<?xml version="1.0"?>
<source-code>
  <file fpath="/out/src/cryptsetup/lib/crypto_backend/crypto_openssl.c">/*
 * OPENSSL crypto backend implementation
 *
 * Copyright (C) 2010-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2010-2024 Milan Broz
 *
 * This file is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2.1 of the License, or (at your option) any later version.
 *
 * This file is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this file; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 *
 * In addition, as a special exception, the copyright holders give
 * permission to link the code of portions of this program with the
 * OpenSSL library under certain conditions as described in each
 * individual source file, and distribute linked combinations
 * including the two.
 *
 * You must obey the GNU Lesser General Public License in all respects
 * for all of the code used other than OpenSSL.
 */

#include &lt;string.h&gt;
#include &lt;errno.h&gt;
#include &lt;limits.h&gt;
#include &lt;openssl/crypto.h&gt;
#include &lt;openssl/evp.h&gt;
#include &lt;openssl/hmac.h&gt;
#include &lt;openssl/rand.h&gt;
#include "crypto_backend_internal.h"
#if OPENSSL_VERSION_MAJOR &gt;= 3
#include &lt;openssl/provider.h&gt;
#include &lt;openssl/kdf.h&gt;
#include &lt;openssl/core_names.h&gt;
static OSSL_PROVIDER *ossl_legacy = NULL;
static OSSL_PROVIDER *ossl_default = NULL;
static OSSL_LIB_CTX  *ossl_ctx = NULL;
static char backend_version[256] = "OpenSSL";

#define MAX_THREADS 8
#if !HAVE_DECL_OSSL_GET_MAX_THREADS
static int OSSL_set_max_threads(OSSL_LIB_CTX *ctx __attribute__((unused)),
				uint64_t max_threads __attribute__((unused))) { return 0; }
static uint64_t OSSL_get_max_threads(OSSL_LIB_CTX *ctx __attribute__((unused))) { return 0; }
#else
#include &lt;openssl/thread.h&gt;
#endif

#endif

#define CONST_CAST(x) (x)(uintptr_t)
#define UNUSED(x) (void)(x)

static int crypto_backend_initialised = 0;

struct crypt_hash {
	EVP_MD_CTX *md;
	const EVP_MD *hash_id;
	int hash_len;
};

struct crypt_hmac {
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_MAC *mac;
	EVP_MAC_CTX *md;
	EVP_MAC_CTX *md_org;
#else
	HMAC_CTX *md;
	const EVP_MD *hash_id;
#endif
	int hash_len;
};

struct crypt_cipher {
	bool use_kernel;
	union {
	struct crypt_cipher_kernel kernel;
	struct {
		EVP_CIPHER_CTX *hd_enc;
		EVP_CIPHER_CTX *hd_dec;
		const EVP_CIPHER *cipher_type;
		size_t iv_length;
	} lib;
	} u;
};

struct hash_alg {
	const char *name;
	const char *openssl_name;
};

/*
 * Compatible wrappers for OpenSSL &lt; 1.1.0 and LibreSSL &lt; 2.7.0
 */
#if OPENSSL_VERSION_NUMBER &lt; 0x10100000L || \
    (defined(LIBRESSL_VERSION_NUMBER) &amp;&amp; LIBRESSL_VERSION_NUMBER &lt; 0x2070000fL)

static int openssl_backend_init(bool fips __attribute__((unused)))
{
	OpenSSL_add_all_algorithms();
	return 0;
}

static void openssl_backend_exit(void)
{
}

static const char *openssl_backend_version(void)
{
	return SSLeay_version(SSLEAY_VERSION);
}

static EVP_MD_CTX *EVP_MD_CTX_new(void)
{
	EVP_MD_CTX *md = malloc(sizeof(*md));

	if (md)
		EVP_MD_CTX_init(md);

	return md;
}

static void EVP_MD_CTX_free(EVP_MD_CTX *md)
{
	EVP_MD_CTX_cleanup(md);
	free(md);
}

static HMAC_CTX *HMAC_CTX_new(void)
{
	HMAC_CTX *md = malloc(sizeof(*md));

	if (md)
		HMAC_CTX_init(md);

	return md;
}

static void HMAC_CTX_free(HMAC_CTX *md)
{
	HMAC_CTX_cleanup(md);
	free(md);
}
#else
static void openssl_backend_exit(void)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	if (ossl_legacy)
		OSSL_PROVIDER_unload(ossl_legacy);
	if (ossl_default)
		OSSL_PROVIDER_unload(ossl_default);
	if (ossl_ctx)
		OSSL_LIB_CTX_free(ossl_ctx);

	ossl_legacy = NULL;
	ossl_default = NULL;
	ossl_ctx = NULL;
#endif
}

static int openssl_backend_init(bool fips)
{
/*
 * OpenSSL &gt;= 3.0.0 provides some algorithms in legacy provider
 */
#if OPENSSL_VERSION_MAJOR &gt;= 3
	int r;
	bool ossl_threads = false;

	/*
	 * In FIPS mode we keep default OpenSSL context &amp; global config
	 */
	if (!fips) {
		ossl_ctx = OSSL_LIB_CTX_new();
		if (!ossl_ctx)
			return -EINVAL;

		ossl_default = OSSL_PROVIDER_try_load(ossl_ctx, "default", 0);
		if (!ossl_default) {
			OSSL_LIB_CTX_free(ossl_ctx);
			return -EINVAL;
		}

		/* Optional */
		ossl_legacy = OSSL_PROVIDER_try_load(ossl_ctx, "legacy", 0);
	}

	if (OSSL_set_max_threads(ossl_ctx, MAX_THREADS) == 1 &amp;&amp;
	    OSSL_get_max_threads(ossl_ctx) == MAX_THREADS)
		ossl_threads = true;

	r = snprintf(backend_version, sizeof(backend_version), "%s %s%s%s%s%s",
		OpenSSL_version(OPENSSL_VERSION),
		ossl_default ? "[default]" : "",
		ossl_legacy  ? "[legacy]" : "",
		fips  ? "[fips]" : "",
		ossl_threads ? "[threads]" : "",
		crypt_backend_flags() &amp; CRYPT_BACKEND_ARGON2 ? "[argon2]" : "");

	if (r &lt; 0 || (size_t)r &gt;= sizeof(backend_version)) {
		openssl_backend_exit();
		return -EINVAL;
	}
#else
	UNUSED(fips);
#endif
	return 0;
}

static const char *openssl_backend_version(void)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	return backend_version;
#else
	return OpenSSL_version(OPENSSL_VERSION);
#endif
}
#endif

int crypt_backend_init(bool fips)
{
	if (crypto_backend_initialised)
		return 0;

	if (openssl_backend_init(fips))
		return -EINVAL;

	crypto_backend_initialised = 1;
	return 0;
}

void crypt_backend_destroy(void)
{
	/*
	 * If Destructor was already called, we must not call it again
	 */
	if (!crypto_backend_initialised)
		return;

	crypto_backend_initialised = 0;

	openssl_backend_exit();
}

uint32_t crypt_backend_flags(void)
{
	uint32_t flags = 0;
#if OPENSSL_VERSION_MAJOR &lt; 3
	flags |= CRYPT_BACKEND_PBKDF2_INT;
#endif
#if HAVE_DECL_OSSL_KDF_PARAM_ARGON2_VERSION
	flags |= CRYPT_BACKEND_ARGON2;
#endif
	return flags;
}

const char *crypt_backend_version(void)
{
	return openssl_backend_version();
}

static const char *crypt_hash_compat_name(const char *name)
{
	const char *hash_name = name;
	int i;
	static struct hash_alg hash_algs[] = {
	{ "blake2b-512", "blake2b512" },
	{ "blake2s-256", "blake2s256" },
	{ NULL,          NULL,         }};

	if (!name)
		return NULL;

	i = 0;
	while (hash_algs[i].name) {
		if (!strcasecmp(name, hash_algs[i].name)) {
			hash_name =  hash_algs[i].openssl_name;
			break;
		}
		i++;
	}

	return hash_name;
}

static const EVP_MD *hash_id_get(const char *name)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	return EVP_MD_fetch(ossl_ctx, crypt_hash_compat_name(name), NULL);
#else
	return EVP_get_digestbyname(crypt_hash_compat_name(name));
#endif
}

static void hash_id_free(const EVP_MD *hash_id)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_MD_free(CONST_CAST(EVP_MD*)hash_id);
#else
	UNUSED(hash_id);
#endif
}

static const EVP_CIPHER *cipher_type_get(const char *name)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	return EVP_CIPHER_fetch(ossl_ctx, name, NULL);
#else
	return EVP_get_cipherbyname(name);
#endif
}

static void cipher_type_free(const EVP_CIPHER *cipher_type)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_CIPHER_free(CONST_CAST(EVP_CIPHER*)cipher_type);
#else
	UNUSED(cipher_type);
#endif
}

/* HASH */
int crypt_hash_size(const char *name)
{
	int size;
	const EVP_MD *hash_id;

	hash_id = hash_id_get(name);
	if (!hash_id)
		return -EINVAL;

	size = EVP_MD_size(hash_id);
	hash_id_free(hash_id);
	return size;
}

int crypt_hash_init(struct crypt_hash **ctx, const char *name)
{
	struct crypt_hash *h;

	h = malloc(sizeof(*h));
	if (!h)
		return -ENOMEM;

	h-&gt;md = EVP_MD_CTX_new();
	if (!h-&gt;md) {
		free(h);
		return -ENOMEM;
	}

	h-&gt;hash_id = hash_id_get(name);
	if (!h-&gt;hash_id) {
		EVP_MD_CTX_free(h-&gt;md);
		free(h);
		return -EINVAL;
	}

	if (EVP_DigestInit_ex(h-&gt;md, h-&gt;hash_id, NULL) != 1) {
		hash_id_free(h-&gt;hash_id);
		EVP_MD_CTX_free(h-&gt;md);
		free(h);
		return -EINVAL;
	}

	h-&gt;hash_len = EVP_MD_size(h-&gt;hash_id);
	*ctx = h;
	return 0;
}

static int crypt_hash_restart(struct crypt_hash *ctx)
{
	if (EVP_DigestInit_ex(ctx-&gt;md, ctx-&gt;hash_id, NULL) != 1)
		return -EINVAL;

	return 0;
}

int crypt_hash_write(struct crypt_hash *ctx, const char *buffer, size_t length)
{
	if (EVP_DigestUpdate(ctx-&gt;md, buffer, length) != 1)
		return -EINVAL;

	return 0;
}

int crypt_hash_final(struct crypt_hash *ctx, char *buffer, size_t length)
{
	unsigned char tmp[EVP_MAX_MD_SIZE];
	unsigned int tmp_len = 0;

	if (length &gt; (size_t)ctx-&gt;hash_len)
		return -EINVAL;

	if (EVP_DigestFinal_ex(ctx-&gt;md, tmp, &amp;tmp_len) != 1)
		return -EINVAL;

	memcpy(buffer, tmp, length);
	crypt_backend_memzero(tmp, sizeof(tmp));

	if (tmp_len &lt; length)
		return -EINVAL;

	if (crypt_hash_restart(ctx))
		return -EINVAL;

	return 0;
}

void crypt_hash_destroy(struct crypt_hash *ctx)
{
	hash_id_free(ctx-&gt;hash_id);
	EVP_MD_CTX_free(ctx-&gt;md);
	free(ctx);
}

/* HMAC */
int crypt_hmac_size(const char *name)
{
	return crypt_hash_size(name);
}

int crypt_hmac_init(struct crypt_hmac **ctx, const char *name,
		    const void *key, size_t key_length)
{
	struct crypt_hmac *h;
#if OPENSSL_VERSION_MAJOR &gt;= 3
	OSSL_PARAM params[] = {
		OSSL_PARAM_utf8_string(OSSL_MAC_PARAM_DIGEST, CONST_CAST(void*)name, 0),
		OSSL_PARAM_END
	};

	h = malloc(sizeof(*h));
	if (!h)
		return -ENOMEM;

	h-&gt;mac = EVP_MAC_fetch(ossl_ctx, OSSL_MAC_NAME_HMAC, NULL);
	if (!h-&gt;mac) {
		free(h);
		return -EINVAL;
	}

	h-&gt;md = EVP_MAC_CTX_new(h-&gt;mac);
	if (!h-&gt;md) {
		EVP_MAC_free(h-&gt;mac);
		free(h);
		return -ENOMEM;
	}

	if (EVP_MAC_init(h-&gt;md, key, key_length, params) != 1) {
		EVP_MAC_CTX_free(h-&gt;md);
		EVP_MAC_free(h-&gt;mac);
		free(h);
		return -EINVAL;
	}

	h-&gt;hash_len = EVP_MAC_CTX_get_mac_size(h-&gt;md);
	h-&gt;md_org = EVP_MAC_CTX_dup(h-&gt;md);
#else
	h = malloc(sizeof(*h));
	if (!h)
		return -ENOMEM;

	h-&gt;md = HMAC_CTX_new();
	if (!h-&gt;md) {
		free(h);
		return -ENOMEM;
	}

	h-&gt;hash_id = hash_id_get(name);
	if (!h-&gt;hash_id) {
		HMAC_CTX_free(h-&gt;md);
		free(h);
		return -EINVAL;
	}

	HMAC_Init_ex(h-&gt;md, key, key_length, h-&gt;hash_id, NULL);

	h-&gt;hash_len = EVP_MD_size(h-&gt;hash_id);
#endif
	*ctx = h;
	return 0;
}

static int crypt_hmac_restart(struct crypt_hmac *ctx)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_MAC_CTX_free(ctx-&gt;md);
	ctx-&gt;md = EVP_MAC_CTX_dup(ctx-&gt;md_org);
	if (!ctx-&gt;md)
		return -EINVAL;
#else
	HMAC_Init_ex(ctx-&gt;md, NULL, 0, ctx-&gt;hash_id, NULL);
#endif
	return 0;
}

int crypt_hmac_write(struct crypt_hmac *ctx, const char *buffer, size_t length)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	return EVP_MAC_update(ctx-&gt;md, (const unsigned char *)buffer, length) == 1 ? 0 : -EINVAL;
#else
	HMAC_Update(ctx-&gt;md, (const unsigned char *)buffer, length);
	return 0;
#endif
}

int crypt_hmac_final(struct crypt_hmac *ctx, char *buffer, size_t length)
{
	unsigned char tmp[EVP_MAX_MD_SIZE];
#if OPENSSL_VERSION_MAJOR &gt;= 3
	size_t tmp_len = 0;

	if (length &gt; (size_t)ctx-&gt;hash_len)
		return -EINVAL;

	if (EVP_MAC_final(ctx-&gt;md, tmp,  &amp;tmp_len, sizeof(tmp)) != 1)
		return -EINVAL;
#else
	unsigned int tmp_len = 0;

	if (length &gt; (size_t)ctx-&gt;hash_len)
		return -EINVAL;

	HMAC_Final(ctx-&gt;md, tmp, &amp;tmp_len);
#endif
	memcpy(buffer, tmp, length);
	crypt_backend_memzero(tmp, sizeof(tmp));

	if (tmp_len &lt; length)
		return -EINVAL;

	if (crypt_hmac_restart(ctx))
		return -EINVAL;

	return 0;
}

void crypt_hmac_destroy(struct crypt_hmac *ctx)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_MAC_CTX_free(ctx-&gt;md);
	EVP_MAC_CTX_free(ctx-&gt;md_org);
	EVP_MAC_free(ctx-&gt;mac);
#else
	hash_id_free(ctx-&gt;hash_id);
	HMAC_CTX_free(ctx-&gt;md);
#endif
	free(ctx);
}

/* RNG */
int crypt_backend_rng(char *buffer, size_t length,
	int quality __attribute__((unused)), int fips __attribute__((unused)))
{
	if (RAND_bytes((unsigned char *)buffer, length) != 1)
		return -EINVAL;

	return 0;
}

static int openssl_pbkdf2(const char *password, size_t password_length,
	const char *salt, size_t salt_length, uint32_t iterations,
	const char *hash, char *key, size_t key_length)
{
	int r;
#if OPENSSL_VERSION_MAJOR &gt;= 3
	EVP_KDF_CTX *ctx;
	EVP_KDF *pbkdf2;
	OSSL_PARAM params[] = {
		OSSL_PARAM_octet_string(OSSL_KDF_PARAM_PASSWORD,
			CONST_CAST(void*)password, password_length),
		OSSL_PARAM_octet_string(OSSL_KDF_PARAM_SALT,
			CONST_CAST(void*)salt, salt_length),
		OSSL_PARAM_uint32(OSSL_KDF_PARAM_ITER, &amp;iterations),
		OSSL_PARAM_utf8_string(OSSL_KDF_PARAM_DIGEST,
			CONST_CAST(void*)hash, 0),
		OSSL_PARAM_END
	};

	pbkdf2 = EVP_KDF_fetch(ossl_ctx, "pbkdf2", NULL);
	if (!pbkdf2)
		return -EINVAL;

	ctx = EVP_KDF_CTX_new(pbkdf2);
	if (!ctx) {
		EVP_KDF_free(pbkdf2);
		return -EINVAL;
	}

	r = EVP_KDF_derive(ctx, (unsigned char*)key, key_length, params);

	EVP_KDF_CTX_free(ctx);
	EVP_KDF_free(pbkdf2);
#else
	const EVP_MD *hash_id = EVP_get_digestbyname(crypt_hash_compat_name(hash));
	if (!hash_id)
		return -EINVAL;

	/* OpenSSL2 has iteration as signed int, avoid overflow */
	if (iterations &gt; INT_MAX)
		return -EINVAL;

	r = PKCS5_PBKDF2_HMAC(password, (int)password_length, (const unsigned char *)salt,
		(int)salt_length, iterations, hash_id, (int)key_length, (unsigned char*) key);
#endif
	return r == 1 ? 0 : -EINVAL;
}

static int openssl_argon2(const char *type, const char *password, size_t password_length,
	const char *salt, size_t salt_length, char *key, size_t key_length,
	uint32_t iterations, uint32_t memory, uint32_t parallel)
{
#if HAVE_DECL_OSSL_KDF_PARAM_ARGON2_VERSION
	EVP_KDF_CTX *ctx;
	EVP_KDF *argon2;
	unsigned int threads = parallel;
	int r;
	OSSL_PARAM params[] = {
		OSSL_PARAM_octet_string(OSSL_KDF_PARAM_PASSWORD,
			CONST_CAST(void*)password, password_length),
		OSSL_PARAM_octet_string(OSSL_KDF_PARAM_SALT,
			CONST_CAST(void*)salt, salt_length),
		OSSL_PARAM_uint32(OSSL_KDF_PARAM_ITER, &amp;iterations),
		OSSL_PARAM_uint(OSSL_KDF_PARAM_THREADS, &amp;threads),
		OSSL_PARAM_uint32(OSSL_KDF_PARAM_ARGON2_LANES, &amp;parallel),
		OSSL_PARAM_uint32(OSSL_KDF_PARAM_ARGON2_MEMCOST, &amp;memory),
		OSSL_PARAM_END
	};

	if (OSSL_get_max_threads(ossl_ctx) == 0)
		threads = 1;

	argon2 = EVP_KDF_fetch(ossl_ctx, type, NULL);
	if (!argon2)
		return -EINVAL;

	ctx = EVP_KDF_CTX_new(argon2);
	if (!ctx) {
		EVP_KDF_free(argon2);
		return -EINVAL;;
	}

	if (EVP_KDF_CTX_set_params(ctx, params) != 1) {
		EVP_KDF_CTX_free(ctx);
		EVP_KDF_free(argon2);
		return -EINVAL;
	}

	r = EVP_KDF_derive(ctx, (unsigned char*)key, key_length, NULL /*params*/);

