bcachefs-tools/c_src/crypto.c

#include <errno.h>
#include <stdbool.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <termios.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <fcntl.h>
#include <time.h>
#include <unistd.h>

#include <keyutils.h>
#include <linux/random.h>
#include <sodium/crypto_pwhash_scryptsalsa208sha256.h>
#include <uuid/uuid.h>

#include "libbcachefs/checksum.h"
#include "crypto.h"

char *read_passphrase(const char *prompt)
{
	char *buf = NULL;
	size_t buflen = 0;
	ssize_t len;

	if (isatty(STDIN_FILENO)) {
		struct termios old, new;

		fprintf(stderr, "%s", prompt);
		fflush(stderr);

		if (tcgetattr(STDIN_FILENO, &old))
			die("error getting terminal attrs");

		new = old;
		new.c_lflag &= ~ECHO;
		if (tcsetattr(STDIN_FILENO, TCSAFLUSH, &new))
			die("error setting terminal attrs");

		len = getline(&buf, &buflen, stdin);

		tcsetattr(STDIN_FILENO, TCSAFLUSH, &old);
		fprintf(stderr, "\n");
	} else {
		len = getline(&buf, &buflen, stdin);
	}

	if (len < 0)
		die("error reading passphrase");
	if (len && buf[len - 1] == '\n')
		buf[len - 1] = '\0';

	return buf;
}

char *read_passphrase_twice(const char *prompt)
{
	char *pass = read_passphrase(prompt);

	if (!isatty(STDIN_FILENO))
		return pass;

	char *pass2 = read_passphrase("Enter same passphrase again: ");

	if (strcmp(pass, pass2)) {
		memzero_explicit(pass, strlen(pass));
		memzero_explicit(pass2, strlen(pass2));
		die("Passphrases do not match");
	}

	memzero_explicit(pass2, strlen(pass2));
	free(pass2);

	return pass;
}

struct bch_key derive_passphrase(struct bch_sb_field_crypt *crypt,
				 const char *passphrase)
{
	const unsigned char salt[] = "bcache";
	struct bch_key key;
	int ret;

	switch (BCH_CRYPT_KDF_TYPE(crypt)) {
	case BCH_KDF_SCRYPT:
		ret = crypto_pwhash_scryptsalsa208sha256_ll(
			(void *) passphrase, strlen(passphrase),
			salt, sizeof(salt),
			1ULL << BCH_KDF_SCRYPT_N(crypt),
			1ULL << BCH_KDF_SCRYPT_R(crypt),
			1ULL << BCH_KDF_SCRYPT_P(crypt),
			(void *) &key, sizeof(key));
		if (ret)
			die("scrypt error: %i", ret);
		break;
	default:
		die("unknown kdf type %llu", BCH_CRYPT_KDF_TYPE(crypt));
	}

	return key;
}

bool bch2_sb_is_encrypted(struct bch_sb *sb)
{
	struct bch_sb_field_crypt *crypt;

	return (crypt = bch2_sb_field_get(sb, crypt)) &&
		bch2_key_is_encrypted(&crypt->key);
}

void bch2_passphrase_check(struct bch_sb *sb, const char *passphrase,
			   struct bch_key *passphrase_key,
			   struct bch_encrypted_key *sb_key)
{
	struct bch_sb_field_crypt *crypt = bch2_sb_field_get(sb, crypt);
	if (!crypt)
		die("filesystem is not encrypted");

	*sb_key = crypt->key;

	if (!bch2_key_is_encrypted(sb_key))
		die("filesystem does not have encryption key");

	*passphrase_key = derive_passphrase(crypt, passphrase);

