search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
blockdev: Use blk_remove_bs() in do_drive_del()
[qemu/ar7.git] / crypto / secret.c
blobbe736f2cd56ca48c6a4db714954e8d903279395e
1 /*
2 * QEMU crypto secret support
3 *
4 * Copyright (c) 2015 Red Hat, Inc.
5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
18 *
19 */
20
21 #include "qemu/osdep.h"
22 #include "crypto/secret.h"
23 #include "crypto/cipher.h"
24 #include "qom/object_interfaces.h"
25 #include "qemu/base64.h"
26 #include "trace.h"
27
28
29 static void
30 qcrypto_secret_load_data(QCryptoSecret *secret,
31 uint8_t **output,
32 size_t *outputlen,
33 Error **errp)
34 {
35 char *data = NULL;
36 size_t length = 0;
37 GError *gerr = NULL;
38
39 *output = NULL;
40 *outputlen = 0;
41
42 if (secret->file) {
43 if (secret->data) {
44 error_setg(errp,
45 "'file' and 'data' are mutually exclusive");
46 return;
47 }
48 if (!g_file_get_contents(secret->file, &data, &length, &gerr)) {
49 error_setg(errp,
50 "Unable to read %s: %s",
51 secret->file, gerr->message);
52 g_error_free(gerr);
53 return;
54 }
55 *output = (uint8_t *)data;
56 *outputlen = length;
57 } else if (secret->data) {
58 *outputlen = strlen(secret->data);
59 *output = (uint8_t *)g_strdup(secret->data);
60 } else {
61 error_setg(errp, "Either 'file' or 'data' must be provided");
62 }
63 }
64
65
66 static void qcrypto_secret_decrypt(QCryptoSecret *secret,
67 const uint8_t *input,
68 size_t inputlen,
69 uint8_t **output,
70 size_t *outputlen,
71 Error **errp)
72 {
73 uint8_t *key = NULL, *ciphertext = NULL, *iv = NULL;
74 size_t keylen, ciphertextlen, ivlen;
75 QCryptoCipher *aes = NULL;
76 uint8_t *plaintext = NULL;
77
78 *output = NULL;
79 *outputlen = 0;
80
81 if (qcrypto_secret_lookup(secret->keyid,
82 &key, &keylen,
83 errp) < 0) {
84 goto cleanup;
85 }
86
87 if (keylen != 32) {
88 error_setg(errp, "Key should be 32 bytes in length");
89 goto cleanup;
90 }
91
92 if (!secret->iv) {
93 error_setg(errp, "IV is required to decrypt secret");
94 goto cleanup;
95 }
96
97 iv = qbase64_decode(secret->iv, -1, &ivlen, errp);
98 if (!iv) {
99 goto cleanup;
100 }
101 if (ivlen != 16) {
102 error_setg(errp, "IV should be 16 bytes in length not %zu",
103 ivlen);
104 goto cleanup;
105 }
106
107 aes = qcrypto_cipher_new(QCRYPTO_CIPHER_ALG_AES_256,
108 QCRYPTO_CIPHER_MODE_CBC,
109 key, keylen,
110 errp);
111 if (!aes) {
112 goto cleanup;
113 }
114
115 if (qcrypto_cipher_setiv(aes, iv, ivlen, errp) < 0) {
116 goto cleanup;
117 }
118
119 if (secret->format == QCRYPTO_SECRET_FORMAT_BASE64) {
120 ciphertext = qbase64_decode((const gchar*)input,
121 inputlen,
122 &ciphertextlen,
123 errp);
124 if (!ciphertext) {
125 goto cleanup;
126 }
127 plaintext = g_new0(uint8_t, ciphertextlen + 1);
128 } else {
129 ciphertextlen = inputlen;
130 plaintext = g_new0(uint8_t, inputlen + 1);
131 }
132 if (qcrypto_cipher_decrypt(aes,
133 ciphertext ? ciphertext : input,
134 plaintext,
135 ciphertextlen,
136 errp) < 0) {
137 plaintext = NULL;
138 goto cleanup;
139 }
140
141 if (plaintext[ciphertextlen - 1] > 16 ||
142 plaintext[ciphertextlen - 1] > ciphertextlen) {
143 error_setg(errp, "Incorrect number of padding bytes (%d) "
144 "found on decrypted data",
145 (int)plaintext[ciphertextlen - 1]);
146 g_free(plaintext);
147 plaintext = NULL;
148 goto cleanup;
149 }
150
151 /* Even though plaintext may contain arbitrary NUL
152 * ensure it is explicitly NUL terminated.