	EVP_KDF_CTX_free(ctx);
	EVP_KDF_free(argon2);

	/* _derive() returns 0 or negative value on error, 1 on success */
	return r == 1 ? 0 : -EINVAL;
#else
	return argon2(type, password, password_length, salt, salt_length,
		      key, key_length, iterations, memory, parallel);
#endif
}

/* PBKDF */
int crypt_pbkdf(const char *kdf, const char *hash,
		const char *password, size_t password_length,
		const char *salt, size_t salt_length,
		char *key, size_t key_length,
		uint32_t iterations, uint32_t memory, uint32_t parallel)
{
	if (!kdf)
		return -EINVAL;

	if (!strcmp(kdf, "pbkdf2"))
		return openssl_pbkdf2(password, password_length, salt, salt_length,
				      iterations, hash, key, key_length);
	if (!strncmp(kdf, "argon2", 6))
		return openssl_argon2(kdf, password, password_length, salt, salt_length,
				      key, key_length, iterations, memory, parallel);
	return -EINVAL;
}

/* Block ciphers */
static void _cipher_destroy(EVP_CIPHER_CTX **hd_enc, EVP_CIPHER_CTX **hd_dec, const EVP_CIPHER **cipher_type)
{
	EVP_CIPHER_CTX_free(*hd_enc);
	*hd_enc = NULL;

	EVP_CIPHER_CTX_free(*hd_dec);
	*hd_dec = NULL;

	cipher_type_free(*cipher_type);
	*cipher_type = NULL;
}

static int _cipher_init(EVP_CIPHER_CTX **hd_enc, EVP_CIPHER_CTX **hd_dec, const EVP_CIPHER **cipher_type, const char *name,
			const char *mode, const void *key, size_t key_length, size_t *iv_length)
{
	char cipher_name[256];
	const EVP_CIPHER *type;
	int r, key_bits;

	key_bits = key_length * 8;
	if (!strcmp(mode, "xts"))
		key_bits /= 2;

	r = snprintf(cipher_name, sizeof(cipher_name), "%s-%d-%s", name, key_bits, mode);
	if (r &lt; 0 || (size_t)r &gt;= sizeof(cipher_name))
		return -EINVAL;

	type = cipher_type_get(cipher_name);
	if (!type)
		return -ENOENT;

	if (EVP_CIPHER_key_length(type) != (int)key_length) {
		cipher_type_free(type);
		return -EINVAL;
	}

	*hd_enc = EVP_CIPHER_CTX_new();
	*hd_dec = EVP_CIPHER_CTX_new();
	*iv_length = EVP_CIPHER_iv_length(type);

	if (!*hd_enc || !*hd_dec) {
		cipher_type_free(type);
		return -EINVAL;
	}

	if (EVP_EncryptInit_ex(*hd_enc, type, NULL, key, NULL) != 1 ||
	    EVP_DecryptInit_ex(*hd_dec, type, NULL, key, NULL) != 1) {
		_cipher_destroy(hd_enc, hd_dec, &amp;type);
		return -EINVAL;
	}

	if (EVP_CIPHER_CTX_set_padding(*hd_enc, 0) != 1 ||
	    EVP_CIPHER_CTX_set_padding(*hd_dec, 0) != 1) {
		_cipher_destroy(hd_enc, hd_dec, &amp;type);
		return -EINVAL;
	}

	*cipher_type = type;

	return 0;
}

int crypt_cipher_init(struct crypt_cipher **ctx, const char *name,
		    const char *mode, const void *key, size_t key_length)
{
	struct crypt_cipher *h;
	int r;

	h = malloc(sizeof(*h));
	if (!h)
		return -ENOMEM;

	if (!_cipher_init(&amp;h-&gt;u.lib.hd_enc, &amp;h-&gt;u.lib.hd_dec, &amp;h-&gt;u.lib.cipher_type, name, mode, key,
			  key_length, &amp;h-&gt;u.lib.iv_length)) {
		h-&gt;use_kernel = false;
		*ctx = h;
		return 0;
	}

	r = crypt_cipher_init_kernel(&amp;h-&gt;u.kernel, name, mode, key, key_length);
	if (r &lt; 0) {
		free(h);
		return r;
	}

	h-&gt;use_kernel = true;
	*ctx = h;
	return 0;
}

void crypt_cipher_destroy(struct crypt_cipher *ctx)
{
	if (ctx-&gt;use_kernel)
		crypt_cipher_destroy_kernel(&amp;ctx-&gt;u.kernel);
	else
		_cipher_destroy(&amp;ctx-&gt;u.lib.hd_enc, &amp;ctx-&gt;u.lib.hd_dec, &amp;ctx-&gt;u.lib.cipher_type);
	free(ctx);
}

static int _cipher_encrypt(struct crypt_cipher *ctx, const unsigned char *in, unsigned char *out,
			   int length, const unsigned char *iv, size_t iv_length)
{
	int len;

	if (ctx-&gt;u.lib.iv_length != iv_length)
		return -EINVAL;

	if (EVP_EncryptInit_ex(ctx-&gt;u.lib.hd_enc, NULL, NULL, NULL, iv) != 1)
		return -EINVAL;

	if (EVP_EncryptUpdate(ctx-&gt;u.lib.hd_enc, out, &amp;len, in, length) != 1)
		return -EINVAL;

	if (EVP_EncryptFinal(ctx-&gt;u.lib.hd_enc, out + len, &amp;len) != 1)
		return -EINVAL;

	return 0;
}

static int _cipher_decrypt(struct crypt_cipher *ctx, const unsigned char *in, unsigned char *out,
			   int length, const unsigned char *iv, size_t iv_length)
{
	int len;

	if (ctx-&gt;u.lib.iv_length != iv_length)
		return -EINVAL;

	if (EVP_DecryptInit_ex(ctx-&gt;u.lib.hd_dec, NULL, NULL, NULL, iv) != 1)
		return -EINVAL;

	if (EVP_DecryptUpdate(ctx-&gt;u.lib.hd_dec, out, &amp;len, in, length) != 1)
		return -EINVAL;

	if (EVP_DecryptFinal(ctx-&gt;u.lib.hd_dec, out + len, &amp;len) != 1)
		return -EINVAL;

	return 0;
}

int crypt_cipher_encrypt(struct crypt_cipher *ctx,
			 const char *in, char *out, size_t length,
			 const char *iv, size_t iv_length)
{
	if (ctx-&gt;use_kernel)
		return crypt_cipher_encrypt_kernel(&amp;ctx-&gt;u.kernel, in, out, length, iv, iv_length);

	return _cipher_encrypt(ctx, (const unsigned char*)in,
			       (unsigned char *)out, length, (const unsigned char*)iv, iv_length);
}

int crypt_cipher_decrypt(struct crypt_cipher *ctx,
			 const char *in, char *out, size_t length,
			 const char *iv, size_t iv_length)
{
	if (ctx-&gt;use_kernel)
		return crypt_cipher_decrypt_kernel(&amp;ctx-&gt;u.kernel, in, out, length, iv, iv_length);

	return _cipher_decrypt(ctx, (const unsigned char*)in,
			       (unsigned char *)out, length, (const unsigned char*)iv, iv_length);
}

bool crypt_cipher_kernel_only(struct crypt_cipher *ctx)
{
	return ctx-&gt;use_kernel;
}

int crypt_bitlk_decrypt_key(const void *key, size_t key_length __attribute__((unused)),
			    const char *in, char *out, size_t length,
			    const char *iv, size_t iv_length,
			    const char *tag, size_t tag_length)
{
#ifdef EVP_CTRL_CCM_SET_IVLEN
	EVP_CIPHER_CTX *ctx;
	int len = 0, r = -EINVAL;

	ctx = EVP_CIPHER_CTX_new();
	if (!ctx)
		return -EINVAL;

	if (EVP_DecryptInit_ex(ctx, EVP_aes_256_ccm(), NULL, NULL, NULL) != 1)
		goto out;

	if (EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_CCM_SET_IVLEN, iv_length, NULL) != 1)
		goto out;
	if (EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_CCM_SET_TAG, tag_length, CONST_CAST(void*)tag) != 1)
		goto out;

	if (EVP_DecryptInit_ex(ctx, NULL, NULL, key, (const unsigned char*)iv) != 1)
		goto out;

	if (EVP_DecryptUpdate(ctx, (unsigned char*)out, &amp;len, (const unsigned char*)in, length) == 1)
		r = 0;
out:
	EVP_CIPHER_CTX_free(ctx);
	return r;
#else
	return -ENOTSUP;
#endif
}

int crypt_backend_memeq(const void *m1, const void *m2, size_t n)
{
	return CRYPTO_memcmp(m1, m2, n);
}

#if !ENABLE_FIPS
bool crypt_fips_mode(void) { return false; }
#else
static bool openssl_fips_mode(void)
{
#if OPENSSL_VERSION_MAJOR &gt;= 3
	return EVP_default_properties_is_fips_enabled(NULL);
#else
	return FIPS_mode();
#endif
}

bool crypt_fips_mode(void)
{
	static bool fips_mode = false, fips_checked = false;

	if (fips_checked)
		return fips_mode;

	fips_mode = openssl_fips_mode();
	fips_checked = true;

	return fips_mode;
}
#endif /* ENABLE FIPS */
</file>
  <file fpath="/out/src/cryptsetup/lib/libdevmapper.c">/*
 * libdevmapper - device-mapper backend for cryptsetup
 *
 * Copyright (C) 2004 Jana Saout &lt;jana@saout.de&gt;
 * Copyright (C) 2004-2007 Clemens Fruhwirth &lt;clemens@endorphin.org&gt;
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;stdio.h&gt;
#include &lt;stdbool.h&gt;
#include &lt;ctype.h&gt;
#include &lt;errno.h&gt;
#include &lt;libdevmapper.h&gt;
#include &lt;uuid/uuid.h&gt;
#include &lt;sys/stat.h&gt;
#ifdef HAVE_SYS_SYSMACROS_H
# include &lt;sys/sysmacros.h&gt;     /* for major, minor */
#endif
#include "internal.h"

#define DM_CRYPT_TARGET		"crypt"
#define DM_VERITY_TARGET	"verity"
#define DM_INTEGRITY_TARGET	"integrity"
#define DM_LINEAR_TARGET	"linear"
#define DM_ERROR_TARGET         "error"
#define DM_ZERO_TARGET		"zero"
#define RETRY_COUNT		5

/* Set if DM target versions were probed */
static bool _dm_ioctl_checked = false;
static bool _dm_crypt_checked = false;
static bool _dm_verity_checked = false;
static bool _dm_integrity_checked = false;
static bool _dm_zero_checked = false;

static int _quiet_log = 0;
static uint32_t _dm_flags = 0;

static struct crypt_device *_context = NULL;
static int _dm_use_count = 0;

/* Check if we have DM flag to instruct kernel to force wipe buffers */
#if !HAVE_DECL_DM_TASK_SECURE_DATA
static int dm_task_secure_data(struct dm_task *dmt) { return 1; }
#endif

/* Compatibility for old device-mapper without udev support */
#if HAVE_DECL_DM_UDEV_DISABLE_DISK_RULES_FLAG
#define CRYPT_TEMP_UDEV_FLAGS	DM_UDEV_DISABLE_SUBSYSTEM_RULES_FLAG | \
				DM_UDEV_DISABLE_DISK_RULES_FLAG | \
				DM_UDEV_DISABLE_OTHER_RULES_FLAG
#define _dm_task_set_cookie	dm_task_set_cookie
#define _dm_udev_wait		dm_udev_wait
#else
#define CRYPT_TEMP_UDEV_FLAGS	0
static int _dm_task_set_cookie(struct dm_task *dmt, uint32_t *cookie, uint16_t flags) { return 0; }
static int _dm_udev_wait(uint32_t cookie) { return 0; };
#endif

static int _dm_use_udev(void)
{
#ifdef USE_UDEV /* cannot be enabled if devmapper is too old */
	return dm_udev_get_sync_support();
#else
	return 0;
#endif
}

__attribute__((format(printf, 4, 5)))
static void set_dm_error(int level,
			 const char *file __attribute__((unused)),
			 int line __attribute__((unused)),
			 const char *f, ...)
{
	char *msg = NULL;
	va_list va;

	va_start(va, f);
	if (vasprintf(&amp;msg, f, va) &gt; 0) {
		if (level &lt; 4 &amp;&amp; !_quiet_log) {
			log_err(_context, "%s", msg);
		} else {
			/* We do not use DM visual stack backtrace here */
			if (strncmp(msg, "&lt;backtrace&gt;", 11))
				log_dbg(_context, "%s", msg);
		}
	}
	free(msg);
	va_end(va);
}

static int _dm_satisfies_version(unsigned target_maj, unsigned target_min, unsigned target_patch,
				 unsigned actual_maj, unsigned actual_min, unsigned actual_patch)
{
	if (actual_maj &gt; target_maj)
		return 1;

	if (actual_maj == target_maj &amp;&amp; actual_min &gt; target_min)
		return 1;

	if (actual_maj == target_maj &amp;&amp; actual_min == target_min &amp;&amp; actual_patch &gt;= target_patch)
		return 1;

	return 0;
}

static void _dm_set_crypt_compat(struct crypt_device *cd,
				 unsigned crypt_maj,
				 unsigned crypt_min,
				 unsigned crypt_patch)
{
	if (_dm_crypt_checked || crypt_maj == 0)
		return;

	log_dbg(cd, "Detected dm-crypt version %i.%i.%i.",
		crypt_maj, crypt_min, crypt_patch);

	if (_dm_satisfies_version(1, 2, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_KEY_WIPE_SUPPORTED;
	else
		log_dbg(cd, "Suspend and resume disabled, no wipe key support.");

	if (_dm_satisfies_version(1, 10, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_LMK_SUPPORTED;

	/* not perfect, 2.6.33 supports with 1.7.0 */
	if (_dm_satisfies_version(1, 8, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_PLAIN64_SUPPORTED;

	if (_dm_satisfies_version(1, 11, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_DISCARDS_SUPPORTED;

	if (_dm_satisfies_version(1, 13, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_TCW_SUPPORTED;

	if (_dm_satisfies_version(1, 14, 0, crypt_maj, crypt_min, crypt_patch)) {
		_dm_flags |= DM_SAME_CPU_CRYPT_SUPPORTED;
		_dm_flags |= DM_SUBMIT_FROM_CRYPT_CPUS_SUPPORTED;
	}

	if (_dm_satisfies_version(1, 18, 1, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_KERNEL_KEYRING_SUPPORTED;

	if (_dm_satisfies_version(1, 17, 0, crypt_maj, crypt_min, crypt_patch)) {
		_dm_flags |= DM_SECTOR_SIZE_SUPPORTED;
		_dm_flags |= DM_CAPI_STRING_SUPPORTED;
	}

	if (_dm_satisfies_version(1, 19, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_BITLK_EBOIV_SUPPORTED;

	if (_dm_satisfies_version(1, 20, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_BITLK_ELEPHANT_SUPPORTED;

	if (_dm_satisfies_version(1, 22, 0, crypt_maj, crypt_min, crypt_patch))
		_dm_flags |= DM_CRYPT_NO_WORKQUEUE_SUPPORTED;

	_dm_crypt_checked = true;
}

static void _dm_set_verity_compat(struct crypt_device *cd,
				  unsigned verity_maj,
				  unsigned verity_min,
				  unsigned verity_patch)
{
	if (_dm_verity_checked || verity_maj == 0)
		return;

	log_dbg(cd, "Detected dm-verity version %i.%i.%i.",
		verity_maj, verity_min, verity_patch);

	_dm_flags |= DM_VERITY_SUPPORTED;

	/*
	 * ignore_corruption, restart_on corruption is available since 1.2 (kernel 4.1)
	 * ignore_zero_blocks since 1.3 (kernel 4.5)
	 * (but some dm-verity targets 1.2 don't support it)
	 * FEC is added in 1.3 as well.
	 * Check at most once is added in 1.4 (kernel 4.17).
	 */
	if (_dm_satisfies_version(1, 3, 0, verity_maj, verity_min, verity_patch)) {
		_dm_flags |= DM_VERITY_ON_CORRUPTION_SUPPORTED;
		_dm_flags |= DM_VERITY_FEC_SUPPORTED;
	}

	if (_dm_satisfies_version(1, 5, 0, verity_maj, verity_min, verity_patch))
		_dm_flags |= DM_VERITY_SIGNATURE_SUPPORTED;

	if (_dm_satisfies_version(1, 7, 0, verity_maj, verity_min, verity_patch))
		_dm_flags |= DM_VERITY_PANIC_CORRUPTION_SUPPORTED;

	if (_dm_satisfies_version(1, 9, 0, verity_maj, verity_min, verity_patch))
		_dm_flags |= DM_VERITY_TASKLETS_SUPPORTED;

	_dm_verity_checked = true;
}

static void _dm_set_integrity_compat(struct crypt_device *cd,
				     unsigned integrity_maj,
				     unsigned integrity_min,
				     unsigned integrity_patch)
{
	if (_dm_integrity_checked || integrity_maj == 0)
		return;

	log_dbg(cd, "Detected dm-integrity version %i.%i.%i.",
		integrity_maj, integrity_min, integrity_patch);

	_dm_flags |= DM_INTEGRITY_SUPPORTED;

	if (_dm_satisfies_version(1, 2, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_RECALC_SUPPORTED;

	if (_dm_satisfies_version(1, 3, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_BITMAP_SUPPORTED;

	if (_dm_satisfies_version(1, 4, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_FIX_PADDING_SUPPORTED;

	if (_dm_satisfies_version(1, 6, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_DISCARDS_SUPPORTED;

	if (_dm_satisfies_version(1, 7, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_FIX_HMAC_SUPPORTED;

	if (_dm_satisfies_version(1, 8, 0, integrity_maj, integrity_min, integrity_patch))
		_dm_flags |= DM_INTEGRITY_RESET_RECALC_SUPPORTED;