	/* Check if the user supplied the correct passphrase: */
	if (bch2_chacha_encrypt_key(passphrase_key, __bch2_sb_key_nonce(sb),
				    sb_key, sizeof(*sb_key)))
		die("error encrypting key");

	if (bch2_key_is_encrypted(sb_key))
		die("incorrect passphrase");
}

void bch2_add_key(struct bch_sb *sb,
		  const char *type,
		  const char *keyring_str,
		  const char *passphrase)
{
	struct bch_key passphrase_key;
	struct bch_encrypted_key sb_key;
	int keyring;

	if (!strcmp(keyring_str, "session"))
		keyring = KEY_SPEC_SESSION_KEYRING;
	else if (!strcmp(keyring_str, "user"))
		keyring = KEY_SPEC_USER_KEYRING;
	else if (!strcmp(keyring_str, "user_session"))
		keyring = KEY_SPEC_USER_SESSION_KEYRING;
	else
		die("unknown keyring %s", keyring_str);

	bch2_passphrase_check(sb, passphrase,
			      &passphrase_key,
			      &sb_key);

	char uuid[40];
	uuid_unparse_lower(sb->user_uuid.b, uuid);

	char *description = mprintf("bcachefs:%s", uuid);

	if (add_key(type,
		    description,
		    &passphrase_key, sizeof(passphrase_key),
		    keyring) < 0)
		die("add_key error: %m");

	memzero_explicit(description, strlen(description));
	free(description);
	memzero_explicit(&passphrase_key, sizeof(passphrase_key));
	memzero_explicit(&sb_key, sizeof(sb_key));
}

void bch_sb_crypt_init(struct bch_sb *sb,
		       struct bch_sb_field_crypt *crypt,
		       const char *passphrase)
{
	struct bch_key key;
	get_random_bytes(&key, sizeof(key));

	crypt->key.magic = BCH_KEY_MAGIC;
	crypt->key.key = key;

	bch_crypt_update_passphrase(sb, crypt, &key, passphrase);
}

void bch_crypt_update_passphrase(
			struct bch_sb *sb,
			struct bch_sb_field_crypt *crypt,
			struct bch_key *key,
			const char *new_passphrase)
{

	struct bch_encrypted_key new_key;
	new_key.magic = BCH_KEY_MAGIC;
	new_key.key = *key;

	if(!new_passphrase) {
		crypt->key = new_key;
		return;
	}

	// If crypt already has an encrypted key reuse it's encryption params
	if (!bch2_key_is_encrypted(&crypt->key)) {
		SET_BCH_CRYPT_KDF_TYPE(crypt, BCH_KDF_SCRYPT);
		SET_BCH_KDF_SCRYPT_N(crypt, ilog2(16384));
		SET_BCH_KDF_SCRYPT_R(crypt, ilog2(8));
		SET_BCH_KDF_SCRYPT_P(crypt, ilog2(16));
	}

	struct bch_key passphrase_key = derive_passphrase(crypt, new_passphrase);

	if (bch2_chacha_encrypt_key(&passphrase_key, __bch2_sb_key_nonce(sb),
				    &new_key, sizeof(new_key)))
		die("error encrypting key");

	memzero_explicit(&passphrase_key, sizeof(passphrase_key));

	crypt->key = new_key;
	assert(bch2_key_is_encrypted(&crypt->key));
}
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`#include <errno.h>`
			`#include <stdbool.h>`
			`#include <stdio.h>`
			`#include <stdlib.h>`
			`#include <string.h>`
			`#include <termios.h>`
			`#include <sys/types.h>`
			`#include <sys/stat.h>`
			`#include <fcntl.h>`
			`#include <time.h>`
			`#include <unistd.h>`

cmd_migrate 2017-03-01 13:45:15 +03:00			`#include <keyutils.h>`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`#include <linux/random.h>`
Use scrypt from libsodium bcachefs-tools has both libscrypt and libsodium as build dependencies, but libsodium already includes the same scrypt implementation as libscrypt, originally written by Colin Percival. Use the libsodium copy, dropping the extra libscrypt dependency. Explicitly adopt the default scrypt N, r and p values from libscrypt to avoid unintended changes in the default work parameters for bcachefs. Signed-off-by: Chris Webb <chris@arachsys.com> 2021-10-23 18:49:25 +03:00			`#include <sodium/crypto_pwhash_scryptsalsa208sha256.h>`
cmd_migrate 2017-03-01 13:45:15 +03:00			`#include <uuid/uuid.h>`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
build: require explicit include paths for libbcachefs/ This removes the implicit `-I libbcachefs` argument to $(CC), which in turn requires a set of minor changes throughout the tools. There are two advantages to this setup: 1) It is (arguably) easier to read, since the location of bcachefs includes are easier to understand at a glance ("where does util.h live?") 2) It removes the need for a hack to include glibc's copy of dirent.h explicitly via '/usr/include/dirent.h', because libbcachefs/ also has a dirent.h file and the compiler cannot disambiguate them. This has some ramifications on systems where /usr/include may not exist, such as NixOS. Signed-off-by: Austin Seipp <aseipp@pobox.com> 2017-11-27 04:29:00 +03:00			`#include "libbcachefs/checksum.h"`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`#include "crypto.h"`

