| // SPDX-License-Identifier: GPL-2.0-or-later |
| /* |
| * eCryptfs: Linux filesystem encryption layer |
| * Functions only useful for debugging. |
| * |
| * Copyright (C) 2006 International Business Machines Corp. |
| * Author(s): Michael A. Halcrow <mahalcro@us.ibm.com> |
| */ |
| |
| #include "ecryptfs_kernel.h" |
| |
| /* |
| * ecryptfs_dump_auth_tok - debug function to print auth toks |
| * |
| * This function will print the contents of an ecryptfs authentication |
| * token. |
| */ |
| void ecryptfs_dump_auth_tok(struct ecryptfs_auth_tok *auth_tok) |
| { |
| char salt[ECRYPTFS_SALT_SIZE * 2 + 1]; |
| char sig[ECRYPTFS_SIG_SIZE_HEX + 1]; |
| |
| ecryptfs_printk(KERN_DEBUG, "Auth tok at mem loc [%p]:\n", |
| auth_tok); |
| if (auth_tok->flags & ECRYPTFS_PRIVATE_KEY) { |
| ecryptfs_printk(KERN_DEBUG, " * private key type\n"); |
| } else { |
| ecryptfs_printk(KERN_DEBUG, " * passphrase type\n"); |
| ecryptfs_to_hex(salt, auth_tok->token.password.salt, |
| ECRYPTFS_SALT_SIZE); |
| salt[ECRYPTFS_SALT_SIZE * 2] = '\0'; |
| ecryptfs_printk(KERN_DEBUG, " * salt = [%s]\n", salt); |
| if (auth_tok->token.password.flags & |
| ECRYPTFS_PERSISTENT_PASSWORD) { |
| ecryptfs_printk(KERN_DEBUG, " * persistent\n"); |
| } |
| memcpy(sig, auth_tok->token.password.signature, |
| ECRYPTFS_SIG_SIZE_HEX); |
| sig[ECRYPTFS_SIG_SIZE_HEX] = '\0'; |
| ecryptfs_printk(KERN_DEBUG, " * signature = [%s]\n", sig); |
| } |
| ecryptfs_printk(KERN_DEBUG, " * session_key.flags = [0x%x]\n", |
| auth_tok->session_key.flags); |
| if (auth_tok->session_key.flags |
| & ECRYPTFS_USERSPACE_SHOULD_TRY_TO_DECRYPT) |
| ecryptfs_printk(KERN_DEBUG, |
| " * Userspace decrypt request set\n"); |
| if (auth_tok->session_key.flags |
| & ECRYPTFS_USERSPACE_SHOULD_TRY_TO_ENCRYPT) |
| ecryptfs_printk(KERN_DEBUG, |
| " * Userspace encrypt request set\n"); |
| if (auth_tok->session_key.flags & ECRYPTFS_CONTAINS_DECRYPTED_KEY) { |
| ecryptfs_printk(KERN_DEBUG, " * Contains decrypted key\n"); |
| ecryptfs_printk(KERN_DEBUG, |
| " * session_key.decrypted_key_size = [0x%x]\n", |
| auth_tok->session_key.decrypted_key_size); |
| ecryptfs_printk(KERN_DEBUG, " * Decrypted session key " |
| "dump:\n"); |
| if (ecryptfs_verbosity > 0) |
| ecryptfs_dump_hex(auth_tok->session_key.decrypted_key, |
| ECRYPTFS_DEFAULT_KEY_BYTES); |
| } |
| if (auth_tok->session_key.flags & ECRYPTFS_CONTAINS_ENCRYPTED_KEY) { |
| ecryptfs_printk(KERN_DEBUG, " * Contains encrypted key\n"); |
| ecryptfs_printk(KERN_DEBUG, |
| " * session_key.encrypted_key_size = [0x%x]\n", |
| auth_tok->session_key.encrypted_key_size); |
| ecryptfs_printk(KERN_DEBUG, " * Encrypted session key " |
| "dump:\n"); |
| if (ecryptfs_verbosity > 0) |
| ecryptfs_dump_hex(auth_tok->session_key.encrypted_key, |
| auth_tok->session_key. |
| encrypted_key_size); |
| } |
| } |
| |
| /** |
| * ecryptfs_dump_hex - debug hex printer |
| * @data: string of bytes to be printed |
| * @bytes: number of bytes to print |
| * |
| * Dump hexadecimal representation of char array |
| */ |
| void ecryptfs_dump_hex(char *data, int bytes) |
| { |
| if (ecryptfs_verbosity < 1) |
| return; |
| |
| print_hex_dump(KERN_DEBUG, "ecryptfs: ", DUMP_PREFIX_OFFSET, 16, 1, |
| data, bytes, false); |
| } |