	_dm_integrity_checked = true;
}

static void _dm_set_zero_compat(struct crypt_device *cd,
				unsigned zero_maj,
				unsigned zero_min,
				unsigned zero_patch)
{
	if (_dm_zero_checked || zero_maj == 0)
		return;

	log_dbg(cd, "Detected dm-zero version %i.%i.%i.",
		zero_maj, zero_min, zero_patch);

	_dm_zero_checked = true;
}

/* We use this for loading target module */
static void _dm_check_target(dm_target_type target_type)
{
#if HAVE_DECL_DM_DEVICE_GET_TARGET_VERSION
	struct dm_task *dmt;
	const char *target_name = NULL;

	if (!(_dm_flags &amp; DM_GET_TARGET_VERSION_SUPPORTED))
		return;

	if (target_type == DM_CRYPT)
		target_name = DM_CRYPT_TARGET;
	else if (target_type == DM_VERITY)
		target_name = DM_VERITY_TARGET;
	else if (target_type == DM_INTEGRITY)
		target_name = DM_INTEGRITY_TARGET;
	else
		return;

	if (!(dmt = dm_task_create(DM_DEVICE_GET_TARGET_VERSION)))
		return;

	if (dm_task_set_name(dmt, target_name))
		dm_task_run(dmt);

	dm_task_destroy(dmt);
#endif
}

static int _dm_check_versions(struct crypt_device *cd, dm_target_type target_type)
{
	struct dm_task *dmt;
	struct dm_versions *target, *last_target;
	char dm_version[16];
	unsigned dm_maj, dm_min, dm_patch;
	int r = 0;

	if ((target_type == DM_CRYPT     &amp;&amp; _dm_crypt_checked) ||
	    (target_type == DM_VERITY    &amp;&amp; _dm_verity_checked) ||
	    (target_type == DM_INTEGRITY &amp;&amp; _dm_integrity_checked) ||
	    (target_type == DM_ZERO      &amp;&amp; _dm_zero_checked) ||
	    (target_type == DM_LINEAR) ||
	    (_dm_crypt_checked &amp;&amp; _dm_verity_checked &amp;&amp; _dm_integrity_checked &amp;&amp; _dm_zero_checked))
		return 1;

	/* Shut up DM while checking */
	_quiet_log = 1;

	_dm_check_target(target_type);

	if (!(dmt = dm_task_create(DM_DEVICE_LIST_VERSIONS)))
		goto out;

	if (!dm_task_run(dmt))
		goto out;

	if (!dm_task_get_driver_version(dmt, dm_version, sizeof(dm_version)))
		goto out;

	if (!_dm_ioctl_checked) {
		if (sscanf(dm_version, "%u.%u.%u", &amp;dm_maj, &amp;dm_min, &amp;dm_patch) != 3)
			goto out;
		log_dbg(cd, "Detected dm-ioctl version %u.%u.%u.", dm_maj, dm_min, dm_patch);

		if (_dm_satisfies_version(4, 20, 0, dm_maj, dm_min, dm_patch))
			_dm_flags |= DM_SECURE_SUPPORTED;
#if HAVE_DECL_DM_TASK_DEFERRED_REMOVE
		if (_dm_satisfies_version(4, 27, 0, dm_maj, dm_min, dm_patch))
			_dm_flags |= DM_DEFERRED_SUPPORTED;
#endif
#if HAVE_DECL_DM_DEVICE_GET_TARGET_VERSION
		if (_dm_satisfies_version(4, 41, 0, dm_maj, dm_min, dm_patch))
			_dm_flags |= DM_GET_TARGET_VERSION_SUPPORTED;
#endif
	}

	target = dm_task_get_versions(dmt);
	do {
		last_target = target;
		if (!strcmp(DM_CRYPT_TARGET, target-&gt;name)) {
			_dm_set_crypt_compat(cd, (unsigned)target-&gt;version[0],
					     (unsigned)target-&gt;version[1],
					     (unsigned)target-&gt;version[2]);
		} else if (!strcmp(DM_VERITY_TARGET, target-&gt;name)) {
			_dm_set_verity_compat(cd, (unsigned)target-&gt;version[0],
					      (unsigned)target-&gt;version[1],
					      (unsigned)target-&gt;version[2]);
		} else if (!strcmp(DM_INTEGRITY_TARGET, target-&gt;name)) {
			_dm_set_integrity_compat(cd, (unsigned)target-&gt;version[0],
						 (unsigned)target-&gt;version[1],
						 (unsigned)target-&gt;version[2]);
		} else if (!strcmp(DM_ZERO_TARGET, target-&gt;name)) {
			_dm_set_zero_compat(cd, (unsigned)target-&gt;version[0],
					    (unsigned)target-&gt;version[1],
					    (unsigned)target-&gt;version[2]);
		}
		target = VOIDP_CAST(struct dm_versions *)((char *) target + target-&gt;next);
	} while (last_target != target);

	r = 1;
	if (!_dm_ioctl_checked)
		log_dbg(cd, "Device-mapper backend running with UDEV support %sabled.",
			_dm_use_udev() ? "en" : "dis");

	_dm_ioctl_checked = true;
out:
	if (dmt)
		dm_task_destroy(dmt);

	_quiet_log = 0;
	return r;
}

int dm_flags(struct crypt_device *cd, dm_target_type target, uint32_t *flags)
{
	_dm_check_versions(cd, target);
	*flags = _dm_flags;

	if (target == DM_UNKNOWN &amp;&amp;
	    _dm_crypt_checked &amp;&amp; _dm_verity_checked &amp;&amp; _dm_integrity_checked &amp;&amp; _dm_zero_checked)
		return 0;

	if ((target == DM_CRYPT     &amp;&amp; _dm_crypt_checked) ||
	    (target == DM_VERITY    &amp;&amp; _dm_verity_checked) ||
	    (target == DM_INTEGRITY &amp;&amp; _dm_integrity_checked) ||
	    (target == DM_ZERO      &amp;&amp; _dm_zero_checked) ||
	    (target == DM_LINEAR)) /* nothing to check */
		return 0;

	return -ENODEV;
}

/* This doesn't run any kernel checks, just set up userspace libdevmapper */
void dm_backend_init(struct crypt_device *cd)
{
	if (!_dm_use_count++) {
		log_dbg(cd, "Initialising device-mapper backend library.");
		dm_log_init(set_dm_error);
		dm_log_init_verbose(10);
	}
}

void dm_backend_exit(struct crypt_device *cd)
{
	if (_dm_use_count &amp;&amp; (!--_dm_use_count)) {
		log_dbg(cd, "Releasing device-mapper backend.");
		dm_log_init_verbose(0);
		dm_log_init(NULL);
		dm_lib_release();
	}
}

/* libdevmapper is not context friendly, switch context on every DM call. */
static int dm_init_context(struct crypt_device *cd, dm_target_type target)
{
	_context = cd;
	if (!_dm_check_versions(cd, target)) {
		if (getuid() || geteuid())
			log_err(cd, _("Cannot initialize device-mapper, "
				      "running as non-root user."));
		else
			log_err(cd, _("Cannot initialize device-mapper. "
				      "Is dm_mod kernel module loaded?"));
		_context = NULL;
		return -ENOTSUP;
	}
	return 0;
}
static void dm_exit_context(void)
{
	_context = NULL;
}

/* Return path to DM device */
char *dm_device_path(const char *prefix, int major, int minor)
{
	struct dm_task *dmt;
	const char *name;
	char path[PATH_MAX];

	if (!(dmt = dm_task_create(DM_DEVICE_STATUS)))
		return NULL;
	if (!dm_task_set_minor(dmt, minor) ||
	    !dm_task_set_major(dmt, major) ||
	    !dm_task_no_flush(dmt) ||
	    !dm_task_run(dmt) ||
	    !(name = dm_task_get_name(dmt))) {
		dm_task_destroy(dmt);
		return NULL;
	}

	if (snprintf(path, sizeof(path), "%s%s", prefix ?: "", name) &lt; 0)
		path[0] = '\0';

	dm_task_destroy(dmt);

	return strdup(path);
}

char *dm_device_name(const char *path)
{
	struct stat st;

	if (stat(path, &amp;st) &lt; 0 || !S_ISBLK(st.st_mode))
		return NULL;

	return dm_device_path(NULL, major(st.st_rdev), minor(st.st_rdev));
}

static size_t int_log10(uint64_t x)
{
	uint64_t r = 0;
	for (x /= 10; x &gt; 0; x /= 10)
		r++;
	return r;
}

static int cipher_dm2c(const char *org_c, const char *org_i, unsigned tag_size,
		       char *c_dm, int c_dm_size,
		       char *i_dm, int i_dm_size)
{
	int c_size = 0, i_size = 0, i;
	char cipher[MAX_CAPI_ONE_LEN], mode[MAX_CAPI_ONE_LEN], iv[MAX_CAPI_ONE_LEN+1],
	     tmp[MAX_CAPI_ONE_LEN], capi[MAX_CAPI_LEN];

	if (!c_dm || !c_dm_size || !i_dm || !i_dm_size)
		return -EINVAL;

	i = sscanf(org_c, "%" MAX_CAPI_ONE_LEN_STR "[^-]-%" MAX_CAPI_ONE_LEN_STR "s", cipher, tmp);
	if (i != 2)
		return -EINVAL;

	i = sscanf(tmp, "%" MAX_CAPI_ONE_LEN_STR "[^-]-%" MAX_CAPI_ONE_LEN_STR "s", mode, iv);
	if (i == 1) {
		memset(iv, 0, sizeof(iv));
		strncpy(iv, mode, sizeof(iv)-1);
		*mode = '\0';
		if (snprintf(capi, sizeof(capi), "%s", cipher) &lt; 0)
			return -EINVAL;
	} else if (i == 2) {
		if (snprintf(capi, sizeof(capi), "%s(%s)", mode, cipher) &lt; 0)
			return -EINVAL;
	} else
		return -EINVAL;

	if (!org_i) {
		/* legacy mode: CIPHER-MODE-IV*/
		i_size = snprintf(i_dm, i_dm_size, "%s", "");
		c_size = snprintf(c_dm, c_dm_size, "%s", org_c);
	} else if (!strcmp(org_i, "none")) {
		/* IV only: capi:MODE(CIPHER)-IV */
		i_size = snprintf(i_dm, i_dm_size, " integrity:%u:none", tag_size);
		c_size = snprintf(c_dm, c_dm_size, "capi:%s-%s", capi, iv);
	} else if (!strcmp(org_i, "aead") &amp;&amp; !strcmp(mode, "ccm")) {
		/* CCM AEAD: capi:rfc4309(MODE(CIPHER))-IV */
		i_size = snprintf(i_dm, i_dm_size, " integrity:%u:aead", tag_size);
		c_size = snprintf(c_dm, c_dm_size, "capi:rfc4309(%s)-%s", capi, iv);
	} else if (!strcmp(org_i, "aead")) {
		/* AEAD: capi:MODE(CIPHER))-IV */
		i_size = snprintf(i_dm, i_dm_size, " integrity:%u:aead", tag_size);
		c_size = snprintf(c_dm, c_dm_size, "capi:%s-%s", capi, iv);
	} else if (!strcmp(org_i, "poly1305")) {
		/* POLY1305 AEAD: capi:rfc7539(MODE(CIPHER),POLY1305)-IV */
		i_size = snprintf(i_dm, i_dm_size, " integrity:%u:aead", tag_size);
		c_size = snprintf(c_dm, c_dm_size, "capi:rfc7539(%s,poly1305)-%s", capi, iv);
	} else {
		/* other AEAD: capi:authenc(&lt;AUTH&gt;,MODE(CIPHER))-IV */
		i_size = snprintf(i_dm, i_dm_size, " integrity:%u:aead", tag_size);
		c_size = snprintf(c_dm, c_dm_size, "capi:authenc(%s,%s)-%s", org_i, capi, iv);
	}

	if (c_size &lt; 0 || c_size == c_dm_size)
		return -EINVAL;
	if (i_size &lt; 0 || i_size == i_dm_size)
		return -EINVAL;

	return 0;
}

static char *_uf(char *buf, size_t buf_size, const char *s, unsigned u)
{
	size_t r = snprintf(buf, buf_size, " %s:%u", s, u);
	assert(r &gt; 0 &amp;&amp; r &lt; buf_size);
	return buf;
}

/* https://gitlab.com/cryptsetup/cryptsetup/wikis/DMCrypt */
static char *get_dm_crypt_params(const struct dm_target *tgt, uint32_t flags)
{
	int r, max_size, null_cipher = 0, num_options = 0, keystr_len = 0;
	char *params = NULL, *hexkey = NULL;
	char sector_feature[32], features[512], integrity_dm[256], cipher_dm[256];

	if (!tgt)
		return NULL;

	r = cipher_dm2c(tgt-&gt;u.crypt.cipher, tgt-&gt;u.crypt.integrity, tgt-&gt;u.crypt.tag_size,
			cipher_dm, sizeof(cipher_dm), integrity_dm, sizeof(integrity_dm));
	if (r &lt; 0)
		return NULL;

	if (flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_SAME_CPU_CRYPT)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_NO_READ_WORKQUEUE)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_IV_LARGE_SECTORS)
		num_options++;
	if (tgt-&gt;u.crypt.integrity)
		num_options++;
	if (tgt-&gt;u.crypt.sector_size != SECTOR_SIZE)
		num_options++;

	if (num_options) { /* MAX length  int32 + 15 + 15 + 23 + 18 + 19 + 17 + 13 + int32 + integrity_str */
		r = snprintf(features, sizeof(features), " %d%s%s%s%s%s%s%s%s", num_options,
		(flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS) ? " allow_discards" : "",
		(flags &amp; CRYPT_ACTIVATE_SAME_CPU_CRYPT) ? " same_cpu_crypt" : "",
		(flags &amp; CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS) ? " submit_from_crypt_cpus" : "",
		(flags &amp; CRYPT_ACTIVATE_NO_READ_WORKQUEUE) ? " no_read_workqueue" : "",
		(flags &amp; CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE) ? " no_write_workqueue" : "",
		(flags &amp; CRYPT_ACTIVATE_IV_LARGE_SECTORS) ? " iv_large_sectors" : "",
		(tgt-&gt;u.crypt.sector_size != SECTOR_SIZE) ?
			_uf(sector_feature, sizeof(sector_feature), "sector_size", tgt-&gt;u.crypt.sector_size) : "",
		integrity_dm);
		if (r &lt; 0 || (size_t)r &gt;= sizeof(features))
			goto out;
	} else
		*features = '\0';

	if (crypt_is_cipher_null(cipher_dm))
		null_cipher = 1;

	if (null_cipher)
		hexkey = crypt_bytes_to_hex(0, NULL);
	else if (flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) {
		keystr_len = strlen(tgt-&gt;u.crypt.vk-&gt;key_description) + int_log10(tgt-&gt;u.crypt.vk-&gt;keylength) + 10;
		hexkey = crypt_safe_alloc(keystr_len);
		if (!hexkey)
			goto out;
		r = snprintf(hexkey, keystr_len, ":%zu:logon:%s", tgt-&gt;u.crypt.vk-&gt;keylength,
			     tgt-&gt;u.crypt.vk-&gt;key_description);
		if (r &lt; 0 || r &gt;= keystr_len)
			goto out;
	} else
		hexkey = crypt_bytes_to_hex(tgt-&gt;u.crypt.vk-&gt;keylength, tgt-&gt;u.crypt.vk-&gt;key);

	if (!hexkey)
		goto out;

	max_size = strlen(hexkey) + strlen(cipher_dm) +
		   strlen(device_block_path(tgt-&gt;data_device)) +
		   strlen(features) + 64;
	params = crypt_safe_alloc(max_size);
	if (!params)
		goto out;

	r = snprintf(params, max_size, "%s %s %" PRIu64 " %s %" PRIu64 "%s",
		     cipher_dm, hexkey, tgt-&gt;u.crypt.iv_offset,
		     device_block_path(tgt-&gt;data_device), tgt-&gt;u.crypt.offset,
		     features);
	if (r &lt; 0 || r &gt;= max_size) {
		crypt_safe_free(params);
		params = NULL;
	}
out:
	crypt_safe_free(hexkey);
	return params;
}

/* https://gitlab.com/cryptsetup/cryptsetup/wikis/DMVerity */
static char *get_dm_verity_params(const struct dm_target *tgt, uint32_t flags)
{
	int max_size, max_fec_size, max_verify_size, r, num_options = 0;
	struct crypt_params_verity *vp;
	char *params = NULL, *hexroot = NULL, *hexsalt = NULL;
	char features[256], *fec_features = NULL, *verity_verify_args = NULL;

	if (!tgt || !tgt-&gt;u.verity.vp)
		return NULL;

	vp = tgt-&gt;u.verity.vp;