153 */
154 ciphertextlen -= plaintext[ciphertextlen - 1];
155 plaintext[ciphertextlen] = '\0';
156
157 *output = plaintext;
158 *outputlen = ciphertextlen;
159
160 cleanup:
161 g_free(ciphertext);
162 g_free(iv);
163 g_free(key);
164 qcrypto_cipher_free(aes);
165 }
166
167
168 static void qcrypto_secret_decode(const uint8_t *input,
169 size_t inputlen,
170 uint8_t **output,
171 size_t *outputlen,
172 Error **errp)
173 {
174 *output = qbase64_decode((const gchar*)input,
175 inputlen,
176 outputlen,
177 errp);
178 }
179
180
181 static void
182 qcrypto_secret_prop_set_loaded(Object *obj,
183 bool value,
184 Error **errp)
185 {
186 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
187
188 if (value) {
189 Error *local_err = NULL;
190 uint8_t *input = NULL;
191 size_t inputlen = 0;
192 uint8_t *output = NULL;
193 size_t outputlen = 0;
194
195 qcrypto_secret_load_data(secret, &input, &inputlen, &local_err);
196 if (local_err) {
197 error_propagate(errp, local_err);
198 return;
199 }
200
201 if (secret->keyid) {
202 qcrypto_secret_decrypt(secret, input, inputlen,
203 &output, &outputlen, &local_err);
204 g_free(input);
205 if (local_err) {
206 error_propagate(errp, local_err);
207 return;
208 }
209 input = output;
210 inputlen = outputlen;
211 } else {
212 if (secret->format != QCRYPTO_SECRET_FORMAT_RAW) {
213 qcrypto_secret_decode(input, inputlen,
214 &output, &outputlen, &local_err);
215 g_free(input);
216 if (local_err) {
217 error_propagate(errp, local_err);
218 return;
219 }
220 input = output;
221 inputlen = outputlen;
222 }
223 }
224
225 secret->rawdata = input;
226 secret->rawlen = inputlen;
227 } else {
228 g_free(secret->rawdata);
229 secret->rawlen = 0;
230 }
231 }
232
233
234 static bool
235 qcrypto_secret_prop_get_loaded(Object *obj,
236 Error **errp G_GNUC_UNUSED)
237 {
238 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
239 return secret->data != NULL;
240 }
241
242
243 static void
244 qcrypto_secret_prop_set_format(Object *obj,
245 int value,
246 Error **errp G_GNUC_UNUSED)
247 {
248 QCryptoSecret *creds = QCRYPTO_SECRET(obj);
249
250 creds->format = value;
251 }
252
253
254 static int
255 qcrypto_secret_prop_get_format(Object *obj,
256 Error **errp G_GNUC_UNUSED)
257 {
258 QCryptoSecret *creds = QCRYPTO_SECRET(obj);
259
260 return creds->format;
261 }
262
263
264 static void
265 qcrypto_secret_prop_set_data(Object *obj,
266 const char *value,
267 Error **errp)
268 {
269 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
270
271 g_free(secret->data);
272 secret->data = g_strdup(value);
273 }
274
275
276 static char *
277 qcrypto_secret_prop_get_data(Object *obj,
278 Error **errp)
279 {
280 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
281 return g_strdup(secret->data);
282 }
283
284
285 static void
286 qcrypto_secret_prop_set_file(Object *obj,
287 const char *value,
288 Error **errp)
289 {
290 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
291
292 g_free(secret->file);
293 secret->file = g_strdup(value);
294 }
295
296
297 static char *
298 qcrypto_secret_prop_get_file(Object *obj,
299 Error **errp)
300 {
301 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
302 return g_strdup(secret->file);
303 }
304
305
306 static void
307 qcrypto_secret_prop_set_iv(Object *obj,
308 const char *value,
309 Error **errp)
310 {
311 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
312
313 g_free(secret->iv);
314 secret->iv = g_strdup(value);
315 }
316
317
318 static char *
319 qcrypto_secret_prop_get_iv(Object *obj,
320 Error **errp)
321 {
322 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
323 return g_strdup(secret->iv);
324 }
325
326
327 static void
328 qcrypto_secret_prop_set_keyid(Object *obj,
329 const char *value,
330 Error **errp)
331 {
332 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
333
334 g_free(secret->keyid);
335 secret->keyid = g_strdup(value);
336 }
337
338
339 static char *