			`char read_passphrase(const char prompt)`
			`{`
			`char *buf = NULL;`
			`size_t buflen = 0;`
			`ssize_t len;`

			`if (isatty(STDIN_FILENO)) {`
			`struct termios old, new;`

			`fprintf(stderr, "%s", prompt);`
			`fflush(stderr);`

			`if (tcgetattr(STDIN_FILENO, &old))`
			`die("error getting terminal attrs");`

			`new = old;`
			`new.c_lflag &= ~ECHO;`
			`if (tcsetattr(STDIN_FILENO, TCSAFLUSH, &new))`
			`die("error setting terminal attrs");`

			`len = getline(&buf, &buflen, stdin);`

			`tcsetattr(STDIN_FILENO, TCSAFLUSH, &old);`
			`fprintf(stderr, "\n");`
			`} else {`
			`len = getline(&buf, &buflen, stdin);`
			`}`

			`if (len < 0)`
			`die("error reading passphrase");`
			`if (len && buf[len - 1] == '\n')`
			`buf[len - 1] = '\0';`

			`return buf;`
			`}`

Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`char read_passphrase_twice(const char prompt)`
			`{`
			`char *pass = read_passphrase(prompt);`

			`if (!isatty(STDIN_FILENO))`
			`return pass;`

			`char *pass2 = read_passphrase("Enter same passphrase again: ");`

			`if (strcmp(pass, pass2)) {`
			`memzero_explicit(pass, strlen(pass));`
			`memzero_explicit(pass2, strlen(pass2));`
			`die("Passphrases do not match");`
			`}`

			`memzero_explicit(pass2, strlen(pass2));`
			`free(pass2);`

			`return pass;`
			`}`

			`struct bch_key derive_passphrase(struct bch_sb_field_crypt *crypt,`
			`const char *passphrase)`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`{`
			`const unsigned char salt[] = "bcache";`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`struct bch_key key;`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`int ret;`

			`switch (BCH_CRYPT_KDF_TYPE(crypt)) {`
			`case BCH_KDF_SCRYPT:`
Use scrypt from libsodium bcachefs-tools has both libscrypt and libsodium as build dependencies, but libsodium already includes the same scrypt implementation as libscrypt, originally written by Colin Percival. Use the libsodium copy, dropping the extra libscrypt dependency. Explicitly adopt the default scrypt N, r and p values from libscrypt to avoid unintended changes in the default work parameters for bcachefs. Signed-off-by: Chris Webb <chris@arachsys.com> 2021-10-23 18:49:25 +03:00			`ret = crypto_pwhash_scryptsalsa208sha256_ll(`
			`(void *) passphrase, strlen(passphrase),`
			`salt, sizeof(salt),`
			`1ULL << BCH_KDF_SCRYPT_N(crypt),`
			`1ULL << BCH_KDF_SCRYPT_R(crypt),`
			`1ULL << BCH_KDF_SCRYPT_P(crypt),`
			`(void *) &key, sizeof(key));`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`if (ret)`
			`die("scrypt error: %i", ret);`
			`break;`
			`default:`
			`die("unknown kdf type %llu", BCH_CRYPT_KDF_TYPE(crypt));`
			`}`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00
			`return key;`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`}`

refactor: rename function again `bch2_sb_is_encrypted_and_locked()` simply does not check if the fs is locked. The name is misleading. Signed-off-by: Thomas Mühlbacher <tmuehlbacher@posteo.net> 2024-05-30 21:50:00 +03:00			`bool bch2_sb_is_encrypted(struct bch_sb *sb)`
add -c to cmd_unlock, to check if a device needs to be unlocked 2018-02-11 20:35:15 +03:00			`{`
			`struct bch_sb_field_crypt *crypt;`