	/* These flags are not compatible */
	if ((flags &amp; CRYPT_ACTIVATE_RESTART_ON_CORRUPTION) &amp;&amp;
	    (flags &amp; CRYPT_ACTIVATE_PANIC_ON_CORRUPTION))
		flags &amp;= ~CRYPT_ACTIVATE_RESTART_ON_CORRUPTION;
	if ((flags &amp; CRYPT_ACTIVATE_IGNORE_CORRUPTION) &amp;&amp;
	    (flags &amp; (CRYPT_ACTIVATE_RESTART_ON_CORRUPTION|CRYPT_ACTIVATE_PANIC_ON_CORRUPTION)))
		flags &amp;= ~CRYPT_ACTIVATE_IGNORE_CORRUPTION;

	if (flags &amp; CRYPT_ACTIVATE_IGNORE_CORRUPTION)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_RESTART_ON_CORRUPTION)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_PANIC_ON_CORRUPTION)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_IGNORE_ZERO_BLOCKS)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_CHECK_AT_MOST_ONCE)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_TASKLETS)
		num_options++;

	max_fec_size = (tgt-&gt;u.verity.fec_device ? strlen(device_block_path(tgt-&gt;u.verity.fec_device)) : 0) + 256;
	fec_features = crypt_safe_alloc(max_fec_size);
	if (!fec_features)
		goto out;

	if (tgt-&gt;u.verity.fec_device) {  /* MAX length 21 + path + 11 + int64 + 12 + int64 + 11 + int32 */
		num_options += 8;
		r = snprintf(fec_features, max_fec_size,
			 " use_fec_from_device %s fec_start %" PRIu64 " fec_blocks %" PRIu64 " fec_roots %" PRIu32,
			 device_block_path(tgt-&gt;u.verity.fec_device), tgt-&gt;u.verity.fec_offset,
			 tgt-&gt;u.verity.fec_blocks, vp-&gt;fec_roots);
		if (r &lt; 0 || r &gt;= max_fec_size)
			goto out;
	} else
		*fec_features = '\0';

	max_verify_size = (tgt-&gt;u.verity.root_hash_sig_key_desc ? strlen(tgt-&gt;u.verity.root_hash_sig_key_desc) : 0) + 32;
	verity_verify_args = crypt_safe_alloc(max_verify_size);
	if (!verity_verify_args)
		goto out;
	if (tgt-&gt;u.verity.root_hash_sig_key_desc) {  /* MAX length 24 + key_str */
		num_options += 2;
		r = snprintf(verity_verify_args, max_verify_size,
				" root_hash_sig_key_desc %s", tgt-&gt;u.verity.root_hash_sig_key_desc);
		if (r &lt; 0 || r &gt;= max_verify_size)
			goto out;
	} else
		*verity_verify_args = '\0';

	if (num_options) {  /* MAX length int32 + 18 + 22 + 20 + 19 + 19 + 22 */
		r = snprintf(features, sizeof(features), " %d%s%s%s%s%s%s", num_options,
		(flags &amp; CRYPT_ACTIVATE_IGNORE_CORRUPTION) ? " ignore_corruption" : "",
		(flags &amp; CRYPT_ACTIVATE_RESTART_ON_CORRUPTION) ? " restart_on_corruption" : "",
		(flags &amp; CRYPT_ACTIVATE_PANIC_ON_CORRUPTION) ? " panic_on_corruption" : "",
		(flags &amp; CRYPT_ACTIVATE_IGNORE_ZERO_BLOCKS) ? " ignore_zero_blocks" : "",
		(flags &amp; CRYPT_ACTIVATE_CHECK_AT_MOST_ONCE) ? " check_at_most_once" : "",
		(flags &amp; CRYPT_ACTIVATE_TASKLETS) ? " try_verify_in_tasklet" : "");
		if (r &lt; 0 || (size_t)r &gt;= sizeof(features))
			goto out;
	} else
		*features = '\0';

	hexroot = crypt_bytes_to_hex(tgt-&gt;u.verity.root_hash_size, tgt-&gt;u.verity.root_hash);
	if (!hexroot)
		goto out;

	hexsalt = crypt_bytes_to_hex(vp-&gt;salt_size, vp-&gt;salt);
	if (!hexsalt)
		goto out;

	max_size = strlen(hexroot) + strlen(hexsalt) +
		   strlen(device_block_path(tgt-&gt;data_device)) +
		   strlen(device_block_path(tgt-&gt;u.verity.hash_device)) +
		   strlen(vp-&gt;hash_name) + strlen(features) + strlen(fec_features) + 128 +
		   strlen(verity_verify_args);

	params = crypt_safe_alloc(max_size);
	if (!params)
		goto out;

	r = snprintf(params, max_size,
		     "%u %s %s %u %u %" PRIu64 " %" PRIu64 " %s %s %s%s%s%s",
		     vp-&gt;hash_type, device_block_path(tgt-&gt;data_device),
		     device_block_path(tgt-&gt;u.verity.hash_device),
		     vp-&gt;data_block_size, vp-&gt;hash_block_size,
		     vp-&gt;data_size, tgt-&gt;u.verity.hash_offset,
		     vp-&gt;hash_name, hexroot, hexsalt, features, fec_features,
		     verity_verify_args);
	if (r &lt; 0 || r &gt;= max_size) {
		crypt_safe_free(params);
		params = NULL;
	}
out:
	crypt_safe_free(fec_features);
	crypt_safe_free(verity_verify_args);
	crypt_safe_free(hexroot);
	crypt_safe_free(hexsalt);
	return params;
}

static char *get_dm_integrity_params(const struct dm_target *tgt, uint32_t flags)
{
	int r, max_size, max_integrity, max_journal_integrity, max_journal_crypt, num_options = 0;
	char *params_out = NULL, *params, *hexkey, mode, feature[6][32];
	char *features, *integrity, *journal_integrity, *journal_crypt;

	if (!tgt)
		return NULL;

	max_integrity = (tgt-&gt;u.integrity.integrity &amp;&amp; tgt-&gt;u.integrity.vk ? tgt-&gt;u.integrity.vk-&gt;keylength * 2 : 0) +
		(tgt-&gt;u.integrity.integrity ? strlen(tgt-&gt;u.integrity.integrity) : 0) + 32;
	max_journal_integrity = (tgt-&gt;u.integrity.journal_integrity &amp;&amp; tgt-&gt;u.integrity.journal_integrity_key ?
		tgt-&gt;u.integrity.journal_integrity_key-&gt;keylength * 2 : 0) +
		(tgt-&gt;u.integrity.journal_integrity ? strlen(tgt-&gt;u.integrity.journal_integrity) : 0) + 32;
	max_journal_crypt = (tgt-&gt;u.integrity.journal_crypt &amp;&amp; tgt-&gt;u.integrity.journal_crypt_key ?
		tgt-&gt;u.integrity.journal_crypt_key-&gt;keylength * 2 : 0) +
		(tgt-&gt;u.integrity.journal_crypt ? strlen(tgt-&gt;u.integrity.journal_crypt) : 0) + 32;
	max_size = strlen(device_block_path(tgt-&gt;data_device)) +
		(tgt-&gt;u.integrity.meta_device ? strlen(device_block_path(tgt-&gt;u.integrity.meta_device)) : 0) +
		max_integrity + max_journal_integrity + max_journal_crypt + 512;

	params = crypt_safe_alloc(max_size);
	features = crypt_safe_alloc(max_size);
	integrity = crypt_safe_alloc(max_integrity);
	journal_integrity = crypt_safe_alloc(max_journal_integrity);
	journal_crypt = crypt_safe_alloc(max_journal_crypt);
	if (!params || !features || !integrity || !journal_integrity || !journal_crypt)
		goto out;

	if (tgt-&gt;u.integrity.integrity) { /* MAX length 16 + str_integrity +  str_key */
		num_options++;

		if (tgt-&gt;u.integrity.vk) {
			hexkey = crypt_bytes_to_hex(tgt-&gt;u.integrity.vk-&gt;keylength, tgt-&gt;u.integrity.vk-&gt;key);
			if (!hexkey)
				goto out;
		} else
			hexkey = NULL;

		r = snprintf(integrity, max_integrity, " internal_hash:%s%s%s",
			 tgt-&gt;u.integrity.integrity, hexkey ? ":" : "", hexkey ?: "");
		crypt_safe_free(hexkey);
		if (r &lt; 0 || r &gt;= max_integrity)
			goto out;
	}

	if (tgt-&gt;u.integrity.journal_integrity) { /* MAX length 14 + str_journal_integrity + str_key */
		num_options++;

		if (tgt-&gt;u.integrity.journal_integrity_key) {
			hexkey = crypt_bytes_to_hex( tgt-&gt;u.integrity.journal_integrity_key-&gt;keylength,
				tgt-&gt;u.integrity.journal_integrity_key-&gt;key);
			if (!hexkey)
				goto out;
		} else
			hexkey = NULL;

		r = snprintf(journal_integrity, max_journal_integrity, " journal_mac:%s%s%s",
			 tgt-&gt;u.integrity.journal_integrity, hexkey ? ":" : "", hexkey ?: "");
		crypt_safe_free(hexkey);
		if (r &lt; 0 || r &gt;= max_journal_integrity)
			goto out;
	}

	if (tgt-&gt;u.integrity.journal_crypt) { /* MAX length 15 + str_journal_crypt + str_key */
		num_options++;

		if (tgt-&gt;u.integrity.journal_crypt_key) {
			hexkey = crypt_bytes_to_hex(tgt-&gt;u.integrity.journal_crypt_key-&gt;keylength,
				tgt-&gt;u.integrity.journal_crypt_key-&gt;key);
			if (!hexkey)
				goto out;
		} else
			hexkey = NULL;

		r = snprintf(journal_crypt, max_journal_crypt, " journal_crypt:%s%s%s",
			 tgt-&gt;u.integrity.journal_crypt, hexkey ? ":" : "", hexkey ?: "");
		crypt_safe_free(hexkey);
		if (r &lt; 0 || r &gt;= max_journal_crypt)
			goto out;
	}

	if (tgt-&gt;u.integrity.journal_size)
		num_options++;
	if (tgt-&gt;u.integrity.journal_watermark)
		num_options++;
	if (tgt-&gt;u.integrity.journal_commit_time)
		num_options++;
	if (tgt-&gt;u.integrity.interleave_sectors)
		num_options++;
	if (tgt-&gt;u.integrity.sector_size)
		num_options++;
	if (tgt-&gt;u.integrity.buffer_sectors)
		num_options++;
	if (tgt-&gt;u.integrity.fix_padding)
		num_options++;
	if (tgt-&gt;u.integrity.fix_hmac)
		num_options++;
	if (tgt-&gt;u.integrity.legacy_recalc)
		num_options++;
	if (tgt-&gt;u.integrity.meta_device)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_RECALCULATE)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_RECALCULATE_RESET)
		num_options++;
	if (flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS)
		num_options++;

	r = snprintf(features, max_size, "%d%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s", num_options,
		tgt-&gt;u.integrity.journal_size ? _uf(feature[0], sizeof(feature[0]), /* MAX length 17 + int32 */
			"journal_sectors", (unsigned)(tgt-&gt;u.integrity.journal_size / SECTOR_SIZE)) : "",
		tgt-&gt;u.integrity.journal_watermark ? _uf(feature[1], sizeof(feature[1]), /* MAX length 19 + int32 */
			 /* bitmap overloaded values */
			 (flags &amp; CRYPT_ACTIVATE_NO_JOURNAL_BITMAP) ? "sectors_per_bit" : "journal_watermark",
			 tgt-&gt;u.integrity.journal_watermark) : "",
		tgt-&gt;u.integrity.journal_commit_time ? _uf(feature[2], sizeof(feature[2]), /* MAX length 23 + int32 */
			 /* bitmap overloaded values */
			 (flags &amp; CRYPT_ACTIVATE_NO_JOURNAL_BITMAP) ? "bitmap_flush_interval" : "commit_time",
			 tgt-&gt;u.integrity.journal_commit_time) : "",
		tgt-&gt;u.integrity.interleave_sectors ? _uf(feature[3], sizeof(feature[3]), /* MAX length 20 + int32 */
			"interleave_sectors", tgt-&gt;u.integrity.interleave_sectors) : "",
		tgt-&gt;u.integrity.sector_size ? _uf(feature[4], sizeof(feature[4]), /* MAX length 12 + int32 */
			"block_size", tgt-&gt;u.integrity.sector_size) : "",
		tgt-&gt;u.integrity.buffer_sectors ? _uf(feature[5], sizeof(feature[5]), /* MAX length 16 + int32 */
			"buffer_sectors", tgt-&gt;u.integrity.buffer_sectors) : "",
		tgt-&gt;u.integrity.integrity ? integrity : "",
		tgt-&gt;u.integrity.journal_integrity ? journal_integrity : "",
		tgt-&gt;u.integrity.journal_crypt ? journal_crypt : "",
		tgt-&gt;u.integrity.fix_padding ?  " fix_padding" : "", /* MAX length 12 */
		tgt-&gt;u.integrity.fix_hmac ?  " fix_hmac" : "", /* MAX length 9 */
		tgt-&gt;u.integrity.legacy_recalc ? " legacy_recalculate" : "", /* MAX length 19 */
		flags &amp; CRYPT_ACTIVATE_RECALCULATE ? " recalculate" : "", /* MAX length 12 */
		flags &amp; CRYPT_ACTIVATE_RECALCULATE_RESET ? " reset_recalculate" : "", /* MAX length 18 */
		flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS ? " allow_discards" : "", /* MAX length 15 */
		tgt-&gt;u.integrity.meta_device ? " meta_device:" : "", /* MAX length 13 + str_device */
		tgt-&gt;u.integrity.meta_device ? device_block_path(tgt-&gt;u.integrity.meta_device) : "");
	if (r &lt; 0 || r &gt;= max_size)
		goto out;

	if (flags &amp; CRYPT_ACTIVATE_NO_JOURNAL_BITMAP)
		mode = 'B';
	else if (flags &amp; CRYPT_ACTIVATE_RECOVERY)
		mode = 'R';
	else if (flags &amp; CRYPT_ACTIVATE_NO_JOURNAL)
		mode = 'D';
	else
		mode = 'J';

	r = snprintf(params, max_size, "%s %" PRIu64 " %d %c %s",
		     device_block_path(tgt-&gt;data_device), tgt-&gt;u.integrity.offset,
		     tgt-&gt;u.integrity.tag_size, mode, features);
	if (r &lt; 0 || r &gt;= max_size)
		goto out;

	params_out = params;
out:
	crypt_safe_free(features);
	crypt_safe_free(integrity);
	crypt_safe_free(journal_integrity);
	crypt_safe_free(journal_crypt);
	if (!params_out)
		crypt_safe_free(params);

	return params_out;
}

static char *get_dm_linear_params(const struct dm_target *tgt)
{
	char *params;
	int r;
	int max_size = strlen(device_block_path(tgt-&gt;data_device)) + int_log10(tgt-&gt;u.linear.offset) + 3;

	params = crypt_safe_alloc(max_size);
	if (!params)
		return NULL;

	r = snprintf(params, max_size, "%s %" PRIu64,
		     device_block_path(tgt-&gt;data_device), tgt-&gt;u.linear.offset);

	if (r &lt; 0 || r &gt;= max_size) {
		crypt_safe_free(params);
		params = NULL;
	}

	return params;
}

static char *get_dm_zero_params(void)
{
	char *params = crypt_safe_alloc(1);
	if (!params)
		return NULL;

	params[0] = 0;
	return params;
}

/* DM helpers */
static int _dm_remove(const char *name, int udev_wait, int deferred)
{
	int r = 0;
	struct dm_task *dmt;
	uint32_t cookie = 0;

	if (!_dm_use_udev())
		udev_wait = 0;

	if (!(dmt = dm_task_create(DM_DEVICE_REMOVE)))
		return 0;

	if (!dm_task_set_name(dmt, name))
		goto out;

#if HAVE_DECL_DM_TASK_RETRY_REMOVE
	if (!dm_task_retry_remove(dmt))
		goto out;
#endif
#if HAVE_DECL_DM_TASK_DEFERRED_REMOVE
	if (deferred &amp;&amp; !dm_task_deferred_remove(dmt))
		goto out;
#endif
	if (udev_wait &amp;&amp; !_dm_task_set_cookie(dmt, &amp;cookie, DM_UDEV_DISABLE_LIBRARY_FALLBACK))
		goto out;

	r = dm_task_run(dmt);

	if (udev_wait)
		(void)_dm_udev_wait(cookie);
out:
	dm_task_destroy(dmt);
	return r;
}

static int _dm_simple(int task, const char *name, uint32_t dmflags)
{
	int r = 0;
	struct dm_task *dmt;

	if (!(dmt = dm_task_create(task)))
		return 0;

	if (name &amp;&amp; !dm_task_set_name(dmt, name))
		goto out;

	if (task == DM_DEVICE_SUSPEND &amp;&amp;
	    (dmflags &amp; DM_SUSPEND_SKIP_LOCKFS) &amp;&amp; !dm_task_skip_lockfs(dmt))
		goto out;

	if (task == DM_DEVICE_SUSPEND &amp;&amp;
	    (dmflags &amp; DM_SUSPEND_NOFLUSH) &amp;&amp; !dm_task_no_flush(dmt))
		goto out;

	r = dm_task_run(dmt);
out:
	dm_task_destroy(dmt);
	return r;
}

static int _dm_resume_device(const char *name, uint32_t flags);

static int _error_device(const char *name, size_t size)
{
	struct dm_task *dmt;
	int r = 0;

	if (!(dmt = dm_task_create(DM_DEVICE_RELOAD)))
		return 0;

	if (!dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_add_target(dmt, UINT64_C(0), size, "error", ""))
		goto out;

	if (!dm_task_set_ro(dmt))
		goto out;

	if (!dm_task_no_open_count(dmt))
		goto out;

	if (!dm_task_run(dmt))
		goto out;

	if (_dm_resume_device(name, 0)) {
		_dm_simple(DM_DEVICE_CLEAR, name, 0);
		goto out;
	}

	r = 1;
out:
	dm_task_destroy(dmt);
	return r;
}

int dm_error_device(struct crypt_device *cd, const char *name)
{
	int r;
	struct crypt_dm_active_device dmd;

	if (!name)
		return -EINVAL;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	if ((dm_query_device(cd, name, 0, &amp;dmd) &gt;= 0) &amp;&amp; _error_device(name, dmd.size))
		r = 0;
	else
		r = -EINVAL;

	dm_targets_free(cd, &amp;dmd);

	dm_exit_context();

	return r;
}

int dm_clear_device(struct crypt_device *cd, const char *name)
{
	int r;

	if (!name)
		return -EINVAL;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	if (_dm_simple(DM_DEVICE_CLEAR, name, 0))
		r = 0;
	else
		r = -EINVAL;

	dm_exit_context();

	return r;
}

int dm_remove_device(struct crypt_device *cd, const char *name, uint32_t flags)
{
	struct crypt_dm_active_device dmd = {};
	int r = -EINVAL;
	int retries = (flags &amp; CRYPT_DEACTIVATE_FORCE) ? RETRY_COUNT : 1;
	int deferred = (flags &amp; CRYPT_DEACTIVATE_DEFERRED) ? 1 : 0;
	int error_target = 0;
	uint32_t dmt_flags;

	if (!name)
		return -EINVAL;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	if (deferred &amp;&amp; !dm_flags(cd, DM_UNKNOWN, &amp;dmt_flags) &amp;&amp; !(dmt_flags &amp; DM_DEFERRED_SUPPORTED)) {
		log_err(cd, _("Requested deferred flag is not supported."));
		dm_exit_context();
		return -ENOTSUP;
	}

	do {
		r = _dm_remove(name, 1, deferred) ? 0 : -EINVAL;
		if (--retries &amp;&amp; r) {
			log_dbg(cd, "WARNING: other process locked internal device %s, %s.",
				name, retries ? "retrying remove" : "giving up");
			sleep(1);
			if ((flags &amp; CRYPT_DEACTIVATE_FORCE) &amp;&amp; !error_target) {
				/* If force flag is set, replace device with error, read-only target.
				 * it should stop processes from reading it and also removed underlying
				 * device from mapping, so it is usable again.
				 * Anyway, if some process try to read temporary cryptsetup device,
				 * it is bug - no other process should try touch it (e.g. udev).
				 */
				if (!dm_query_device(cd, name, 0, &amp;dmd)) {
					_error_device(name, dmd.size);
					error_target = 1;
				}
			}
		}
	} while (r == -EINVAL &amp;&amp; retries);

	dm_task_update_nodes();
	dm_exit_context();

	return r;
}

#define UUID_LEN 37 /* 36 + \0, libuuid ... */
/*
 * UUID has format: CRYPT-&lt;devicetype&gt;-[&lt;uuid&gt;-]&lt;device name&gt;
 * CRYPT-PLAIN-name
 * CRYPT-LUKS1-00000000000000000000000000000000-name
 * CRYPT-TEMP-name
 */
static int dm_prepare_uuid(struct crypt_device *cd, const char *name, const char *type,
			    const char *uuid, char *buf, size_t buflen)
{
	char *ptr, uuid2[UUID_LEN] = {0};
	uuid_t uu;
	int i = 0;

