
51
52 #if IS_ENABLED(CONFIG_UNICODE)
53 err = ext4_fname_setup_ci_filename(dir, &dentry->d_name, fname);
54 #endif
55 return err;
56 }
57
ext4_fname_free_filename(struct ext4_filename * fname)58 void ext4_fname_free_filename(struct ext4_filename *fname)
59 {
60 struct fscrypt_name name;
61
62 name.crypto_buf = fname->crypto_buf;
63 fscrypt_free_filename(&name);
64
65 fname->crypto_buf.name = NULL;
66 fname->usr_fname = NULL;
67 fname->disk_name.name = NULL;
68
69 #if IS_ENABLED(CONFIG_UNICODE)
70 kfree(fname->cf_name.name);
71 fname->cf_name.name = NULL;
72 #endif
73 }
74
uuid_is_zero(__u8 u[16])75 static bool uuid_is_zero(__u8 u[16])
76 {
77 int i;
78
79 for (i = 0; i < 16; i++)
80 if (u[i])
81 return false;
82 return true;
83 }
84
ext4_ioctl_get_encryption_pwsalt(struct file * filp,void __user * arg)85 int ext4_ioctl_get_encryption_pwsalt(struct file *filp, void __user *arg)
86 {
87 struct super_block *sb = file_inode(filp)->i_sb;
88 struct ext4_sb_info *sbi = EXT4_SB(sb);
89 int err, err2;
90 handle_t *handle;
91
92 if (!ext4_has_feature_encrypt(sb))
93 return -EOPNOTSUPP;
94
95 if (uuid_is_zero(sbi->s_es->s_encrypt_pw_salt)) {
96 err = mnt_want_write_file(filp);
97 if (err)
98 return err;
99 handle = ext4_journal_start_sb(sb, EXT4_HT_MISC, 1);
100 if (IS_ERR(handle)) {
101 err = PTR_ERR(handle);
102 goto pwsalt_err_exit;
103 }
104 err = ext4_journal_get_write_access(handle, sb, sbi->s_sbh,
105 EXT4_JTR_NONE);
106 if (err)
107 goto pwsalt_err_journal;
108 lock_buffer(sbi->s_sbh);
109 generate_random_uuid(sbi->s_es->s_encrypt_pw_salt);
110 ext4_superblock_csum_set(sb);
111 unlock_buffer(sbi->s_sbh);
112 err = ext4_handle_dirty_metadata(handle, NULL, sbi->s_sbh);
113 pwsalt_err_journal:
114 err2 = ext4_journal_stop(handle);
115 if (err2 && !err)
116 err = err2;
117 pwsalt_err_exit:
118 mnt_drop_write_file(filp);
119 if (err)
120 return err;
121 }
122
123 if (copy_to_user(arg, sbi->s_es->s_encrypt_pw_salt, 16))
124 return -EFAULT;
125 return 0;
126 }
127
ext4_get_context(struct inode * inode,void * ctx,size_t len)128 static int ext4_get_context(struct inode *inode, void *ctx, size_t len)
129 {
130 return ext4_xattr_get(inode, EXT4_XATTR_INDEX_ENCRYPTION,
131 EXT4_XATTR_NAME_ENCRYPTION_CONTEXT, ctx, len);
132 }
133
ext4_set_context(struct inode * inode,const void * ctx,size_t len,void * fs_data)134 static int ext4_set_context(struct inode *inode, const void *ctx, size_t len,
135 void *fs_data)
136 {
137 handle_t *handle = fs_data;
138 int res, res2, credits, retries = 0;
139
140 /*
141 * Encrypting the root directory is not allowed because e2fsck expects
142 * lost+found to exist and be unencrypted, and encrypting the root
143 * directory would imply encrypting the lost+found directory as well as
144 * the filename "lost+found" itself.
