0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering This file is part of systemd.
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering Copyright 2012 Lennart Poettering
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering systemd is free software; you can redistribute it and/or modify it
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering under the terms of the GNU Lesser General Public License as published by
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering the Free Software Foundation; either version 2.1 of the License, or
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering (at your option) any later version.
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering systemd is distributed in the hope that it will be useful, but
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering WITHOUT ANY WARRANTY; without even the implied warranty of
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering Lesser General Public License for more details.
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering You should have received a copy of the GNU Lesser General Public License
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering along with systemd; If not, see <http://www.gnu.org/licenses/>.
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringstatic uint64_t journal_file_tag_seqnum(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringint journal_file_append_tag(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering r = journal_file_append_object(f, OBJECT_TAG, sizeof(struct TagObject), &o, &p);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering o->tag.seqnum = htole64(journal_file_tag_seqnum(f));
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering o->tag.epoch = htole64(FSPRG_GetEpoch(f->fsprg_state));
9f6445e34a57c270f013c9416c123e56261553ddLennart Poettering log_debug("Writing tag %"PRIu64" for epoch %"PRIu64"",
507f22bd0172bff5e5d98145b1419bd472a2c57fZbigniew Jędrzejewski-Szmek FSPRG_GetEpoch(f->fsprg_state));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* Add the tag object itself, so that we can protect its
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering * header. This will exclude the actual hash value in it */
5996c7c295e073ce21d41305169132c8aa993ad0Lennart Poettering r = journal_file_hmac_put_object(f, OBJECT_TAG, o, p);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* Get the HMAC tag and store it in the object */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering memcpy(o->tag.tag, gcry_md_read(f->hmac, 0), TAG_LENGTH);
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poetteringint journal_file_hmac_start(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering uint8_t key[256 / 8]; /* Let's pass 256 bit from FSPRG to HMAC */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* Prepare HMAC for next cycle */
b7c9ae91d111b3e89d1ffc00e08f9ed97a8ff5dbLennart Poettering FSPRG_GetKey(f->fsprg_state, key, sizeof(key), 0);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_setkey(f->hmac, key, sizeof(key));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringstatic int journal_file_get_epoch(JournalFile *f, uint64_t realtime, uint64_t *epoch) {
baed47c3c20512507e497058d388782400a072f6Lennart Poetteringstatic int journal_file_fsprg_need_evolve(JournalFile *f, uint64_t realtime) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering r = journal_file_get_epoch(f, realtime, &goal);
baed47c3c20512507e497058d388782400a072f6Lennart Poetteringint journal_file_fsprg_evolve(JournalFile *f, uint64_t realtime) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering r = journal_file_get_epoch(f, realtime, &goal);
507f22bd0172bff5e5d98145b1419bd472a2c57fZbigniew Jędrzejewski-Szmek log_debug("Evolving FSPRG key from epoch %"PRIu64" to %"PRIu64".", epoch, goal);
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poetteringint journal_file_fsprg_seek(JournalFile *f, uint64_t goal) {
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering /* Cheaper... */
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering f->fsprg_state_size = FSPRG_stateinbytes(FSPRG_RECOMMENDED_SECPAR);
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering f->fsprg_state = malloc(f->fsprg_state_size);
507f22bd0172bff5e5d98145b1419bd472a2c57fZbigniew Jędrzejewski-Szmek log_debug("Seeking FSPRG key to %"PRIu64".", goal);
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering msk = alloca(FSPRG_mskinbytes(FSPRG_RECOMMENDED_SECPAR));
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering FSPRG_GenMK(msk, NULL, f->fsprg_seed, f->fsprg_seed_size, FSPRG_RECOMMENDED_SECPAR);
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering FSPRG_Seek(f->fsprg_state, goal, msk, f->fsprg_seed, f->fsprg_seed_size);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringint journal_file_maybe_append_tag(JournalFile *f, uint64_t realtime) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering r = journal_file_fsprg_need_evolve(f, realtime);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering r = journal_file_fsprg_evolve(f, realtime);
7851983162ef851d5b9ce12bd88de86fc402f88aMichal Schmidtint journal_file_hmac_put_object(JournalFile *f, ObjectType type, Object *o, uint64_t p) {
5996c7c295e073ce21d41305169132c8aa993ad0Lennart Poettering r = journal_file_move_to_object(f, type, p, &o);
d05089d86ef032b245c7f928e623b88c82998ab0Michal Schmidt if (type > OBJECT_UNUSED && o->object.type != type)
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, o, offsetof(ObjectHeader, payload));
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering /* All but hash and payload are mutable */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &o->data.hash, sizeof(o->data.hash));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, o->data.payload, le64toh(o->object.size) - offsetof(DataObject, payload));
3c1668da6202f1ead3d4d3981b89e9da1a0e98e3Lennart Poettering /* Same here */
3c1668da6202f1ead3d4d3981b89e9da1a0e98e3Lennart Poettering gcry_md_write(f->hmac, &o->field.hash, sizeof(o->field.hash));
