Received: by 2002:a05:7412:e794:b0:fa:551:50a7 with SMTP id o20csp807986rdd; Tue, 9 Jan 2024 23:16:32 -0800 (PST) X-Google-Smtp-Source: AGHT+IET0tH6O5MXAAcAKWzFN5RFPWhaCQhVvOMtQfxymHykwYEGT9kRZJJ6T3JTYwK5kazUpDCt X-Received: by 2002:a17:907:9107:b0:a29:2668:7bfc with SMTP id p7-20020a170907910700b00a2926687bfcmr577332ejq.65.1704870991835; Tue, 09 Jan 2024 23:16:31 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1704870991; cv=none; d=google.com; s=arc-20160816; b=kF/908szYTINdeMVFFLAE1OjE2GHyr7RxPila+KPKwBpxPyOrS31v48WaaNv0Eyb2G AK7aauXKAA7JD9zMkv1/eB6f2LM7eiNg5QiJdX8pyF54MvDjGPSgyf8vkn0fkGje0qme 5oFKI8LDIor1j6HD5eGScgdeYoZcHY4q2upsH84FDSqSuhxqOjJNCs9r2kaQj9lDu64h ScsfQEdgDmiK1EfgTfYq8gUHFiH4NO0BkS8ucHYRs3Qc4D42Wm/QaLbmmEexHDjBjCJi WfWrK9fkO7GDJDBOpV/cSqr8u1TOl8KaX+M9R1KAJ07CS7X50MXsLqYoyX4Pq7vQFW4W +KwA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:references:in-reply-to:message-id :date:subject:cc:to:from:dkim-signature; bh=m3LBEoP+OVX8UUvtwqHYPUzM09NfmAQKAOTayWOj3vA=; fh=H1Gp/GKpGIF/8fuE4QjDiK+MWi2DM3wcEtZ5ICkIQVo=; b=b3tjHlxnv5/k6ineVS6e0shfQju/glmJesfEoxpwft8m+Y/0PsRIMI/3MISyMulYX+ /yYHOIhkEq+3KLjGm0DxM/Be8bCYse7mSbCGBYVHMLeK56JdokM7DDKBO793TM/eZXrk 1V8f9BeuajoUKXaHqgguqHK1AOuvqN/FUepmH9Z0N75Urtdwf8/LXgRIo8sGE1usUcRR O00Og/+hytESWJe29v0qRdN5wILVHnxasECpmETyPP5Nb78QEXsC970v5xNDM000BSXd KINkOjXDvt1s8QPXOY9uSBM4rmzVmgeKURcE7tHiQ3J1VxvhduoR9JIqGXG5KOShg6s7 K8Zw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=aVyzr681; spf=pass (google.com: domain of linux-kernel+bounces-21777-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-21777-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249]) by mx.google.com with ESMTPS id lg18-20020a170906f89200b00a27acfd50d1si1489592ejb.951.2024.01.09.23.16.31 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 09 Jan 2024 23:16:31 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel+bounces-21777-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249; Authentication-Results: mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=aVyzr681; spf=pass (google.com: domain of linux-kernel+bounces-21777-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-21777-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 3ECF61F2709F for ; Wed, 10 Jan 2024 07:16:31 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 6344A3EA77; Wed, 10 Jan 2024 07:15:48 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b="aVyzr681" Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id D63433D98C for ; Wed, 10 Jan 2024 07:15:45 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=redhat.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=redhat.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1704870944; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=m3LBEoP+OVX8UUvtwqHYPUzM09NfmAQKAOTayWOj3vA=; b=aVyzr681vZ4l0CeFmJsBPca0h3QuqqpnUnIBR1xgCtA6B7OfVgbpS549INK2nyjoHhTZHQ ubrfMvjZBTVwnny1MeCiZhM2lB3YmkeSnH2+wt2E0TOjE2eJrOp4VBKYfZNyPd6PqNpVFL 3vChWzpTq3xcdyf4S3vW2nDihBAqxuA= Received: from mail-pg1-f199.google.com (mail-pg1-f199.google.com [209.85.215.199]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id us-mta-350-X2FAWZGzN1azlHHFzhdO9Q-1; Wed, 10 Jan 2024 02:15:38 -0500 X-MC-Unique: X2FAWZGzN1azlHHFzhdO9Q-1 Received: by mail-pg1-f199.google.com with SMTP id 41be03b00d2f7-5ce105ddef5so1654940a12.2 for ; Tue, 09 Jan 2024 23:15:38 