From: "Daniel P. Berrange" <berrange@redhat.com>
To: qemu-devel@nongnu.org
Cc: qemu-block@nongnu.org, Eric Blake <eblake@redhat.com>,
Max Reitz <mreitz@redhat.com>, Kevin Wolf <kwolf@redhat.com>,
Alberto Garcia <berto@igalia.com>,
"Daniel P. Berrange" <berrange@redhat.com>
Subject: [Qemu-devel] [PATCH v10 10/20] qcow2: make qcow2_encrypt_sectors encrypt in place
Date: Fri, 23 Jun 2017 17:24:09 +0100 [thread overview]
Message-ID: <20170623162419.26068-11-berrange@redhat.com> (raw)
In-Reply-To: <20170623162419.26068-1-berrange@redhat.com>
Instead of requiring separate input/output buffers for
encrypting data, change qcow2_encrypt_sectors() to assume
use of a single buffer, encrypting in place. The current
callers all used the same buffer for input/output already.
Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
---
block/qcow2-cluster.c | 17 ++++++-----------
block/qcow2.c | 4 ++--
block/qcow2.h | 3 +--
3 files changed, 9 insertions(+), 15 deletions(-)
diff --git a/block/qcow2-cluster.c b/block/qcow2-cluster.c
index 3d341fd..a570929 100644
--- a/block/qcow2-cluster.c
+++ b/block/qcow2-cluster.c
@@ -358,11 +358,9 @@ static int count_contiguous_clusters_unallocated(int nb_clusters,
}
/* The crypt function is compatible with the linux cryptoloop
- algorithm for < 4 GB images. NOTE: out_buf == in_buf is
- supported */
+ algorithm for < 4 GB images. */
int qcow2_encrypt_sectors(BDRVQcow2State *s, int64_t sector_num,
- uint8_t *out_buf, const uint8_t *in_buf,
- int nb_sectors, bool enc,
+ uint8_t *buf, int nb_sectors, bool enc,
Error **errp)
{
union {
@@ -382,14 +380,12 @@ int qcow2_encrypt_sectors(BDRVQcow2State *s, int64_t sector_num,
}
if (enc) {
ret = qcrypto_cipher_encrypt(s->cipher,
- in_buf,
- out_buf,
+ buf, buf,
512,
errp);
} else {
ret = qcrypto_cipher_decrypt(s->cipher,
- in_buf,
- out_buf,
+ buf, buf,
512,
errp);
}
@@ -397,8 +393,7 @@ int qcow2_encrypt_sectors(BDRVQcow2State *s, int64_t sector_num,
return -1;
}
sector_num++;
- in_buf += 512;
- out_buf += 512;
+ buf += 512;
}
return 0;
}
@@ -446,7 +441,7 @@ static bool coroutine_fn do_perform_cow_encrypt(BlockDriverState *bs,
assert(s->cipher);
assert((offset_in_cluster & ~BDRV_SECTOR_MASK) == 0);
assert((bytes & ~BDRV_SECTOR_MASK) == 0);
- if (qcow2_encrypt_sectors(s, sector, buffer, buffer,
+ if (qcow2_encrypt_sectors(s, sector, buffer,
bytes >> BDRV_SECTOR_BITS, true, NULL) < 0) {
return false;
}
diff --git a/block/qcow2.c b/block/qcow2.c
index 67fb50d..f4b5207 100644
--- a/block/qcow2.c
+++ b/block/qcow2.c
@@ -1543,7 +1543,7 @@ static coroutine_fn int qcow2_co_preadv(BlockDriverState *bs, uint64_t offset,
assert((cur_bytes & (BDRV_SECTOR_SIZE - 1)) == 0);
Error *err = NULL;
if (qcow2_encrypt_sectors(s, offset >> BDRV_SECTOR_BITS,
- cluster_data, cluster_data,
+ cluster_data,
cur_bytes >> BDRV_SECTOR_BITS,
false, &err) < 0) {
error_free(err);
@@ -1677,7 +1677,7 @@ static coroutine_fn int qcow2_co_pwritev(BlockDriverState *bs, uint64_t offset,
qemu_iovec_to_buf(&hd_qiov, 0, cluster_data, hd_qiov.size);
if (qcow2_encrypt_sectors(s, offset >> BDRV_SECTOR_BITS,
- cluster_data, cluster_data,
+ cluster_data,
cur_bytes >>BDRV_SECTOR_BITS,
true, &err) < 0) {
error_free(err);
diff --git a/block/qcow2.h b/block/qcow2.h
index 87b15eb..5a3f07e 100644
--- a/block/qcow2.h
+++ b/block/qcow2.h
@@ -545,8 +545,7 @@ int qcow2_grow_l1_table(BlockDriverState *bs, uint64_t min_size,
int qcow2_write_l1_entry(BlockDriverState *bs, int l1_index);
int qcow2_decompress_cluster(BlockDriverState *bs, uint64_t cluster_offset);