340 qcrypto_secret_prop_get_keyid(Object *obj,
341 Error **errp)
342 {
343 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
344 return g_strdup(secret->keyid);
345 }
346
347
348 static void
349 qcrypto_secret_complete(UserCreatable *uc, Error **errp)
350 {
351 object_property_set_bool(OBJECT(uc), true, "loaded", errp);
352 }
353
354
355 static void
356 qcrypto_secret_finalize(Object *obj)
357 {
358 QCryptoSecret *secret = QCRYPTO_SECRET(obj);
359
360 g_free(secret->iv);
361 g_free(secret->file);
362 g_free(secret->keyid);
363 g_free(secret->rawdata);
364 g_free(secret->data);
365 }
366
367 static void
368 qcrypto_secret_class_init(ObjectClass *oc, void *data)
369 {
370 UserCreatableClass *ucc = USER_CREATABLE_CLASS(oc);
371
372 ucc->complete = qcrypto_secret_complete;
373
374 object_class_property_add_bool(oc, "loaded",
375 qcrypto_secret_prop_get_loaded,
376 qcrypto_secret_prop_set_loaded,
377 NULL);
378 object_class_property_add_enum(oc, "format",
379 "QCryptoSecretFormat",
380 QCryptoSecretFormat_lookup,
381 qcrypto_secret_prop_get_format,
382 qcrypto_secret_prop_set_format,
383 NULL);
384 object_class_property_add_str(oc, "data",
385 qcrypto_secret_prop_get_data,
386 qcrypto_secret_prop_set_data,
387 NULL);
388 object_class_property_add_str(oc, "file",
389 qcrypto_secret_prop_get_file,
390 qcrypto_secret_prop_set_file,
391 NULL);
392 object_class_property_add_str(oc, "keyid",
393 qcrypto_secret_prop_get_keyid,
394 qcrypto_secret_prop_set_keyid,
395 NULL);
396 object_class_property_add_str(oc, "iv",
397 qcrypto_secret_prop_get_iv,
398 qcrypto_secret_prop_set_iv,
399 NULL);
400 }
401
402
403 int qcrypto_secret_lookup(const char *secretid,
404 uint8_t **data,
405 size_t *datalen,
406 Error **errp)
407 {
408 Object *obj;
409 QCryptoSecret *secret;
410
411 obj = object_resolve_path_component(
412 object_get_objects_root(), secretid);
413 if (!obj) {
414 error_setg(errp, "No secret with id '%s'", secretid);
415 return -1;
416 }
417
418 secret = (QCryptoSecret *)
419 object_dynamic_cast(obj,
420 TYPE_QCRYPTO_SECRET);
421 if (!secret) {
422 error_setg(errp, "Object with id '%s' is not a secret",
423 secretid);
424 return -1;
425 }
426
427 if (!secret->rawdata) {
428 error_setg(errp, "Secret with id '%s' has no data",
429 secretid);
430 return -1;
431 }
432
433 *data = g_new0(uint8_t, secret->rawlen + 1);
434 memcpy(*data, secret->rawdata, secret->rawlen);
435 (*data)[secret->rawlen] = '\0';
436 *datalen = secret->rawlen;
437
438 return 0;
439 }
440
441
442 char *qcrypto_secret_lookup_as_utf8(const char *secretid,
443 Error **errp)
444 {
445 uint8_t *data;
446 size_t datalen;
447
448 if (qcrypto_secret_lookup(secretid,
449 &data,
450 &datalen,
451 errp) < 0) {
452 return NULL;
453 }
454
455 if (!g_utf8_validate((const gchar*)data, datalen, NULL)) {
456 error_setg(errp,
457 "Data from secret %s is not valid UTF-8",
458 secretid);
459 g_free(data);
460 return NULL;
461 }
462
463 return (char *)data;
464 }
465
466
467 char *qcrypto_secret_lookup_as_base64(const char *secretid,
468 Error **errp)
469 {
470 uint8_t *data;
471 size_t datalen;
472 char *ret;
473
474 if (qcrypto_secret_lookup(secretid,
475 &data,
476 &datalen,
477 errp) < 0) {
478 return NULL;
479 }
480
481 ret = g_base64_encode(data, datalen);
482 g_free(data);
483 return ret;
484 }
485
486
487 static const TypeInfo qcrypto_secret_info = {
488 .parent = TYPE_OBJECT,
489 .name = TYPE_QCRYPTO_SECRET,
490 .instance_size = sizeof(QCryptoSecret),
491 .instance_finalize = qcrypto_secret_finalize,
492 .class_size = sizeof(QCryptoSecretClass),
493 .class_init = qcrypto_secret_class_init,
494 .interfaces = (InterfaceInfo[]) {
495 { TYPE_USER_CREATABLE },
496 { }
497 }
498 };
499
500
501 static void
502 qcrypto_secret_register_types(void)
503 {
504 type_register_static(&qcrypto_secret_info);
505 }
506
507
508 type_init(qcrypto_secret_register_types);
AR7 emulation for QEMU