Update bcachefs sources to a180af9dd349 bcachefs: Refactor memcpy into direct assignment Signed-off-by: Kent Overstreet <kent.overstreet@linux.dev> 2023-10-19 04:57:11 +03:00			`return (crypt = bch2_sb_field_get(sb, crypt)) &&`
add -c to cmd_unlock, to check if a device needs to be unlocked 2018-02-11 20:35:15 +03:00			`bch2_key_is_encrypted(&crypt->key);`
			`}`

Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`void bch2_passphrase_check(struct bch_sb sb, const char passphrase,`
			`struct bch_key *passphrase_key,`
			`struct bch_encrypted_key *sb_key)`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`{`
Update bcachefs sources to a180af9dd349 bcachefs: Refactor memcpy into direct assignment Signed-off-by: Kent Overstreet <kent.overstreet@linux.dev> 2023-10-19 04:57:11 +03:00			`struct bch_sb_field_crypt *crypt = bch2_sb_field_get(sb, crypt);`
cmd_migrate 2017-03-01 13:45:15 +03:00			`if (!crypt)`
			`die("filesystem is not encrypted");`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`*sb_key = crypt->key;`

			`if (!bch2_key_is_encrypted(sb_key))`
cmd_migrate 2017-03-01 13:45:15 +03:00			`die("filesystem does not have encryption key");`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`*passphrase_key = derive_passphrase(crypt, passphrase);`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
cmd_migrate 2017-03-01 13:45:15 +03:00			`/* Check if the user supplied the correct passphrase: */`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`if (bch2_chacha_encrypt_key(passphrase_key, __bch2_sb_key_nonce(sb),`
			`sb_key, sizeof(*sb_key)))`
cmd_migrate 2017-03-01 13:45:15 +03:00			`die("error encrypting key");`

Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`if (bch2_key_is_encrypted(sb_key))`
cmd_migrate 2017-03-01 13:45:15 +03:00			`die("incorrect passphrase");`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`}`

cmd_unlock: Add -k argument to specify keyring This adds a new argument (-k) to cmd_unlock for specifying the keyring to add to. The default is user, but user_session and session can also be specified. Signed-off-by: Kent Overstreet <kent.overstreet@gmail.com> 2022-05-19 22:59:37 +03:00			`void bch2_add_key(struct bch_sb *sb,`
			`const char *type,`
			`const char *keyring_str,`
			`const char *passphrase)`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00			`{`
			`struct bch_key passphrase_key;`
			`struct bch_encrypted_key sb_key;`
cmd_unlock: Add -k argument to specify keyring This adds a new argument (-k) to cmd_unlock for specifying the keyring to add to. The default is user, but user_session and session can also be specified. Signed-off-by: Kent Overstreet <kent.overstreet@gmail.com> 2022-05-19 22:59:37 +03:00			`int keyring;`

			`if (!strcmp(keyring_str, "session"))`
			`keyring = KEY_SPEC_SESSION_KEYRING;`
			`else if (!strcmp(keyring_str, "user"))`
			`keyring = KEY_SPEC_USER_KEYRING;`
			`else if (!strcmp(keyring_str, "user_session"))`
			`keyring = KEY_SPEC_USER_SESSION_KEYRING;`
			`else`
			`die("unknown keyring %s", keyring_str);`
Add commands for changing and removing passphrase 2017-11-09 04:03:59 +03:00
			`bch2_passphrase_check(sb, passphrase,`
			`&passphrase_key,`
			`&sb_key);`
cmd_migrate 2017-03-01 13:45:15 +03:00
			`char uuid[40];`
			`uuid_unparse_lower(sb->user_uuid.b, uuid);`