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1704870937; x=1705475737; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=m3LBEoP+OVX8UUvtwqHYPUzM09NfmAQKAOTayWOj3vA=; b=WoeMVpLDeni1ImA/vaTuJSrrmmdkAFTHYDY0SrwVk0jPdAnA8cgRsFsa0wLcZB63d2 GvH8xtyk2H7oSPg4tdXQJ57tO9KQ/pVNX9zOHEbv3kFsHW8MIt7xJsTBVe2aPcktaF7G td86ChP6zwaApztzJ1l34toqnnA8lblvmRZWBIv6M4HIwtsG1Zf8IeFZ11ve14mMYJL3 N7nLcW+tts7QyLQX3GcCeFdEL2uG5pkC//UFvCVxqMKDmqrqzu2PpPyNnKZnjdOhnI2g 6SYZSQqXULYxn3Q0+oDBMUWwf6BeA/6xLRCEAOXGTemHrxv77MfD07CxAFRK9eaok5uZ Nf2g== X-Gm-Message-State: AOJu0YydB3KTaSdmY/rcuAvx9KZAOiVwHzL+I9zfrzLU4UFfcYqQWNPv +iStjlwPVZm5xzsd25rvCiuNDq5ZKkQHuzrmxw5jKYSheoMRl9w1T7eojVVf7JS5gHy2It6qqle k+uySK1UGON0zUZr0D/OzKtfHJ8XKVQ5H X-Received: by 2002:a05:6a20:549e:b0:199:c19b:a256 with SMTP id i30-20020a056a20549e00b00199c19ba256mr404149pzk.48.1704870937095; Tue, 09 Jan 2024 23:15:37 -0800 (PST) X-Received: by 2002:a05:6a20:549e:b0:199:c19b:a256 with SMTP id i30-20020a056a20549e00b00199c19ba256mr404133pzk.48.1704870936721; Tue, 09 Jan 2024 23:15:36 -0800 (PST) Received: from localhost ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id r2-20020a170902be0200b001d46a313b42sm2888381pls.268.2024.01.09.23.15.35 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 09 Jan 2024 23:15:36 -0800 (PST) From: Coiby Xu To: kexec@lists.infradead.org Cc: Ondrej Kozina , Milan Broz , Thomas Staudt , =?UTF-8?q?Daniel=20P=20=2E=20Berrang=C3=A9?= , Kairui Song , dm-devel@redhat.com, Jan Pazdziora , Pingfan Liu , Baoquan He , Dave Young , linux-kernel@vger.kernel.org, x86@kernel.org, Dave Hansen , Vitaly Kuznetsov , Vivek Goyal Subject: [PATCH v2 3/5] crash_dump: retrieve dm crypt key in kdump kernel Date: Wed, 10 Jan 2024 15:15:18 +0800 Message-ID: <20240110071522.1308935-4-coxu@redhat.com> X-Mailer: git-send-email 2.43.0 In-Reply-To: <20240110071522.1308935-1-coxu@redhat.com> References: <20240110071522.1308935-1-coxu@redhat.com> Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Crash kernel will retrieve the dm crypt volume key based on the dmcryptkey command line parameter. When user space writes the key description to /sys/kernel/crash_dm_crypt_key, the crash kernel will save the encryption key to the user keyring. Then user space e.g. cryptsetup's --volume-key-keyring API can use it to unlock the encrypted device. Signed-off-by: Coiby Xu --- include/linux/crash_dump.h | 2 + kernel/crash_dump_dm_crypt.c | 115 ++++++++++++++++++++++++++++++++++- 2 files changed, 116 insertions(+), 1 deletion(-) diff --git a/include/linux/crash_dump.h b/include/linux/crash_dump.h index acc55626afdc..b44adc3962da 100644 --- a/include/linux/crash_dump.h +++ b/include/linux/crash_dump.h @@ -15,6 +15,8 @@ extern unsigned long long elfcorehdr_addr; extern unsigned long long elfcorehdr_size; +extern unsigned long long luks_volume_key_addr; + #ifdef CONFIG_CRASH_DUMP extern int elfcorehdr_alloc(unsigned long long *addr, unsigned long long *size); extern void elfcorehdr_free(unsigned long long addr); diff --git a/kernel/crash_dump_dm_crypt.c b/kernel/crash_dump_dm_crypt.c index 3a0b0b773598..755017fa5c1b 100644 --- a/kernel/crash_dump_dm_crypt.c +++ b/kernel/crash_dump_dm_crypt.c @@ -1,7 +1,82 @@ // SPDX-License-Identifier: GPL-2.0-only +#include +#include #include #include +unsigned long long dm_crypt_key_addr; +EXPORT_SYMBOL_GPL(dm_crypt_key_addr); + +static int __init