	/* Remove '-' chars */
	if (uuid) {
		if (uuid_parse(uuid, uu) &lt; 0) {
			log_dbg(cd, "Requested UUID %s has invalid format.", uuid);
			return 0;
		}

		for (ptr = uuid2, i = 0; i &lt; UUID_LEN; i++)
			if (uuid[i] != '-') {
				*ptr = uuid[i];
				ptr++;
			}
	}

	i = snprintf(buf, buflen, DM_UUID_PREFIX "%s%s%s%s%s",
		type ?: "", type ? "-" : "",
		uuid2[0] ? uuid2 : "", uuid2[0] ? "-" : "",
		name);
	if (i &lt; 0)
		return 0;

	log_dbg(cd, "DM-UUID is %s", buf);
	if ((size_t)i &gt;= buflen)
		log_err(cd, _("DM-UUID for device %s was truncated."), name);

	return 1;
}

int lookup_dm_dev_by_uuid(struct crypt_device *cd, const char *uuid, const char *type)
{
	int r_udev, r;
	char *c;
	char dev_uuid[DM_UUID_LEN + DM_BY_ID_PREFIX_LEN] = DM_BY_ID_PREFIX;

	if (!dm_prepare_uuid(cd, "", type, uuid, dev_uuid + DM_BY_ID_PREFIX_LEN, DM_UUID_LEN))
		return -EINVAL;

	c = strrchr(dev_uuid, '-');
	if (!c)
		return -EINVAL;

	/* cut of dm name */
	*c = '\0';

	/* Either udev or sysfs can report that device is active. */
	r = lookup_by_disk_id(dev_uuid);
	if (r &gt; 0)
		return r;

	r_udev = r;
	r = lookup_by_sysfs_uuid_field(dev_uuid + DM_BY_ID_PREFIX_LEN);

	return r == -ENOENT ? r_udev : r;
}

static int _add_dm_targets(struct dm_task *dmt, struct crypt_dm_active_device *dmd)
{
	const char *target;
	struct dm_target *tgt = &amp;dmd-&gt;segment;

	do {
		switch (tgt-&gt;type) {
		case DM_CRYPT:
			target = DM_CRYPT_TARGET;
			break;
		case DM_VERITY:
			target = DM_VERITY_TARGET;
			break;
		case DM_INTEGRITY:
			target = DM_INTEGRITY_TARGET;
			break;
		case DM_LINEAR:
			target = DM_LINEAR_TARGET;
			break;
		case DM_ZERO:
			target = DM_ZERO_TARGET;
			break;
		default:
			return -ENOTSUP;
		}

		if (!dm_task_add_target(dmt, tgt-&gt;offset, tgt-&gt;size, target, tgt-&gt;params))
			return -EINVAL;

		tgt = tgt-&gt;next;
	} while (tgt);

	return 0;
}

static void _destroy_dm_targets_params(struct crypt_dm_active_device *dmd)
{
	struct dm_target *t = &amp;dmd-&gt;segment;

	do {
		crypt_safe_free(t-&gt;params);
		t-&gt;params = NULL;
		t = t-&gt;next;
	} while (t);
}

static int _create_dm_targets_params(struct crypt_dm_active_device *dmd)
{
	int r;
	struct dm_target *tgt = &amp;dmd-&gt;segment;

	do {
		if (tgt-&gt;type == DM_CRYPT)
			tgt-&gt;params = get_dm_crypt_params(tgt, dmd-&gt;flags);
		else if (tgt-&gt;type == DM_VERITY)
			tgt-&gt;params = get_dm_verity_params(tgt, dmd-&gt;flags);
		else if (tgt-&gt;type == DM_INTEGRITY)
			tgt-&gt;params = get_dm_integrity_params(tgt, dmd-&gt;flags);
		else if (tgt-&gt;type == DM_LINEAR)
			tgt-&gt;params = get_dm_linear_params(tgt);
		else if (tgt-&gt;type == DM_ZERO)
			tgt-&gt;params = get_dm_zero_params();
		else {
			r = -ENOTSUP;
			goto err;
		}

		if (!tgt-&gt;params) {
			r = -EINVAL;
			goto err;
		}
		tgt = tgt-&gt;next;
	} while (tgt);

	return 0;
err:
	_destroy_dm_targets_params(dmd);
	return r;
}

static int _dm_create_device(struct crypt_device *cd, const char *name, const char *type,
			     struct crypt_dm_active_device *dmd)
{
	struct dm_task *dmt = NULL;
	struct dm_info dmi;
	char dev_uuid[DM_UUID_LEN] = {0};
	int r = -EINVAL;
	uint32_t cookie = 0, read_ahead = 0;
	uint16_t udev_flags = DM_UDEV_DISABLE_LIBRARY_FALLBACK;

	if (dmd-&gt;flags &amp; CRYPT_ACTIVATE_PRIVATE)
		udev_flags |= CRYPT_TEMP_UDEV_FLAGS;

	/* All devices must have DM_UUID, only resize on old device is exception */
	if (!dm_prepare_uuid(cd, name, type, dmd-&gt;uuid, dev_uuid, sizeof(dev_uuid)))
		goto out;

	if (!(dmt = dm_task_create(DM_DEVICE_CREATE)))
		goto out;

	if (!dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_set_uuid(dmt, dev_uuid))
		goto out;

	if (!dm_task_secure_data(dmt))
		goto out;
	if ((dmd-&gt;flags &amp; CRYPT_ACTIVATE_READONLY) &amp;&amp; !dm_task_set_ro(dmt))
		goto out;

	r = _create_dm_targets_params(dmd);
	if (r)
		goto out;

	r = _add_dm_targets(dmt, dmd);
	if (r)
		goto out;

	r = -EINVAL;

#ifdef DM_READ_AHEAD_MINIMUM_FLAG
	if (device_read_ahead(dmd-&gt;segment.data_device, &amp;read_ahead) &amp;&amp;
	    !dm_task_set_read_ahead(dmt, read_ahead, DM_READ_AHEAD_MINIMUM_FLAG))
		goto out;
#endif
	if (_dm_use_udev() &amp;&amp; !_dm_task_set_cookie(dmt, &amp;cookie, udev_flags))
		goto out;

	if (!dm_task_run(dmt)) {

		r = -dm_task_get_errno(dmt);
		if (r == -ENOKEY || r == -EKEYREVOKED || r == -EKEYEXPIRED) {
			/* propagate DM errors around key management as such */
			r = -ENOKEY;
			goto out;
		}

		r = dm_status_device(cd, name);
		if (r &gt;= 0)
			r = -EEXIST;
		if (r != -EEXIST &amp;&amp; r != -ENODEV)
			r = -EINVAL;
		goto out;
	}

	if (dm_task_get_info(dmt, &amp;dmi))
		r = 0;

	if (_dm_use_udev()) {
		(void)_dm_udev_wait(cookie);
		cookie = 0;
	}

	if (r &lt; 0)
		_dm_remove(name, 1, 0);

out:
	if (cookie &amp;&amp; _dm_use_udev())
		(void)_dm_udev_wait(cookie);

	if (dmt)
		dm_task_destroy(dmt);

	dm_task_update_nodes();

	/* If code just loaded target module, update versions */
	_dm_check_versions(cd, dmd-&gt;segment.type);

	_destroy_dm_targets_params(dmd);

	return r;
}

static int _dm_resume_device(const char *name, uint32_t dmflags)
{
	struct dm_task *dmt;
	int r = -EINVAL;
	uint32_t cookie = 0;
	uint16_t udev_flags = DM_UDEV_DISABLE_LIBRARY_FALLBACK;

	if (dmflags &amp; DM_RESUME_PRIVATE)
		udev_flags |= CRYPT_TEMP_UDEV_FLAGS;

	if (!(dmt = dm_task_create(DM_DEVICE_RESUME)))
		return r;

	if (!dm_task_set_name(dmt, name))
		goto out;

	if ((dmflags &amp; DM_SUSPEND_SKIP_LOCKFS) &amp;&amp; !dm_task_skip_lockfs(dmt))
		goto out;

	if ((dmflags &amp; DM_SUSPEND_NOFLUSH) &amp;&amp; !dm_task_no_flush(dmt))
		goto out;

	if (_dm_use_udev() &amp;&amp; !_dm_task_set_cookie(dmt, &amp;cookie, udev_flags))
		goto out;

	if (dm_task_run(dmt))
		r = 0;
out:
	if (cookie &amp;&amp; _dm_use_udev())
		(void)_dm_udev_wait(cookie);

	dm_task_destroy(dmt);

	dm_task_update_nodes();

	return r;
}

static int _dm_reload_device(struct crypt_device *cd, const char *name,
			     struct crypt_dm_active_device *dmd)
{
	int r = -EINVAL;
	struct dm_task *dmt = NULL;
	uint32_t read_ahead = 0;

	/* All devices must have DM_UUID, only resize on old device is exception */
	if (!(dmt = dm_task_create(DM_DEVICE_RELOAD)))
		goto out;

	if (!dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_secure_data(dmt))
		goto out;
	if ((dmd-&gt;flags &amp; CRYPT_ACTIVATE_READONLY) &amp;&amp; !dm_task_set_ro(dmt))
		goto out;

	r = _create_dm_targets_params(dmd);
	if (r)
		goto out;

	r = _add_dm_targets(dmt, dmd);
	if (r)
		goto out;

	r = -EINVAL;

#ifdef DM_READ_AHEAD_MINIMUM_FLAG
	if (device_read_ahead(dmd-&gt;segment.data_device, &amp;read_ahead) &amp;&amp;
	    !dm_task_set_read_ahead(dmt, read_ahead, DM_READ_AHEAD_MINIMUM_FLAG))
		goto out;
#endif

	if (dm_task_run(dmt))
		r = 0;
out:
	if (dmt)
		dm_task_destroy(dmt);

	/* If code just loaded target module, update versions */
	_dm_check_versions(cd, dmd-&gt;segment.type);

	_destroy_dm_targets_params(dmd);

	return r;
}

static void crypt_free_verity_params(struct crypt_params_verity *vp)
{
	if (!vp)
		return;

	free(CONST_CAST(void*)vp-&gt;hash_name);
	free(CONST_CAST(void*)vp-&gt;data_device);
	free(CONST_CAST(void*)vp-&gt;hash_device);
	free(CONST_CAST(void*)vp-&gt;fec_device);
	free(CONST_CAST(void*)vp-&gt;salt);
	free(vp);
}

static void _dm_target_free_query_path(struct crypt_device *cd, struct dm_target *tgt)
{
	switch(tgt-&gt;type) {
	case DM_CRYPT:
		crypt_free_volume_key(tgt-&gt;u.crypt.vk);
		free(CONST_CAST(void*)tgt-&gt;u.crypt.cipher);
		break;
	case DM_INTEGRITY:
		free(CONST_CAST(void*)tgt-&gt;u.integrity.integrity);
		crypt_free_volume_key(tgt-&gt;u.integrity.vk);

		free(CONST_CAST(void*)tgt-&gt;u.integrity.journal_integrity);
		crypt_free_volume_key(tgt-&gt;u.integrity.journal_integrity_key);

		free(CONST_CAST(void*)tgt-&gt;u.integrity.journal_crypt);
		crypt_free_volume_key(tgt-&gt;u.integrity.journal_crypt_key);

		device_free(cd, tgt-&gt;u.integrity.meta_device);
		break;
	case DM_VERITY:
		crypt_free_verity_params(tgt-&gt;u.verity.vp);
		device_free(cd, tgt-&gt;u.verity.hash_device);
		free(CONST_CAST(void*)tgt-&gt;u.verity.root_hash);
		free(CONST_CAST(void*)tgt-&gt;u.verity.root_hash_sig_key_desc);
		/* fall through */
	case DM_LINEAR:
		/* fall through */
	case DM_ERROR:
		/* fall through */
	case DM_ZERO:
		break;
	default:
		log_err(cd, _("Unknown dm target type."));
		return;
	}

	device_free(cd, tgt-&gt;data_device);
}

static void _dm_target_erase(struct crypt_device *cd, struct dm_target *tgt)
{
	if (tgt-&gt;direction == TARGET_EMPTY)
		return;

	if (tgt-&gt;direction == TARGET_QUERY)
		_dm_target_free_query_path(cd, tgt);

	if (tgt-&gt;type == DM_CRYPT)
		free(CONST_CAST(void*)tgt-&gt;u.crypt.integrity);
}

void dm_targets_free(struct crypt_device *cd, struct crypt_dm_active_device *dmd)
{
	struct dm_target *t = &amp;dmd-&gt;segment, *next = t-&gt;next;

	_dm_target_erase(cd, t);

	while (next) {
		t = next;
		next = t-&gt;next;
		_dm_target_erase(cd, t);
		free(t);
	}

	memset(&amp;dmd-&gt;segment, 0, sizeof(dmd-&gt;segment));
}

int dm_targets_allocate(struct dm_target *first, unsigned count)
{
	if (!first || first-&gt;next || !count)
		return -EINVAL;

	while (--count) {
		first-&gt;next = crypt_zalloc(sizeof(*first));
		if (!first-&gt;next)
			return -ENOMEM;
		first = first-&gt;next;
	}

	return 0;
}

static int check_retry(struct crypt_device *cd, uint32_t *dmd_flags, uint32_t dmt_flags)
{
	int ret = 0;

	/* If discard not supported try to load without discard */
	if ((*dmd_flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS) &amp;&amp;
	    !(dmt_flags &amp; DM_DISCARDS_SUPPORTED)) {
		log_dbg(cd, "Discard/TRIM is not supported");
		*dmd_flags = *dmd_flags &amp; ~CRYPT_ACTIVATE_ALLOW_DISCARDS;
		ret = 1;
	}

	/* If kernel keyring is not supported load key directly in dm-crypt */
	if ((*dmd_flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) &amp;&amp;
	    !(dmt_flags &amp; DM_KERNEL_KEYRING_SUPPORTED)) {
		log_dbg(cd, "dm-crypt does not support kernel keyring");
		*dmd_flags = *dmd_flags &amp; ~CRYPT_ACTIVATE_KEYRING_KEY;
		ret = 1;
	}

	/* Drop performance options if not supported */
	if ((*dmd_flags &amp; (CRYPT_ACTIVATE_SAME_CPU_CRYPT | CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS)) &amp;&amp;
	    !(dmt_flags &amp; (DM_SAME_CPU_CRYPT_SUPPORTED | DM_SUBMIT_FROM_CRYPT_CPUS_SUPPORTED))) {
		log_dbg(cd, "dm-crypt does not support performance options");
		*dmd_flags = *dmd_flags &amp; ~(CRYPT_ACTIVATE_SAME_CPU_CRYPT | CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS);
		ret = 1;
	}

	/* Drop no workqueue options if not supported */
	if ((*dmd_flags &amp; (CRYPT_ACTIVATE_NO_READ_WORKQUEUE | CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE)) &amp;&amp;
	    !(dmt_flags &amp; DM_CRYPT_NO_WORKQUEUE_SUPPORTED)) {
		log_dbg(cd, "dm-crypt does not support performance options");
		*dmd_flags = *dmd_flags &amp; ~(CRYPT_ACTIVATE_NO_READ_WORKQUEUE | CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE);
		ret = 1;
	}

	return ret;
}

int dm_create_device(struct crypt_device *cd, const char *name,
		     const char *type,
		     struct crypt_dm_active_device *dmd)
{
	uint32_t dmt_flags = 0;
	int r = -EINVAL;

	if (!type || !dmd)
		return -EINVAL;

	if (dm_init_context(cd, dmd-&gt;segment.type))
		return -ENOTSUP;

	r = _dm_create_device(cd, name, type, dmd);
	if (!r || r == -EEXIST)
		goto out;

	if (dm_flags(cd, dmd-&gt;segment.type, &amp;dmt_flags))
		goto out;

	if ((dmd-&gt;segment.type == DM_CRYPT || dmd-&gt;segment.type == DM_LINEAR || dmd-&gt;segment.type == DM_ZERO) &amp;&amp;
		check_retry(cd, &amp;dmd-&gt;flags, dmt_flags)) {
		log_dbg(cd, "Retrying open without incompatible options.");
		r = _dm_create_device(cd, name, type, dmd);
		if (!r || r == -EEXIST)
			goto out;
	}