Rename from bcache-tools to bcachefs-tools 2017-03-20 02:56:34 +03:00			`char *description = mprintf("bcachefs:%s", uuid);`
cmd_migrate 2017-03-01 13:45:15 +03:00
cmd_unlock: Add -k argument to specify keyring This adds a new argument (-k) to cmd_unlock for specifying the keyring to add to. The default is user, but user_session and session can also be specified. Signed-off-by: Kent Overstreet <kent.overstreet@gmail.com> 2022-05-19 22:59:37 +03:00			`if (add_key(type,`
			`description,`
cmd_migrate 2017-03-01 13:45:15 +03:00			`&passphrase_key, sizeof(passphrase_key),`
cmd_unlock: Add -k argument to specify keyring This adds a new argument (-k) to cmd_unlock for specifying the keyring to add to. The default is user, but user_session and session can also be specified. Signed-off-by: Kent Overstreet <kent.overstreet@gmail.com> 2022-05-19 22:59:37 +03:00			`keyring) < 0)`
cmd_list improvements; use %m 2017-04-15 07:40:50 +03:00			`die("add_key error: %m");`
cmd_migrate 2017-03-01 13:45:15 +03:00
			`memzero_explicit(description, strlen(description));`
			`free(description);`
			`memzero_explicit(&passphrase_key, sizeof(passphrase_key));`
			`memzero_explicit(&sb_key, sizeof(sb_key));`
			`}`

			`void bch_sb_crypt_init(struct bch_sb *sb,`
			`struct bch_sb_field_crypt *crypt,`
			`const char *passphrase)`
			`{`
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`struct bch_key key;`
			`get_random_bytes(&key, sizeof(key));`

New on disk format - encryption 2016-10-04 06:22:17 +03:00			`crypt->key.magic = BCH_KEY_MAGIC;`
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`crypt->key.key = key;`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`bch_crypt_update_passphrase(sb, crypt, &key, passphrase);`
			`}`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`void bch_crypt_update_passphrase(`
			`struct bch_sb *sb,`
			`struct bch_sb_field_crypt *crypt,`
			`struct bch_key *key,`
			`const char *new_passphrase)`
			`{`

			`struct bch_encrypted_key new_key;`
			`new_key.magic = BCH_KEY_MAGIC;`
			`new_key.key = *key;`

			`if(!new_passphrase) {`
			`crypt->key = new_key;`
			`return;`
			`}`

			`// If crypt already has an encrypted key reuse it's encryption params`
			`if (!bch2_key_is_encrypted(&crypt->key)) {`
cmd_migrate 2017-03-01 13:45:15 +03:00			`SET_BCH_CRYPT_KDF_TYPE(crypt, BCH_KDF_SCRYPT);`
Use scrypt from libsodium bcachefs-tools has both libscrypt and libsodium as build dependencies, but libsodium already includes the same scrypt implementation as libscrypt, originally written by Colin Percival. Use the libsodium copy, dropping the extra libscrypt dependency. Explicitly adopt the default scrypt N, r and p values from libscrypt to avoid unintended changes in the default work parameters for bcachefs. Signed-off-by: Chris Webb <chris@arachsys.com> 2021-10-23 18:49:25 +03:00			`SET_BCH_KDF_SCRYPT_N(crypt, ilog2(16384));`
			`SET_BCH_KDF_SCRYPT_R(crypt, ilog2(8));`
			`SET_BCH_KDF_SCRYPT_P(crypt, ilog2(16));`
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`}`
New on disk format - encryption 2016-10-04 06:22:17 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`struct bch_key passphrase_key = derive_passphrase(crypt, new_passphrase);`
cmd_migrate 2017-03-01 13:45:15 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`if (bch2_chacha_encrypt_key(&passphrase_key, __bch2_sb_key_nonce(sb),`
			`&new_key, sizeof(new_key)))`
			`die("error encrypting key");`
cmd_migrate 2017-03-01 13:45:15 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`memzero_explicit(&passphrase_key, sizeof(passphrase_key));`
cmd_migrate 2017-03-01 13:45:15 +03:00
Fix set-passphrase on --no_passphrase FS This also fixes a bug where the set-passphrase command failed to derive the key for disks initially formatted with --encrypted and --no_passphrase, due to bch_sb_crypt_init not configuring the KDF params if the passphrase wasn't specified during formatting. Signed-off-by: Mae Kasza <git@badat.dev> Tested-by: Jérôme Poulin <jeromepoulin@gmail.com> 2024-08-16 05:50:16 +03:00			`crypt->key = new_key;`
			`assert(bch2_key_is_encrypted(&crypt->key));`
New on disk format - encryption 2016-10-04 06:22:17 +03:00			`}`