3c1668da6202f1ead3d4d3981b89e9da1a0e98e3Lennart Poettering gcry_md_write(f->hmac, o->field.payload, le64toh(o->object.size) - offsetof(FieldObject, payload));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &o->entry.seqnum, le64toh(o->object.size) - offsetof(EntryObject, seqnum));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* Nothing: everything is mutable */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* All but the tag itself */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &o->tag.seqnum, sizeof(o->tag.seqnum));
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering gcry_md_write(f->hmac, &o->tag.epoch, sizeof(o->tag.epoch));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringint journal_file_hmac_put_header(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering /* All but state+reserved, boot_id, arena_size,
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering * tail_object_offset, n_objects, n_entries,
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering * tail_entry_seqnum, head_entry_seqnum, entry_array_offset,
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering * head_entry_realtime, tail_entry_realtime,
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering * tail_entry_monotonic, n_data, n_fields, n_tags,
14d10188de1fd58e663d73683a400d8d7dc67dbaLennart Poettering * n_entry_arrays. */
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, f->header->signature, offsetof(Header, state) - offsetof(Header, signature));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &f->header->file_id, offsetof(Header, boot_id) - offsetof(Header, file_id));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &f->header->seqnum_id, offsetof(Header, arena_size) - offsetof(Header, seqnum_id));
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering gcry_md_write(f->hmac, &f->header->data_hash_table_offset, offsetof(Header, tail_object_offset) - offsetof(Header, data_hash_table_offset));
baed47c3c20512507e497058d388782400a072f6Lennart Poetteringint journal_file_fss_load(JournalFile *f) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering if (asprintf(&p, "/var/log/journal/" SD_ID128_FORMAT_STR "/fss",
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering fd = open(p, O_RDWR|O_CLOEXEC|O_NOCTTY, 0600);
56f64d95763a799ba4475daf44d8e9f72a1bd474Michal Schmidt log_error_errno(errno, "Failed to open %s: %m", p);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering if (st.st_size < (off_t) sizeof(FSSHeader)) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering m = mmap(NULL, PAGE_ALIGN(sizeof(FSSHeader)), PROT_READ, MAP_SHARED, fd, 0);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering if (memcmp(m->signature, FSS_HEADER_SIGNATURE, 8) != 0) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering if (le64toh(m->header_size) < sizeof(FSSHeader)) {
3e4b9b506d676d1cb8692306b38c05f8529e5cdbLennart Poettering if (le64toh(m->fsprg_state_size) != FSPRG_stateinbytes(le16toh(m->fsprg_secpar))) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fss_file_size = le64toh(m->header_size) + le64toh(m->fsprg_state_size);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering if ((uint64_t) st.st_size < f->fss_file_size) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering if (!sd_id128_equal(machine, m->machine_id)) {
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fss_file = mmap(NULL, PAGE_ALIGN(f->fss_file_size), PROT_READ|PROT_WRITE, MAP_SHARED, fd, 0);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fss_start_usec = le64toh(f->fss_file->start_usec);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fss_interval_usec = le64toh(f->fss_file->interval_usec);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fsprg_state = (uint8_t*) f->fss_file + le64toh(f->fss_file->header_size);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering f->fsprg_state_size = le64toh(f->fss_file->fsprg_state_size);
baed47c3c20512507e497058d388782400a072f6Lennart Poettering munmap(m, PAGE_ALIGN(sizeof(FSSHeader)));
72fbdd3349ad30d8a5074ea9a650f0909f96c299Lennart Poettering const char *p;
72fbdd3349ad30d8a5074ea9a650f0909f96c299Lennart Poettering if (gcry_control(GCRYCTL_INITIALIZATION_FINISHED_P))
72fbdd3349ad30d8a5074ea9a650f0909f96c299Lennart Poettering gcry_control(GCRYCTL_INITIALIZATION_FINISHED, 0);
baed47c3c20512507e497058d388782400a072f6Lennart Poetteringint journal_file_hmac_setup(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering e = gcry_md_open(&f->hmac, GCRY_MD_SHA256, GCRY_MD_FLAG_HMAC);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poetteringint journal_file_append_first_tag(JournalFile *f) {
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering p = le64toh(f->header->field_hash_table_offset);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering if (p < offsetof(Object, hash_table.items))
5996c7c295e073ce21d41305169132c8aa993ad0Lennart Poettering r = journal_file_hmac_put_object(f, OBJECT_FIELD_HASH_TABLE, NULL, p);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering p = le64toh(f->header->data_hash_table_offset);
0284adc6a60ce0af1107cb0b50041a65d731f39eLennart Poettering if (p < offsetof(Object, hash_table.items))
5996c7c295e073ce21d41305169132c8aa993ad0Lennart Poettering r = journal_file_hmac_put_object(f, OBJECT_DATA_HASH_TABLE, NULL, p);
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poetteringint journal_file_parse_verification_key(JournalFile *f, const char *key) {
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poettering const char *k;
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poettering for (c = 0; c < seed_size; c++) {
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poettering while (*k == '-')
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poettering if (*k != '/') {
feb12d3ed2c7f9132c64773c7c41b9e3a608a814Lennart Poettering r = sscanf(k, "%llx-%llx", &start, &interval);
89fef99014662a5a63e7deaedd6292b7fb4ab2f8Lennart Poetteringbool journal_file_next_evolve_usec(JournalFile *f, usec_t *u) {
89fef99014662a5a63e7deaedd6292b7fb4ab2f8Lennart Poettering *u = (usec_t) (f->fss_start_usec + f->fss_interval_usec * epoch + f->fss_interval_usec);