	if (dmd-&gt;flags &amp; (CRYPT_ACTIVATE_SAME_CPU_CRYPT|CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS) &amp;&amp;
	    !(dmt_flags &amp; (DM_SAME_CPU_CRYPT_SUPPORTED|DM_SUBMIT_FROM_CRYPT_CPUS_SUPPORTED))) {
		log_err(cd, _("Requested dm-crypt performance options are not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;flags &amp; (CRYPT_ACTIVATE_NO_READ_WORKQUEUE | CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE) &amp;&amp;
	    !(dmt_flags &amp; DM_CRYPT_NO_WORKQUEUE_SUPPORTED)) {
		log_err(cd, _("Requested dm-crypt performance options are not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;flags &amp; (CRYPT_ACTIVATE_IGNORE_CORRUPTION|
			  CRYPT_ACTIVATE_RESTART_ON_CORRUPTION|
			  CRYPT_ACTIVATE_IGNORE_ZERO_BLOCKS|
			  CRYPT_ACTIVATE_CHECK_AT_MOST_ONCE) &amp;&amp;
	    !(dmt_flags &amp; DM_VERITY_ON_CORRUPTION_SUPPORTED)) {
		log_err(cd, _("Requested dm-verity data corruption handling options are not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;flags &amp; CRYPT_ACTIVATE_TASKLETS &amp;&amp;
	    !(dmt_flags &amp; DM_VERITY_TASKLETS_SUPPORTED)) {
		log_err(cd, _("Requested dm-verity tasklets option is not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;flags &amp; CRYPT_ACTIVATE_PANIC_ON_CORRUPTION &amp;&amp;
	    !(dmt_flags &amp; DM_VERITY_PANIC_CORRUPTION_SUPPORTED)) {
		log_err(cd, _("Requested dm-verity data corruption handling options are not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;segment.type == DM_VERITY &amp;&amp;
	    dmd-&gt;segment.u.verity.fec_device &amp;&amp; !(dmt_flags &amp; DM_VERITY_FEC_SUPPORTED)) {
		log_err(cd, _("Requested dm-verity FEC options are not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;segment.type == DM_CRYPT) {
		if (dmd-&gt;segment.u.crypt.integrity &amp;&amp; !(dmt_flags &amp; DM_INTEGRITY_SUPPORTED)) {
			log_err(cd, _("Requested data integrity options are not supported."));
			r = -EINVAL;
		}
		if (dmd-&gt;segment.u.crypt.sector_size != SECTOR_SIZE &amp;&amp; !(dmt_flags &amp; DM_SECTOR_SIZE_SUPPORTED)) {
			log_err(cd, _("Requested sector_size option is not supported."));
			r = -EINVAL;
		}
		if (dmd-&gt;segment.u.crypt.sector_size &gt; SECTOR_SIZE &amp;&amp;
		    dmd-&gt;size % dmd-&gt;segment.u.crypt.sector_size) {
			log_err(cd, _("The device size is not multiple of the requested sector size."));
			r = -EINVAL;
		}
	}

	if (dmd-&gt;segment.type == DM_INTEGRITY &amp;&amp; (dmd-&gt;flags &amp; CRYPT_ACTIVATE_RECALCULATE) &amp;&amp;
	    !(dmt_flags &amp; DM_INTEGRITY_RECALC_SUPPORTED)) {
		log_err(cd, _("Requested automatic recalculation of integrity tags is not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;segment.type == DM_INTEGRITY &amp;&amp; (dmd-&gt;flags &amp; CRYPT_ACTIVATE_RECALCULATE_RESET) &amp;&amp;
	    !(dmt_flags &amp; DM_INTEGRITY_RESET_RECALC_SUPPORTED)) {
		log_err(cd, _("Requested automatic recalculation of integrity tags is not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;segment.type == DM_INTEGRITY &amp;&amp; (dmd-&gt;flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS) &amp;&amp;
	    !(dmt_flags &amp; DM_INTEGRITY_DISCARDS_SUPPORTED)) {
		log_err(cd, _("Discard/TRIM is not supported."));
		r = -EINVAL;
	}

	if (dmd-&gt;segment.type == DM_INTEGRITY &amp;&amp; (dmd-&gt;flags &amp; CRYPT_ACTIVATE_NO_JOURNAL_BITMAP) &amp;&amp;
	    !(dmt_flags &amp; DM_INTEGRITY_BITMAP_SUPPORTED)) {
		log_err(cd, _("Requested dm-integrity bitmap mode is not supported."));
		r = -EINVAL;
	}
out:
	/*
	 * Print warning if activating dm-crypt cipher_null device unless it's reencryption helper or
	 * keyslot encryption helper device (LUKS1 cipher_null devices).
	 */
	if (!r &amp;&amp; !(dmd-&gt;flags &amp; CRYPT_ACTIVATE_PRIVATE) &amp;&amp; single_segment(dmd) &amp;&amp; dmd-&gt;segment.type == DM_CRYPT &amp;&amp;
	    crypt_is_cipher_null(dmd-&gt;segment.u.crypt.cipher))
		log_dbg(cd, "Activated dm-crypt device with cipher_null. Device is not encrypted.");

	dm_exit_context();
	return r;
}

int dm_reload_device(struct crypt_device *cd, const char *name,
		     struct crypt_dm_active_device *dmd, uint32_t dmflags, unsigned resume)
{
	int r;
	uint32_t dmt_flags;

	if (!dmd)
		return -EINVAL;

	if (dm_init_context(cd, dmd-&gt;segment.type))
		return -ENOTSUP;

	if (dm_flags(cd, DM_INTEGRITY, &amp;dmt_flags) || !(dmt_flags &amp; DM_INTEGRITY_RECALC_SUPPORTED))
		dmd-&gt;flags &amp;= ~CRYPT_ACTIVATE_RECALCULATE;

	r = _dm_reload_device(cd, name, dmd);

	if (r == -EINVAL &amp;&amp; (dmd-&gt;segment.type == DM_CRYPT || dmd-&gt;segment.type == DM_LINEAR)) {
		if ((dmd-&gt;flags &amp; (CRYPT_ACTIVATE_SAME_CPU_CRYPT|CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS)) &amp;&amp;
		    !dm_flags(cd, DM_CRYPT, &amp;dmt_flags) &amp;&amp; !(dmt_flags &amp; (DM_SAME_CPU_CRYPT_SUPPORTED | DM_SUBMIT_FROM_CRYPT_CPUS_SUPPORTED)))
			log_err(cd, _("Requested dm-crypt performance options are not supported."));
		if ((dmd-&gt;flags &amp; (CRYPT_ACTIVATE_NO_READ_WORKQUEUE | CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE)) &amp;&amp;
		    !dm_flags(cd, DM_CRYPT, &amp;dmt_flags) &amp;&amp; !(dmt_flags &amp; DM_CRYPT_NO_WORKQUEUE_SUPPORTED))
			log_err(cd, _("Requested dm-crypt performance options are not supported."));
		if ((dmd-&gt;flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS) &amp;&amp;
		    !dm_flags(cd, DM_CRYPT, &amp;dmt_flags) &amp;&amp; !(dmt_flags &amp; DM_DISCARDS_SUPPORTED))
			log_err(cd, _("Discard/TRIM is not supported."));
		if ((dmd-&gt;flags &amp; CRYPT_ACTIVATE_ALLOW_DISCARDS) &amp;&amp;
		    !dm_flags(cd, DM_INTEGRITY, &amp;dmt_flags) &amp;&amp; !(dmt_flags &amp; DM_INTEGRITY_DISCARDS_SUPPORTED))
			log_err(cd, _("Discard/TRIM is not supported."));
	}

	if (!r &amp;&amp; resume)
		r = _dm_resume_device(name, dmflags | act2dmflags(dmd-&gt;flags));

	dm_exit_context();
	return r;
}

static int dm_status_dmi(const char *name, struct dm_info *dmi,
			  const char *target, char **status_line)
{
	struct dm_task *dmt;
	uint64_t start, length;
	char *target_type, *params = NULL;
	int r = -EINVAL;

	if (!(dmt = dm_task_create(DM_DEVICE_STATUS)))
		return r;

	if (!dm_task_no_flush(dmt))
		goto out;

	if (!dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_run(dmt))
		goto out;

	if (!dm_task_get_info(dmt, dmi))
		goto out;

	if (!dmi-&gt;exists) {
		r = -ENODEV;
		goto out;
	}

	r = -EEXIST;
	dm_get_next_target(dmt, NULL, &amp;start, &amp;length,
			   &amp;target_type, &amp;params);

	if (!target_type || start != 0)
		goto out;

	if (target &amp;&amp; strcmp(target_type, target))
		goto out;

	/* for target == NULL check all supported */
	if (!target &amp;&amp; (strcmp(target_type, DM_CRYPT_TARGET) &amp;&amp;
			strcmp(target_type, DM_VERITY_TARGET) &amp;&amp;
			strcmp(target_type, DM_INTEGRITY_TARGET) &amp;&amp;
			strcmp(target_type, DM_LINEAR_TARGET) &amp;&amp;
			strcmp(target_type, DM_ZERO_TARGET) &amp;&amp;
			strcmp(target_type, DM_ERROR_TARGET)))
		goto out;
	r = 0;
out:
	if (!r &amp;&amp; status_line &amp;&amp; !(*status_line = strdup(params)))
		r = -ENOMEM;

	dm_task_destroy(dmt);

	return r;
}

int dm_status_device(struct crypt_device *cd, const char *name)
{
	int r;
	struct dm_info dmi;
	struct stat st;

	/* libdevmapper is too clever and handles
	 * path argument differently with error.
	 * Fail early here if parameter is non-existent path.
	 */
	if (strchr(name, '/') &amp;&amp; stat(name, &amp;st) &lt; 0)
		return -ENODEV;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;
	r = dm_status_dmi(name, &amp;dmi, NULL, NULL);
	dm_exit_context();

	if (r &lt; 0)
		return r;

	return (dmi.open_count &gt; 0) ? 1 : 0;
}

int dm_status_suspended(struct crypt_device *cd, const char *name)
{
	int r;
	struct dm_info dmi;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;
	r = dm_status_dmi(name, &amp;dmi, NULL, NULL);
	dm_exit_context();

	if (r &lt; 0)
		return r;

	return dmi.suspended ? 1 : 0;
}

static int _dm_status_verity_ok(struct crypt_device *cd, const char *name)
{
	int r;
	struct dm_info dmi;
	char *status_line = NULL;

	r = dm_status_dmi(name, &amp;dmi, DM_VERITY_TARGET, &amp;status_line);
	if (r &lt; 0 || !status_line) {
		free(status_line);
		return r;
	}

	log_dbg(cd, "Verity volume %s status is %s.", name, status_line ?: "");
	r = status_line[0] == 'V' ? 1 : 0;
	free(status_line);

	return r;
}

int dm_status_verity_ok(struct crypt_device *cd, const char *name)
{
	int r;

	if (dm_init_context(cd, DM_VERITY))
		return -ENOTSUP;
	r = _dm_status_verity_ok(cd, name);
	dm_exit_context();
	return r;
}

int dm_status_integrity_failures(struct crypt_device *cd, const char *name, uint64_t *count)
{
	int r;
	struct dm_info dmi;
	char *status_line = NULL;

	if (dm_init_context(cd, DM_INTEGRITY))
		return -ENOTSUP;

	r = dm_status_dmi(name, &amp;dmi, DM_INTEGRITY_TARGET, &amp;status_line);
	if (r &lt; 0 || !status_line) {
		free(status_line);
		dm_exit_context();
		return r;
	}

	log_dbg(cd, "Integrity volume %s failure status is %s.", name, status_line ?: "");
	*count = strtoull(status_line, NULL, 10);
	free(status_line);
	dm_exit_context();

	return 0;
}

/* FIXME use hex wrapper, user val wrappers for line parsing */
static int _dm_target_query_crypt(struct crypt_device *cd, uint32_t get_flags,
				  char *params, struct dm_target *tgt,
				  uint32_t *act_flags)
{
	uint64_t val64;
	char *rcipher, *rintegrity, *key_, *rdevice, *endp, buffer[3], *arg, *key_desc;
	unsigned int i, val;
	int r;
	size_t key_size;
	struct device *data_device = NULL;
	char *cipher = NULL, *integrity = NULL;
	struct volume_key *vk = NULL;

	tgt-&gt;type = DM_CRYPT;
	tgt-&gt;direction = TARGET_QUERY;
	tgt-&gt;u.crypt.sector_size = SECTOR_SIZE;

	r = -EINVAL;

	rcipher = strsep(&amp;params, " ");
	rintegrity = NULL;

	/* skip */
	key_ = strsep(&amp;params, " ");
	if (!params)
		goto err;
	val64 = strtoull(params, &amp;params, 10);
	if (*params != ' ')
		goto err;
	params++;

	tgt-&gt;u.crypt.iv_offset = val64;

	/* device */
	rdevice = strsep(&amp;params, " ");
	if (get_flags &amp; DM_ACTIVE_DEVICE) {
		arg = crypt_lookup_dev(rdevice);
		r = device_alloc(cd, &amp;data_device, arg);
		free(arg);
		if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
			goto err;
	}

	r = -EINVAL;

	/*offset */
	if (!params)
		goto err;
	val64 = strtoull(params, &amp;params, 10);
	tgt-&gt;u.crypt.offset = val64;

	tgt-&gt;u.crypt.tag_size = 0;

	/* Features section, available since crypt target version 1.11 */
	if (*params) {
		if (*params != ' ')
			goto err;
		params++;

		/* Number of arguments */
		val64 = strtoull(params, &amp;params, 10);
		if (*params != ' ')
			goto err;
		params++;

		for (i = 0; i &lt; val64; i++) {
			if (!params)
				goto err;
			arg = strsep(&amp;params, " ");
			if (!strcasecmp(arg, "allow_discards"))
				*act_flags |= CRYPT_ACTIVATE_ALLOW_DISCARDS;
			else if (!strcasecmp(arg, "same_cpu_crypt"))
				*act_flags |= CRYPT_ACTIVATE_SAME_CPU_CRYPT;
			else if (!strcasecmp(arg, "submit_from_crypt_cpus"))
				*act_flags |= CRYPT_ACTIVATE_SUBMIT_FROM_CRYPT_CPUS;
			else if (!strcasecmp(arg, "no_read_workqueue"))
				*act_flags |= CRYPT_ACTIVATE_NO_READ_WORKQUEUE;
			else if (!strcasecmp(arg, "no_write_workqueue"))
				*act_flags |= CRYPT_ACTIVATE_NO_WRITE_WORKQUEUE;
			else if (!strcasecmp(arg, "iv_large_sectors"))
				*act_flags |= CRYPT_ACTIVATE_IV_LARGE_SECTORS;
			else if (sscanf(arg, "integrity:%u:", &amp;val) == 1) {
				tgt-&gt;u.crypt.tag_size = val;
				rintegrity = strchr(arg + strlen("integrity:"), ':');
				if (!rintegrity)
					goto err;
				rintegrity++;
			} else if (sscanf(arg, "sector_size:%u", &amp;val) == 1) {
				tgt-&gt;u.crypt.sector_size = val;
			} else /* unknown option */
				goto err;
		}

		/* All parameters should be processed */
		if (params)
			goto err;
	}

	/* cipher */
	if (get_flags &amp; DM_ACTIVE_CRYPT_CIPHER) {
		r = crypt_capi_to_cipher(&amp;cipher, &amp;integrity, rcipher, rintegrity);
		if (r &lt; 0)
			goto err;
	}

	r = -EINVAL;

	if (key_[0] == ':')
		*act_flags |= CRYPT_ACTIVATE_KEYRING_KEY;

	if (get_flags &amp; DM_ACTIVE_CRYPT_KEYSIZE) {
		/* we will trust kernel the key_string is in expected format */
		if (key_[0] == ':') {
			if (sscanf(key_ + 1, "%zu", &amp;key_size) != 1)
				goto err;
		} else
			key_size = strlen(key_) / 2;

		vk = crypt_alloc_volume_key(key_size, NULL);
		if (!vk) {
			r = -ENOMEM;
			goto err;
		}

		if (get_flags &amp; DM_ACTIVE_CRYPT_KEY) {
			if (key_[0] == ':') {
				/* :&lt;key_size&gt;:&lt;key_type&gt;:&lt;key_description&gt; */
				key_desc = NULL;
				endp = strpbrk(key_ + 1, ":");
				if (endp)
					key_desc = strpbrk(endp + 1, ":");
				if (!key_desc) {
					r = -ENOMEM;
					goto err;
				}
				key_desc++;
				crypt_volume_key_set_description(vk, key_desc);
			} else {
				buffer[2] = '\0';
				for(i = 0; i &lt; vk-&gt;keylength; i++) {
					memcpy(buffer, &amp;key_[i * 2], 2);
					vk-&gt;key[i] = strtoul(buffer, &amp;endp, 16);
					if (endp != &amp;buffer[2]) {
						r = -EINVAL;
						goto err;
					}
				}
			}
		}
	}
	memset(key_, 0, strlen(key_));

	if (cipher)
		tgt-&gt;u.crypt.cipher = cipher;
	if (integrity)
		tgt-&gt;u.crypt.integrity = integrity;
	if (data_device)
		tgt-&gt;data_device = data_device;
	if (vk)
		tgt-&gt;u.crypt.vk = vk;
	return 0;
err:
	free(cipher);
	free(integrity);
	device_free(cd, data_device);
	crypt_free_volume_key(vk);
	return r;
}

static int _dm_target_query_verity(struct crypt_device *cd,
				   uint32_t get_flags,
			           char *params,
			           struct dm_target *tgt,
				   uint32_t *act_flags)
{
	struct crypt_params_verity *vp = NULL;
	uint32_t val32;
	uint64_t val64;
	ssize_t len;
	char *str, *str2, *arg;
	unsigned int i, features;
	int r;
	struct device *data_device = NULL, *hash_device = NULL, *fec_device = NULL;
	char *hash_name = NULL, *root_hash = NULL, *salt = NULL, *fec_dev_str = NULL;
	char *root_hash_sig_key_desc = NULL;

	if (get_flags &amp; DM_ACTIVE_VERITY_PARAMS) {
		vp = crypt_zalloc(sizeof(*vp));
		if (!vp)
			return -ENOMEM;
	}

	tgt-&gt;type = DM_VERITY;
	tgt-&gt;direction = TARGET_QUERY;
	tgt-&gt;u.verity.vp = vp;

	/* version */
	val32 = strtoul(params, &amp;params, 10);
	if (*params != ' ')
		return -EINVAL;
	if (vp)
		vp-&gt;hash_type = val32;
	params++;

	/* data device */
	str = strsep(&amp;params, " ");
	if (!params)
		return -EINVAL;
	if (get_flags &amp; DM_ACTIVE_DEVICE) {
		str2 = crypt_lookup_dev(str);
		r = device_alloc(cd, &amp;data_device, str2);
		free(str2);
		if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
			return r;
	}

	r = -EINVAL;

	/* hash device */
	str = strsep(&amp;params, " ");
	if (!params)
		goto err;
	if (get_flags &amp; DM_ACTIVE_VERITY_HASH_DEVICE) {
		str2 = crypt_lookup_dev(str);
		r = device_alloc(cd, &amp;hash_device, str2);
		free(str2);
		if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
			goto err;
	}

	r = -EINVAL;

	/* data block size*/
	val32 = strtoul(params, &amp;params, 10);
	if (*params != ' ')
		goto err;
	if (vp)
		vp-&gt;data_block_size = val32;
	params++;

	/* hash block size */
	val32 = strtoul(params, &amp;params, 10);
	if (*params != ' ')
		goto err;
	if (vp)
		vp-&gt;hash_block_size = val32;
	params++;

	/* data blocks */
	val64 = strtoull(params, &amp;params, 10);
	if (*params != ' ')
		goto err;
	if (vp)
		vp-&gt;data_size = val64;
	params++;

	/* hash start */
	val64 = strtoull(params, &amp;params, 10);
	if (*params != ' ')
		goto err;
	tgt-&gt;u.verity.hash_offset = val64;
	params++;