145 */
146 if (inode->i_ino == EXT4_ROOT_INO)
147 return -EPERM;
148
149 if (WARN_ON_ONCE(IS_DAX(inode) && i_size_read(inode)))
150 return -EINVAL;
151
152 if (ext4_test_inode_flag(inode, EXT4_INODE_DAX))
153 return -EOPNOTSUPP;
154
155 res = ext4_convert_inline_data(inode);
156 if (res)
157 return res;
158
159 /*
160 * If a journal handle was specified, then the encryption context is
161 * being set on a new inode via inheritance and is part of a larger
162 * transaction to create the inode. Otherwise the encryption context is
163 * being set on an existing inode in its own transaction. Only in the
164 * latter case should the "retry on ENOSPC" logic be used.
165 */
166
167 if (handle) {
168 res = ext4_xattr_set_handle(handle, inode,
169 EXT4_XATTR_INDEX_ENCRYPTION,
170 EXT4_XATTR_NAME_ENCRYPTION_CONTEXT,
171 ctx, len, 0);
172 if (!res) {
173 ext4_set_inode_flag(inode, EXT4_INODE_ENCRYPT);
174 ext4_clear_inode_state(inode,
175 EXT4_STATE_MAY_INLINE_DATA);
176 /*
177 * Update inode->i_flags - S_ENCRYPTED will be enabled,
178 * S_DAX may be disabled
179 */
180 ext4_set_inode_flags(inode, false);
181 }
182 return res;
183 }
184
185 res = dquot_initialize(inode);
186 if (res)
187 return res;
188 retry:
189 res = ext4_xattr_set_credits(inode, len, false /* is_create */,
190 &credits);
191 if (res)
192 return res;
193
194 handle = ext4_journal_start(inode, EXT4_HT_MISC, credits);
195 if (IS_ERR(handle))
196 return PTR_ERR(handle);
197
198 res = ext4_xattr_set_handle(handle, inode, EXT4_XATTR_INDEX_ENCRYPTION,
199 EXT4_XATTR_NAME_ENCRYPTION_CONTEXT,
200 ctx, len, 0);
201 if (!res) {
202 ext4_set_inode_flag(inode, EXT4_INODE_ENCRYPT);
203 /*
204 * Update inode->i_flags - S_ENCRYPTED will be enabled,
205 * S_DAX may be disabled
206 */
207 ext4_set_inode_flags(inode, false);
208 res = ext4_mark_inode_dirty(handle, inode);
209 if (res)
210 EXT4_ERROR_INODE(inode, "Failed to mark inode dirty");
211 }
212 res2 = ext4_journal_stop(handle);
213
214 if (res == -ENOSPC && ext4_should_retry_alloc(inode->i_sb, &retries))
215 goto retry;
216 if (!res)
217 res = res2;
218 return res;
219 }
220
ext4_get_dummy_policy(struct super_block * sb)221 static const union fscrypt_policy *ext4_get_dummy_policy(struct super_block *sb)
222 {
223 return EXT4_SB(sb)->s_dummy_enc_policy.policy;
224 }
225
ext4_has_stable_inodes(struct super_block * sb)226 static bool ext4_has_stable_inodes(struct super_block *sb)
227 {
228 return ext4_has_feature_stable_inodes(sb);
229 }
230
ext4_get_ino_and_lblk_bits(struct super_block * sb,int * ino_bits_ret,int * lblk_bits_ret)231 static void ext4_get_ino_and_lblk_bits(struct super_block *sb,
232 int *ino_bits_ret, int *lblk_bits_ret)
233 {
234 *ino_bits_ret = 8 * sizeof(EXT4_SB(sb)->s_es->s_inodes_count);
235 *lblk_bits_ret = 8 * sizeof(ext4_lblk_t);
236 }
237
238 const struct fscrypt_operations ext4_cryptops = {
239 .key_prefix = "ext4:",
240 .get_context = ext4_get_context,
241 .set_context = ext4_set_context,
242 .get_dummy_policy = ext4_get_dummy_policy,
243 .empty_dir = ext4_empty_dir,
244 .has_stable_inodes = ext4_has_stable_inodes,
245 .get_ino_and_lblk_bits = ext4_get_ino_and_lblk_bits,
246 };
247