setup_dmcryptkey(char *arg) +{ + char *end; + + if (!arg) + return -EINVAL; + dm_crypt_key_addr = memparse(arg, &end); + if (end > arg) + return 0; + + dm_crypt_key_addr = 0; + return -EINVAL; +} + +early_param("dmcryptkey", setup_dmcryptkey); + +/* + * Architectures may override this function to read dm crypt key + */ +ssize_t __weak dm_crypt_key_read(char *buf, size_t count, u64 *ppos) +{ + struct kvec kvec = { .iov_base = buf, .iov_len = count }; + struct iov_iter iter; + + iov_iter_kvec(&iter, READ, &kvec, 1, count); + return read_from_oldmem(&iter, count, ppos, false); +} + +static int retrive_kdump_dm_crypt_key(u8 *buffer, unsigned int *sz) +{ + unsigned int key_size; + size_t dm_crypt_keybuf_sz; + unsigned int *size_ptr; + char *dm_crypt_keybuf; + u64 addr; + int r; + + if (dm_crypt_key_addr == 0) { + pr_debug("dm crypt key memory address inaccessible"); + return -EINVAL; + } + + addr = dm_crypt_key_addr; + + /* Read dm crypt key size */ + r = dm_crypt_key_read((char *)&key_size, sizeof(unsigned int), &addr); + + if (r < 0) + return r; + + pr_debug("Retrieve dm crypt key: size=%u\n", key_size); + /* Read in dm cryptrkey */ + dm_crypt_keybuf_sz = sizeof(unsigned int) + key_size * sizeof(u8); + dm_crypt_keybuf = (void *)__get_free_pages(GFP_KERNEL | __GFP_ZERO, + get_order(dm_crypt_keybuf_sz)); + if (!dm_crypt_keybuf) + return -ENOMEM; + + addr = dm_crypt_key_addr; + r = dm_crypt_key_read((char *)dm_crypt_keybuf, dm_crypt_keybuf_sz, &addr); + + if (r < 0) + return r; + size_ptr = (unsigned int *)dm_crypt_keybuf; + memcpy(buffer, size_ptr + 1, key_size * sizeof(u8)); + pr_debug("Retrieve dm crypt key (size=%u): %48ph...\n", key_size, buffer); + *sz = key_size; + return 0; +} + static u8 *dm_crypt_key; static unsigned int dm_crypt_key_size; @@ -23,6 +98,43 @@ static DECLARE_DELAYED_WORK(wipe_dm_crypt_key_work, _wipe_dm_crypt_key); static unsigned __read_mostly wipe_key_delay = 120; /* 2 mins */ +static int retore_dm_crypt_key_to_thread_keyring(const char *key_desc) +{ + key_ref_t keyring_ref, key_ref; + int ret; + + /* find the target keyring (which must be writable) */ + keyring_ref = lookup_user_key(KEY_SPEC_USER_KEYRING, 0x01, KEY_NEED_WRITE); + if (IS_ERR(keyring_ref)) { + pr_alert("Failed to get keyring"); + return PTR_ERR(keyring_ref); + } + + dm_crypt_key = kmalloc(128, GFP_KERNEL); + ret = retrive_kdump_dm_crypt_key(dm_crypt_key, &dm_crypt_key_size); + if (ret) { + kfree(dm_crypt_key); + return ret; + } + + /* create or update the requested key and add it to the target keyring */ + key_ref = key_create_or_update(keyring_ref, "user", key_desc, + dm_crypt_key, dm_crypt_key_size, + KEY_USR_ALL, KEY_ALLOC_IN_QUOTA); + + if (!IS_ERR(key_ref)) { + ret = key_ref_to_ptr(key_ref)->serial; + key_ref_put(key_ref); + pr_alert("Success adding key %s", key_desc); + } else { + ret = PTR_ERR(key_ref); + pr_alert("Error when adding key"); + } + + key_ref_put(keyring_ref); + return ret; +} + static int crash_save_temp_dm_crypt_key(const char *key_desc, size_t count) { const struct user_key_payload *ukp; @@ -60,7 +172,8 @@ int crash_sysfs_dm_crypt_key_write(const char *key_desc, size_t count) { if (!is_kdump_kernel()) return crash_save_temp_dm_crypt_key(key_desc, count); - return -EINVAL; + else + return retore_dm_crypt_key_to_thread_keyring(key_desc); } EXPORT_SYMBOL(crash_sysfs_dm_crypt_key_write); -- 2.43.0