	/* hash algorithm */
	str = strsep(&amp;params, " ");
	if (!params)
		goto err;
	if (vp) {
		hash_name = strdup(str);
		if (!hash_name) {
			r = -ENOMEM;
			goto err;
		}
	}

	/* root digest */
	str = strsep(&amp;params, " ");
	if (!params)
		goto err;
	len = crypt_hex_to_bytes(str, &amp;str2, 0);
	if (len &lt; 0) {
		r = len;
		goto err;
	}
	tgt-&gt;u.verity.root_hash_size = len;
	if (get_flags &amp; DM_ACTIVE_VERITY_ROOT_HASH)
		root_hash = str2;
	else
		free(str2);

	/* salt */
	str = strsep(&amp;params, " ");
	if (vp) {
		if (!strcmp(str, "-")) {
			vp-&gt;salt_size = 0;
			vp-&gt;salt = NULL;
		} else {
			len = crypt_hex_to_bytes(str, &amp;str2, 0);
			if (len &lt; 0) {
				r = len;
				goto err;
			}
			vp-&gt;salt_size = len;
			salt = str2;
		}
	}

	r = -EINVAL;

	/* Features section, available since verity target version 1.3 */
	if (params) {
		/* Number of arguments */
		val64 = strtoull(params, &amp;params, 10);
		if (*params != ' ')
			goto err;
		params++;

		features = (int)val64;
		for (i = 0; i &lt; features; i++) {
			r = -EINVAL;
			if (!params)
				goto err;
			arg = strsep(&amp;params, " ");
			if (!strcasecmp(arg, "ignore_corruption"))
				*act_flags |= CRYPT_ACTIVATE_IGNORE_CORRUPTION;
			else if (!strcasecmp(arg, "restart_on_corruption"))
				*act_flags |= CRYPT_ACTIVATE_RESTART_ON_CORRUPTION;
			else if (!strcasecmp(arg, "panic_on_corruption"))
				*act_flags |= CRYPT_ACTIVATE_PANIC_ON_CORRUPTION;
			else if (!strcasecmp(arg, "ignore_zero_blocks"))
				*act_flags |= CRYPT_ACTIVATE_IGNORE_ZERO_BLOCKS;
			else if (!strcasecmp(arg, "check_at_most_once"))
				*act_flags |= CRYPT_ACTIVATE_CHECK_AT_MOST_ONCE;
			else if (!strcasecmp(arg, "try_verify_in_tasklet"))
				*act_flags |= CRYPT_ACTIVATE_TASKLETS;
			else if (!strcasecmp(arg, "use_fec_from_device")) {
				str = strsep(&amp;params, " ");
				str2 = crypt_lookup_dev(str);
				if (get_flags &amp; DM_ACTIVE_VERITY_HASH_DEVICE) {
					r = device_alloc(cd, &amp;fec_device, str2);
					if (r &lt; 0 &amp;&amp; r != -ENOTBLK) {
						free(str2);
						goto err;
					}
				}
				if (vp) {
					free(fec_dev_str);
					fec_dev_str = str2;
				} else
					free(str2);
				i++;
			} else if (!strcasecmp(arg, "fec_start")) {
				val64 = strtoull(params, &amp;params, 10);
				if (*params)
					params++;
				tgt-&gt;u.verity.fec_offset = val64;
				if (vp)
					vp-&gt;fec_area_offset = val64 * vp-&gt;hash_block_size;
				i++;
			} else if (!strcasecmp(arg, "fec_blocks")) {
				val64 = strtoull(params, &amp;params, 10);
				if (*params)
					params++;
				tgt-&gt;u.verity.fec_blocks = val64;
				i++;
			} else if (!strcasecmp(arg, "fec_roots")) {
				val32 = strtoul(params, &amp;params, 10);
				if (*params)
					params++;
				if (vp)
					vp-&gt;fec_roots = val32;
				i++;
			} else if (!strcasecmp(arg, "root_hash_sig_key_desc")) {
				str = strsep(&amp;params, " ");
				if (!str)
					goto err;
				if (vp &amp;&amp; !root_hash_sig_key_desc) {
					root_hash_sig_key_desc = strdup(str);
					if (!root_hash_sig_key_desc) {
						r = -ENOMEM;
						goto err;
					}
					/* not stored in params, but cannot be used without vp */
					vp-&gt;flags |= CRYPT_VERITY_ROOT_HASH_SIGNATURE;
				}
				i++;
			} else /* unknown option */
				goto err;
		}

		/* All parameters should be processed */
		if (params &amp;&amp; *params) {
			r = -EINVAL;
			goto err;
		}
	}

	if (data_device)
		tgt-&gt;data_device = data_device;
	if (hash_device)
		tgt-&gt;u.verity.hash_device = hash_device;
	if (fec_device)
		tgt-&gt;u.verity.fec_device = fec_device;
	if (root_hash)
		tgt-&gt;u.verity.root_hash = root_hash;
	if (vp &amp;&amp; hash_name)
		vp-&gt;hash_name = hash_name;
	if (vp &amp;&amp; salt)
		vp-&gt;salt = salt;
	if (vp &amp;&amp; fec_dev_str)
		vp-&gt;fec_device = fec_dev_str;
	if (root_hash_sig_key_desc)
		tgt-&gt;u.verity.root_hash_sig_key_desc = root_hash_sig_key_desc;

	return 0;
err:
	device_free(cd, data_device);
	device_free(cd, hash_device);
	device_free(cd, fec_device);
	free(root_hash_sig_key_desc);
	free(root_hash);
	free(hash_name);
	free(salt);
	free(fec_dev_str);
	free(vp);
	return r;
}

static int _dm_target_query_integrity(struct crypt_device *cd,
			     uint32_t get_flags,
			     char *params,
			     struct dm_target *tgt,
			     uint32_t *act_flags)
{
	uint32_t val32;
	uint64_t val64;
	char c, *str, *str2, *arg;
	unsigned int i, features, val;
	ssize_t len;
	int r;
	struct device *data_device = NULL, *meta_device = NULL;
	char *integrity = NULL, *journal_crypt = NULL, *journal_integrity = NULL;
	struct volume_key *vk = NULL;
	struct volume_key *journal_integrity_key = NULL;
	struct volume_key *journal_crypt_key = NULL;

	tgt-&gt;type = DM_INTEGRITY;
	tgt-&gt;direction = TARGET_QUERY;

	/* data device */
	str = strsep(&amp;params, " ");
	if (get_flags &amp; DM_ACTIVE_DEVICE) {
		str2 = crypt_lookup_dev(str);
		r = device_alloc(cd, &amp;data_device, str2);
		free(str2);
		if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
			return r;
	}

	r = -EINVAL;

	/*offset */
	if (!params)
		goto err;
	val64 = strtoull(params, &amp;params, 10);
	if (!*params || *params != ' ')
		goto err;
	tgt-&gt;u.integrity.offset = val64;

	/* tag size*/
	val32 = strtoul(params, &amp;params, 10);
	tgt-&gt;u.integrity.tag_size = val32;
	if (!*params || *params != ' ')
		goto err;

	/* journal */
	c = toupper(*(++params));
	if (!*params || *(++params) != ' ' || (c != 'D' &amp;&amp; c != 'J' &amp;&amp; c != 'R' &amp;&amp; c != 'B'))
		goto err;
	if (c == 'D')
		*act_flags |= CRYPT_ACTIVATE_NO_JOURNAL;
	if (c == 'R')
		*act_flags |= CRYPT_ACTIVATE_RECOVERY;
	if (c == 'B') {
		*act_flags |= CRYPT_ACTIVATE_NO_JOURNAL;
		*act_flags |= CRYPT_ACTIVATE_NO_JOURNAL_BITMAP;
	}

	tgt-&gt;u.integrity.sector_size = SECTOR_SIZE;

	/* Features section */
	if (params) {
		/* Number of arguments */
		val64 = strtoull(params, &amp;params, 10);
		if (*params != ' ')
			goto err;
		params++;

		features = (int)val64;
		for (i = 0; i &lt; features; i++) {
			r = -EINVAL;
			if (!params)
				goto err;
			arg = strsep(&amp;params, " ");
			if (sscanf(arg, "journal_sectors:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.journal_size = val * SECTOR_SIZE;
			else if (sscanf(arg, "journal_watermark:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.journal_watermark = val;
			else if (sscanf(arg, "sectors_per_bit:%" PRIu64, &amp;val64) == 1) {
				if (val64 &gt; UINT_MAX)
					goto err;
				/* overloaded value for bitmap mode */
				tgt-&gt;u.integrity.journal_watermark = (unsigned int)val64;
			} else if (sscanf(arg, "commit_time:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.journal_commit_time = val;
			else if (sscanf(arg, "bitmap_flush_interval:%u", &amp;val) == 1)
				/* overloaded value for bitmap mode */
				tgt-&gt;u.integrity.journal_commit_time = val;
			else if (sscanf(arg, "interleave_sectors:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.interleave_sectors = val;
			else if (sscanf(arg, "block_size:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.sector_size = val;
			else if (sscanf(arg, "buffer_sectors:%u", &amp;val) == 1)
				tgt-&gt;u.integrity.buffer_sectors = val;
			else if (!strncmp(arg, "internal_hash:", 14) &amp;&amp; !integrity) {
				str = &amp;arg[14];
				arg = strsep(&amp;str, ":");
				if (get_flags &amp; DM_ACTIVE_INTEGRITY_PARAMS) {
					integrity = strdup(arg);
					if (!integrity) {
						r = -ENOMEM;
						goto err;
					}
				}

				if (str) {
					len = crypt_hex_to_bytes(str, &amp;str2, 1);
					if (len &lt; 0) {
						r = len;
						goto err;
					}

					r = 0;
					if (get_flags &amp; DM_ACTIVE_CRYPT_KEY) {
						vk = crypt_alloc_volume_key(len, str2);
						if (!vk)
							r = -ENOMEM;
					} else if (get_flags &amp; DM_ACTIVE_CRYPT_KEYSIZE) {
						vk = crypt_alloc_volume_key(len, NULL);
						if (!vk)
							r = -ENOMEM;
					}
					crypt_safe_free(str2);
					if (r &lt; 0)
						goto err;
				}
			} else if (!strncmp(arg, "meta_device:", 12) &amp;&amp; !meta_device) {
				if (get_flags &amp; DM_ACTIVE_DEVICE) {
					str = crypt_lookup_dev(&amp;arg[12]);
					r = device_alloc(cd, &amp;meta_device, str);
					free(str);
					if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
						goto err;
				}
			} else if (!strncmp(arg, "journal_crypt:", 14) &amp;&amp; !journal_crypt) {
				str = &amp;arg[14];
				arg = strsep(&amp;str, ":");
				if (get_flags &amp; DM_ACTIVE_INTEGRITY_PARAMS) {
					journal_crypt = strdup(arg);
					if (!journal_crypt) {
						r = -ENOMEM;
						goto err;
					}
				}

				if (str) {
					len = crypt_hex_to_bytes(str, &amp;str2, 1);
					if (len &lt; 0) {
						r = len;
						goto err;
					}

					r = 0;
					if (get_flags &amp; DM_ACTIVE_JOURNAL_CRYPT_KEY) {
						journal_crypt_key = crypt_alloc_volume_key(len, str2);
						if (!journal_crypt_key)
							r = -ENOMEM;
					} else if (get_flags &amp; DM_ACTIVE_JOURNAL_CRYPT_KEYSIZE) {
						journal_crypt_key = crypt_alloc_volume_key(len, NULL);
						if (!journal_crypt_key)
							r = -ENOMEM;
					}
					crypt_safe_free(str2);
					if (r &lt; 0)
						goto err;
				}
			} else if (!strncmp(arg, "journal_mac:", 12) &amp;&amp; !journal_integrity) {
				str = &amp;arg[12];
				arg = strsep(&amp;str, ":");
				if (get_flags &amp; DM_ACTIVE_INTEGRITY_PARAMS) {
					journal_integrity = strdup(arg);
					if (!journal_integrity) {
						r = -ENOMEM;
						goto err;
					}
				}

				if (str) {
					len = crypt_hex_to_bytes(str, &amp;str2, 1);
					if (len &lt; 0) {
						r = len;
						goto err;
					}

					r = 0;
					if (get_flags &amp; DM_ACTIVE_JOURNAL_MAC_KEY) {
						journal_integrity_key = crypt_alloc_volume_key(len, str2);
						if (!journal_integrity_key)
							r = -ENOMEM;
					} else if (get_flags &amp; DM_ACTIVE_JOURNAL_MAC_KEYSIZE) {
						journal_integrity_key = crypt_alloc_volume_key(len, NULL);
						if (!journal_integrity_key)
							r = -ENOMEM;
					}
					crypt_safe_free(str2);
					if (r &lt; 0)
						goto err;
				}
			} else if (!strcmp(arg, "recalculate")) {
				*act_flags |= CRYPT_ACTIVATE_RECALCULATE;
			} else if (!strcmp(arg, "reset_recalculate")) {
				*act_flags |= CRYPT_ACTIVATE_RECALCULATE_RESET;
			} else if (!strcmp(arg, "fix_padding")) {
				tgt-&gt;u.integrity.fix_padding = true;
			} else if (!strcmp(arg, "fix_hmac")) {
				tgt-&gt;u.integrity.fix_hmac = true;
			} else if (!strcmp(arg, "legacy_recalculate")) {
				tgt-&gt;u.integrity.legacy_recalc = true;
			} else if (!strcmp(arg, "allow_discards")) {
				*act_flags |= CRYPT_ACTIVATE_ALLOW_DISCARDS;
			} else /* unknown option */
				goto err;
		}

		/* All parameters should be processed */
		if (params &amp;&amp; *params) {
			r = -EINVAL;
			goto err;
		}
	}

	if (data_device)
		tgt-&gt;data_device = data_device;
	if (meta_device)
		tgt-&gt;u.integrity.meta_device = meta_device;
	if (integrity)
		tgt-&gt;u.integrity.integrity = integrity;
	if (journal_crypt)
		tgt-&gt;u.integrity.journal_crypt = journal_crypt;
	if (journal_integrity)
		tgt-&gt;u.integrity.journal_integrity = journal_integrity;
	if (vk)
		tgt-&gt;u.integrity.vk = vk;
	if (journal_integrity_key)
		tgt-&gt;u.integrity.journal_integrity_key = journal_integrity_key;
	if (journal_crypt_key)
		tgt-&gt;u.integrity.journal_crypt_key = journal_crypt_key;
	return 0;
err:
	device_free(cd, data_device);
	device_free(cd, meta_device);
	free(integrity);
	free(journal_crypt);
	free(journal_integrity);
	crypt_free_volume_key(vk);
	crypt_free_volume_key(journal_integrity_key);
	crypt_free_volume_key(journal_crypt_key);
	return r;
}

static int _dm_target_query_linear(struct crypt_device *cd, struct dm_target *tgt,
				   uint32_t get_flags, char *params)
{
	uint64_t val64;
	char *rdevice, *arg;
	int r;
	struct device *device = NULL;

	/* device */
	rdevice = strsep(&amp;params, " ");
	if (get_flags &amp; DM_ACTIVE_DEVICE) {
		arg = crypt_lookup_dev(rdevice);
		r = device_alloc(cd, &amp;device, arg);
		free(arg);
		if (r &lt; 0 &amp;&amp; r != -ENOTBLK)
			return r;
	}

	r = -EINVAL;

	/*offset */
	if (!params)
		goto err;
	val64 = strtoull(params, &amp;params, 10);

	/* params should be empty now */
	if (*params)
		goto err;

	tgt-&gt;type = DM_LINEAR;
	tgt-&gt;direction = TARGET_QUERY;
	tgt-&gt;data_device = device;
	tgt-&gt;u.linear.offset = val64;

	return 0;
err:
	device_free(cd, device);
	return r;
}

static int _dm_target_query_error(struct dm_target *tgt)
{
	tgt-&gt;type = DM_ERROR;
	tgt-&gt;direction = TARGET_QUERY;

	return 0;
}

static int _dm_target_query_zero(struct dm_target *tgt)
{
	tgt-&gt;type = DM_ZERO;
	tgt-&gt;direction = TARGET_QUERY;

	return 0;
}

/*
 * on error retval has to be negative
 *
 * also currently any _dm_target_query fn does not perform cleanup on error
 */
static int dm_target_query(struct crypt_device *cd, struct dm_target *tgt, const uint64_t *start,
		    const uint64_t *length, const char *target_type,
		    char *params, uint32_t get_flags, uint32_t *act_flags)
{
	int r = -ENOTSUP;

	if (!strcmp(target_type, DM_CRYPT_TARGET))
		r = _dm_target_query_crypt(cd, get_flags, params, tgt, act_flags);
	else if (!strcmp(target_type, DM_VERITY_TARGET))
		r = _dm_target_query_verity(cd, get_flags, params, tgt, act_flags);
	else if (!strcmp(target_type, DM_INTEGRITY_TARGET))
		r = _dm_target_query_integrity(cd, get_flags, params, tgt, act_flags);
	else if (!strcmp(target_type, DM_LINEAR_TARGET))
		r = _dm_target_query_linear(cd, tgt, get_flags, params);
	else if (!strcmp(target_type, DM_ERROR_TARGET))
		r = _dm_target_query_error(tgt);
	else if (!strcmp(target_type, DM_ZERO_TARGET))
		r = _dm_target_query_zero(tgt);

	if (!r) {
		tgt-&gt;offset = *start;
		tgt-&gt;size = *length;
	}

	return r;
}

static int _dm_query_device(struct crypt_device *cd, const char *name,
		    uint32_t get_flags, struct crypt_dm_active_device *dmd)
{
	struct dm_target *t;
	struct dm_task *dmt;
	struct dm_info dmi;
	uint64_t start, length;
	char *target_type, *params;
	const char *tmp_uuid;
	void *next = NULL;
	int r = -EINVAL;

	t = &amp;dmd-&gt;segment;

	if (!(dmt = dm_task_create(DM_DEVICE_TABLE)))
		return r;
	if (!dm_task_secure_data(dmt))
		goto out;
	if (!dm_task_set_name(dmt, name))
		goto out;
	r = -ENODEV;
	if (!dm_task_run(dmt))
		goto out;

	r = -EINVAL;
	if (!dm_task_get_info(dmt, &amp;dmi))
		goto out;

	if (!dmi.exists) {
		r = -ENODEV;
		goto out;
	}

	if (dmi.target_count &lt;= 0) {
		r = -EINVAL;
		goto out;
	}

	/* Never allow one to return empty key */
	if ((get_flags &amp; DM_ACTIVE_CRYPT_KEY) &amp;&amp; dmi.suspended) {
		log_dbg(cd, "Cannot read volume key while suspended.");
		r = -EINVAL;
		goto out;
	}

	r = dm_targets_allocate(&amp;dmd-&gt;segment, dmi.target_count);
	if (r)
		goto out;

	do {
		next = dm_get_next_target(dmt, next, &amp;start, &amp;length,
	                                  &amp;target_type, &amp;params);

		r = dm_target_query(cd, t, &amp;start, &amp;length, target_type, params, get_flags, &amp;dmd-&gt;flags);
		if (!r &amp;&amp; t-&gt;type == DM_VERITY) {
			r = _dm_status_verity_ok(cd, name);
			if (r == 0)
				dmd-&gt;flags |= CRYPT_ACTIVATE_CORRUPTED;
		}

		if (r &lt; 0) {
			if (r != -ENOTSUP)
				log_err(cd, _("Failed to query dm-%s segment."), target_type);
			goto out;
		}

		dmd-&gt;size += length;
		t = t-&gt;next;
	} while (next &amp;&amp; t);

	if (dmi.read_only)
		dmd-&gt;flags |= CRYPT_ACTIVATE_READONLY;

	if (dmi.suspended)
		dmd-&gt;flags |= CRYPT_ACTIVATE_SUSPENDED;

	tmp_uuid = dm_task_get_uuid(dmt);
	if (!tmp_uuid)
		dmd-&gt;flags |= CRYPT_ACTIVATE_NO_UUID;
	else if (get_flags &amp; DM_ACTIVE_UUID) {
		if (!strncmp(tmp_uuid, DM_UUID_PREFIX, DM_UUID_PREFIX_LEN))
			dmd-&gt;uuid = strdup(tmp_uuid + DM_UUID_PREFIX_LEN);
	}

	dmd-&gt;holders = 0;
#if (HAVE_DECL_DM_DEVICE_HAS_HOLDERS &amp;&amp; HAVE_DECL_DM_DEVICE_HAS_MOUNTED_FS)
	if (get_flags &amp; DM_ACTIVE_HOLDERS)
		dmd-&gt;holders = (dm_device_has_mounted_fs(dmi.major, dmi.minor) ||
				dm_device_has_holders(dmi.major, dmi.minor));
#endif

	r = (dmi.open_count &gt; 0);
out:
	dm_task_destroy(dmt);

	if (r &lt; 0)
		dm_targets_free(cd, dmd);

	return r;
}

int dm_query_device(struct crypt_device *cd, const char *name,
		    uint32_t get_flags, struct crypt_dm_active_device *dmd)
{
	int r;

	if (!dmd)
		return -EINVAL;

	memset(dmd, 0, sizeof(*dmd));