int qcow2_encrypt_sectors(BDRVQcow2State *s, int64_t sector_num,
- uint8_t *out_buf, const uint8_t *in_buf,
- int nb_sectors, bool enc, Error **errp);
+ uint8_t *buf, int nb_sectors, bool enc, Error **errp);
int qcow2_get_cluster_offset(BlockDriverState *bs, uint64_t offset,
unsigned int *bytes, uint64_t *cluster_offset);
--
2.9.3
next prev parent reply other threads:[~2017-06-23 16:25 UTC|newest]
Thread overview: 27+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-06-23 16:23 [Qemu-devel] [PATCH v10 00/20] Convert QCow[2] to QCryptoBlock & add LUKS support Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 01/20] block: expose crypto option names / defs to other drivers Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 02/20] block: add ability to set a prefix for opt names Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 03/20] qcow: document another weakness of qcow AES encryption Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 04/20] qcow: require image size to be > 1 for new images Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 05/20] iotests: skip 042 with qcow which dosn't support zero sized images Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 06/20] iotests: skip 048 with qcow which doesn't support resize Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 07/20] block: deprecate "encryption=on" in favor of "encrypt.format=aes" Daniel P. Berrange
2017-06-26 13:18 ` Alberto Garcia
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 08/20] qcow: make encrypt_sectors encrypt in place Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 09/20] qcow: convert QCow to use QCryptoBlock for encryption Daniel P. Berrange
2017-06-26 10:07 ` Alberto Garcia
2017-06-23 16:24 ` Daniel P. Berrange [this message]
2017-06-26 13:24 ` [Qemu-devel] [PATCH v10 10/20] qcow2: make qcow2_encrypt_sectors encrypt in place Alberto Garcia
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 11/20] qcow2: convert QCow2 to use QCryptoBlock for encryption Daniel P. Berrange
2017-06-26 13:26 ` Alberto Garcia
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 12/20] qcow2: extend specification to cover LUKS encryption Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 13/20] qcow2: add support for LUKS encryption format Daniel P. Berrange
2017-06-26 13:28 ` Alberto Garcia
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 14/20] qcow2: add iotests to cover LUKS encryption support Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 15/20] iotests: enable tests 134 and 158 to work with qcow (v1) Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 16/20] block: rip out all traces of password prompting Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 17/20] block: remove all encryption handling APIs Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 18/20] block: pass option prefix down to crypto layer Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 19/20] qcow2: report encryption specific image information Daniel P. Berrange
2017-06-23 16:24 ` [Qemu-devel] [PATCH v10 20/20] docs: document encryption options for qcow, qcow2 and luks Daniel P. Berrange
2017-06-26 19:20 ` [Qemu-devel] [PATCH v10 00/20] Convert QCow[2] to QCryptoBlock & add LUKS support Max Reitz
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170623162419.26068-11-berrange@redhat.com \
--to=berrange@redhat.com \
--cc=berto@igalia.com \
--cc=eblake@redhat.com \
--cc=kwolf@redhat.com \
--cc=mreitz@redhat.com \
--cc=qemu-block@nongnu.org \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).