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	r = _dm_query_device(cd, name, get_flags, dmd);

	dm_exit_context();
	return r;
}

static int _process_deps(struct crypt_device *cd, const char *prefix, struct dm_deps *deps,
			 char **names, size_t names_offset, size_t names_length)
{
#if HAVE_DECL_DM_DEVICE_GET_NAME
	struct crypt_dm_active_device dmd;
	char dmname[PATH_MAX];
	unsigned i;
	int r, major, minor, count = 0;

	if (!prefix || !deps)
		return -EINVAL;

	for (i = 0; i &lt; deps-&gt;count; i++) {
		major = major(deps-&gt;device[i]);
		if (!dm_is_dm_major(major))
			continue;

		minor = minor(deps-&gt;device[i]);
		if (!dm_device_get_name(major, minor, 0, dmname, PATH_MAX))
			return -EINVAL;

		memset(&amp;dmd, 0, sizeof(dmd));
		r = _dm_query_device(cd, dmname, DM_ACTIVE_UUID, &amp;dmd);
		if (r &lt; 0)
			continue;

		if (!dmd.uuid ||
		    strncmp(prefix, dmd.uuid, strlen(prefix)) ||
		    crypt_string_in(dmname, names, names_length))
			*dmname = '\0';

		dm_targets_free(cd, &amp;dmd);
		free(CONST_CAST(void*)dmd.uuid);

		if ((size_t)count &gt;= (names_length - names_offset))
			return -ENOMEM;

		if (*dmname &amp;&amp; !(names[names_offset + count++] = strdup(dmname)))
			return -ENOMEM;
	}

	return count;
#else
	return -EINVAL;
#endif
}

int dm_device_deps(struct crypt_device *cd, const char *name, const char *prefix,
		   char **names, size_t names_length)
{
	struct dm_task *dmt = NULL;
	struct dm_info dmi;
	struct dm_deps *deps;
	int r = -EINVAL;
	size_t i, last = 0, offset = 0;

	if (!name || !names_length || !names)
		return -EINVAL;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	while (name) {
		if (!(dmt = dm_task_create(DM_DEVICE_DEPS)))
			goto out;
		if (!dm_task_set_name(dmt, name))
			goto out;

		r = -ENODEV;
		if (!dm_task_run(dmt))
			goto out;

		r = -EINVAL;
		if (!dm_task_get_info(dmt, &amp;dmi))
			goto out;
		if (!(deps = dm_task_get_deps(dmt)))
			goto out;

		r = -ENODEV;
		if (!dmi.exists)
			goto out;

		r = _process_deps(cd, prefix, deps, names, offset, names_length - 1);
		if (r &lt; 0)
			goto out;

		dm_task_destroy(dmt);
		dmt = NULL;

		offset += r;
		name = names[last++];
	}

	r = 0;
out:
	if (r &lt; 0) {
		for (i = 0; i &lt; names_length - 1; i++)
			free(names[i]);
		*names = NULL;
	}

	if (dmt)
		dm_task_destroy(dmt);

	dm_exit_context();
	return r;
}

static int _dm_message(const char *name, const char *msg)
{
	int r = 0;
	struct dm_task *dmt;

	if (!(dmt = dm_task_create(DM_DEVICE_TARGET_MSG)))
		return 0;

	if (!dm_task_secure_data(dmt))
		goto out;

	if (name &amp;&amp; !dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_set_sector(dmt, (uint64_t) 0))
		goto out;

	if (!dm_task_set_message(dmt, msg))
		goto out;

	r = dm_task_run(dmt);
out:
	dm_task_destroy(dmt);
	return r;
}

int dm_suspend_device(struct crypt_device *cd, const char *name, uint32_t dmflags)
{
	uint32_t dmt_flags;
	int r = -ENOTSUP;

	if (dm_init_context(cd, DM_UNKNOWN))
		return r;

	if (dmflags &amp; DM_SUSPEND_WIPE_KEY) {
		if (dm_flags(cd, DM_CRYPT, &amp;dmt_flags))
			goto out;

		if (!(dmt_flags &amp; DM_KEY_WIPE_SUPPORTED))
			goto out;
	}

	r = -EINVAL;

	if (!_dm_simple(DM_DEVICE_SUSPEND, name, dmflags))
		goto out;

	if (dmflags &amp; DM_SUSPEND_WIPE_KEY) {
		if (!_dm_message(name, "key wipe")) {
			_dm_resume_device(name, 0);
			goto out;
		}
	}

	r = 0;
out:
	dm_exit_context();
	return r;
}

int dm_resume_device(struct crypt_device *cd, const char *name, uint32_t dmflags)
{
	int r;

	if (dm_init_context(cd, DM_UNKNOWN))
		return -ENOTSUP;

	r = _dm_resume_device(name, dmflags);

	dm_exit_context();

	return r;
}

int dm_resume_and_reinstate_key(struct crypt_device *cd, const char *name,
				const struct volume_key *vk)
{
	uint32_t dmt_flags;
	int msg_size;
	char *msg = NULL, *key = NULL;
	int r = -ENOTSUP;

	if (dm_init_context(cd, DM_CRYPT) || dm_flags(cd, DM_CRYPT, &amp;dmt_flags))
		return -ENOTSUP;

	if (!(dmt_flags &amp; DM_KEY_WIPE_SUPPORTED))
		goto out;

	if (!vk-&gt;keylength)
		msg_size = 11; // key set -
	else if (vk-&gt;key_description)
		msg_size = strlen(vk-&gt;key_description) + int_log10(vk-&gt;keylength) + 18;
	else
		msg_size = vk-&gt;keylength * 2 + 10; // key set &lt;key&gt;

	msg = crypt_safe_alloc(msg_size);
	if (!msg) {
		r = -ENOMEM;
		goto out;
	}

	if (vk-&gt;key_description) {
		r = snprintf(msg, msg_size, "key set :%zu:logon:%s", vk-&gt;keylength,
			     vk-&gt;key_description);
	} else  {
		key = crypt_bytes_to_hex(vk-&gt;keylength, vk-&gt;key);
		if (!key) {
			r = -ENOMEM;
			goto out;
		}

		r = snprintf(msg, msg_size, "key set %s", key);
	}
	if (r &lt; 0 || r &gt;= msg_size) {
		r = -EINVAL;
		goto out;
	}
	if (!_dm_message(name, msg) ||
	    _dm_resume_device(name, 0)) {
		r = -EINVAL;
		goto out;
	}
	r = 0;
out:
	crypt_safe_free(msg);
	crypt_safe_free(key);
	dm_exit_context();
	return r;
}

int dm_cancel_deferred_removal(const char *name)
{
	return _dm_message(name, "@cancel_deferred_remove") ? 0 : -ENOTSUP;
}

const char *dm_get_dir(void)
{
	return dm_dir();
}

int dm_get_iname(const char *name, char **iname, bool with_path)
{
	int r;

	if (with_path)
		r = asprintf(iname, "%s/%s_dif", dm_get_dir(), name);
	else
		r = asprintf(iname, "%s_dif", name);

	return r &lt; 0 ? -ENOMEM : 0;
}

int dm_is_dm_device(int major)
{
	return dm_is_dm_major((uint32_t)major);
}

int dm_is_dm_kernel_name(const char *name)
{
	return strncmp(name, "dm-", 3) ? 0 : 1;
}

int dm_crypt_target_set(struct dm_target *tgt, uint64_t seg_offset, uint64_t seg_size,
	struct device *data_device, struct volume_key *vk, const char *cipher,
	uint64_t iv_offset, uint64_t data_offset, const char *integrity, uint32_t tag_size,
	uint32_t sector_size)
{
	char *dm_integrity = NULL;

	if (tag_size) {
		/* Space for IV metadata only */
		dm_integrity = strdup(integrity ?: "none");
		if (!dm_integrity)
			return -ENOMEM;
	}

	tgt-&gt;data_device = data_device;

	tgt-&gt;type = DM_CRYPT;
	tgt-&gt;direction = TARGET_SET;
	tgt-&gt;u.crypt.vk = vk;
	tgt-&gt;offset = seg_offset;
	tgt-&gt;size = seg_size;

	tgt-&gt;u.crypt.cipher = cipher;
	tgt-&gt;u.crypt.integrity = dm_integrity;
	tgt-&gt;u.crypt.iv_offset = iv_offset;
	tgt-&gt;u.crypt.offset = data_offset;
	tgt-&gt;u.crypt.tag_size = tag_size;
	tgt-&gt;u.crypt.sector_size = sector_size;

	return 0;
}

int dm_verity_target_set(struct dm_target *tgt, uint64_t seg_offset, uint64_t seg_size,
	struct device *data_device, struct device *hash_device, struct device *fec_device,
	const char *root_hash, uint32_t root_hash_size, const char* root_hash_sig_key_desc,
	uint64_t hash_offset_block, uint64_t fec_blocks, struct crypt_params_verity *vp)
{
	if (!data_device || !hash_device || !vp)
		return -EINVAL;

	tgt-&gt;type = DM_VERITY;
	tgt-&gt;direction = TARGET_SET;
	tgt-&gt;offset = seg_offset;
	tgt-&gt;size = seg_size;
	tgt-&gt;data_device = data_device;

	tgt-&gt;u.verity.hash_device = hash_device;
	tgt-&gt;u.verity.fec_device = fec_device;
	tgt-&gt;u.verity.root_hash = root_hash;
	tgt-&gt;u.verity.root_hash_size = root_hash_size;
	tgt-&gt;u.verity.root_hash_sig_key_desc = root_hash_sig_key_desc;
	tgt-&gt;u.verity.hash_offset = hash_offset_block;
	tgt-&gt;u.verity.fec_offset = vp-&gt;fec_area_offset / vp-&gt;hash_block_size;
	tgt-&gt;u.verity.fec_blocks = fec_blocks;
	tgt-&gt;u.verity.vp = vp;

	return 0;
}

int dm_integrity_target_set(struct crypt_device *cd,
			struct dm_target *tgt, uint64_t seg_offset, uint64_t seg_size,
			struct device *meta_device,
		        struct device *data_device, uint64_t tag_size, uint64_t offset,
			uint32_t sector_size, struct volume_key *vk,
			struct volume_key *journal_crypt_key, struct volume_key *journal_mac_key,
			const struct crypt_params_integrity *ip)
{
	uint32_t dmi_flags;

	if (!data_device)
		return -EINVAL;

	_dm_check_versions(cd, DM_INTEGRITY);

	tgt-&gt;type = DM_INTEGRITY;
	tgt-&gt;direction = TARGET_SET;
	tgt-&gt;offset = seg_offset;
	tgt-&gt;size = seg_size;
	tgt-&gt;data_device = data_device;
	if (meta_device != data_device)
		tgt-&gt;u.integrity.meta_device = meta_device;
	tgt-&gt;u.integrity.tag_size = tag_size;
	tgt-&gt;u.integrity.offset = offset;
	tgt-&gt;u.integrity.sector_size = sector_size;

	tgt-&gt;u.integrity.vk = vk;
	tgt-&gt;u.integrity.journal_crypt_key = journal_crypt_key;
	tgt-&gt;u.integrity.journal_integrity_key = journal_mac_key;

	if (!dm_flags(cd, DM_INTEGRITY, &amp;dmi_flags) &amp;&amp;
	    (dmi_flags &amp; DM_INTEGRITY_FIX_PADDING_SUPPORTED) &amp;&amp;
	    !(crypt_get_compatibility(cd) &amp; CRYPT_COMPAT_LEGACY_INTEGRITY_PADDING))
		tgt-&gt;u.integrity.fix_padding = true;

	if (!dm_flags(cd, DM_INTEGRITY, &amp;dmi_flags) &amp;&amp;
	    (dmi_flags &amp; DM_INTEGRITY_FIX_HMAC_SUPPORTED) &amp;&amp;
	    !(crypt_get_compatibility(cd) &amp; CRYPT_COMPAT_LEGACY_INTEGRITY_HMAC))
		tgt-&gt;u.integrity.fix_hmac = true;

	/* This flag can be backported, just try to set it always */
	if (crypt_get_compatibility(cd) &amp; CRYPT_COMPAT_LEGACY_INTEGRITY_RECALC)
		tgt-&gt;u.integrity.legacy_recalc = true;

	if (ip) {
		tgt-&gt;u.integrity.journal_size = ip-&gt;journal_size;
		tgt-&gt;u.integrity.journal_watermark = ip-&gt;journal_watermark;
		tgt-&gt;u.integrity.journal_commit_time = ip-&gt;journal_commit_time;
		tgt-&gt;u.integrity.interleave_sectors = ip-&gt;interleave_sectors;
		tgt-&gt;u.integrity.buffer_sectors = ip-&gt;buffer_sectors;
		tgt-&gt;u.integrity.journal_integrity = ip-&gt;journal_integrity;
		tgt-&gt;u.integrity.journal_crypt = ip-&gt;journal_crypt;
		tgt-&gt;u.integrity.integrity = ip-&gt;integrity;
	}

	return 0;
}

int dm_linear_target_set(struct dm_target *tgt, uint64_t seg_offset, uint64_t seg_size,
	struct device *data_device, uint64_t data_offset)
{
	if (!data_device)
		return -EINVAL;

	tgt-&gt;type = DM_LINEAR;
	tgt-&gt;direction = TARGET_SET;
	tgt-&gt;offset = seg_offset;
	tgt-&gt;size = seg_size;
	tgt-&gt;data_device = data_device;

	tgt-&gt;u.linear.offset = data_offset;

	return 0;
}

int dm_zero_target_set(struct dm_target *tgt, uint64_t seg_offset, uint64_t seg_size)
{
	tgt-&gt;type = DM_ZERO;
	tgt-&gt;direction = TARGET_SET;
	tgt-&gt;offset = seg_offset;
	tgt-&gt;size = seg_size;

	return 0;
}
</file>
  <file fpath="/out/src/cryptsetup/lib/random.c">/*
 * cryptsetup kernel RNG access functions
 *
 * Copyright (C) 2010-2024 Red Hat, Inc. All rights reserved.
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;stdlib.h&gt;
#include &lt;string.h&gt;
#include &lt;errno.h&gt;
#include &lt;sys/select.h&gt;

#include "libcryptsetup.h"
#include "internal.h"

static int random_initialised = 0;

#define URANDOM_DEVICE	"/dev/urandom"
static int urandom_fd = -1;

#define RANDOM_DEVICE	"/dev/random"
static int random_fd = -1;

/* Read random chunk - gathered data usually appears with this granularity */
#define RANDOM_DEVICE_CHUNK	8

/* Timeout to print warning if no random data (entropy) */
#define RANDOM_DEVICE_TIMEOUT	5

/* URANDOM_DEVICE access */
static int _get_urandom(char *buf, size_t len)
{
	int r;
	size_t old_len = len;
	char *old_buf = buf;

	assert(urandom_fd != -1);

	while (len) {
		r = read(urandom_fd, buf, len);
		if (r == -1 &amp;&amp; errno != EINTR)
			return -EINVAL;
		if (r &gt; 0) {
			len -= r;
			buf += r;
		}
	}

	assert(len == 0);
	assert((size_t)(buf - old_buf) == old_len);

	return 0;
}

static void _get_random_progress(struct crypt_device *ctx, int warn,
				 size_t expected_len, size_t read_len)
{
	if (warn)
		log_std(ctx,
			_("System is out of entropy while generating volume key.\n"
			  "Please move mouse or type some text in another window "
			  "to gather some random events.\n"));

	log_std(ctx, _("Generating key (%d%% done).\n"),
		(int)((expected_len - read_len) * 100 / expected_len));
}

/* RANDOM_DEVICE access */
static int _get_random(struct crypt_device *ctx, char *buf, size_t len)
{
	int r, warn_once = 1;
	size_t n, old_len = len;
	char *old_buf = buf;
	fd_set fds;
	struct timeval tv;

	assert(random_fd != -1);

	while (len) {
		FD_ZERO(&amp;fds);
		FD_SET(random_fd, &amp;fds);

		tv.tv_sec = RANDOM_DEVICE_TIMEOUT;
		tv.tv_usec = 0;

		r = select(random_fd + 1, &amp;fds, NULL, NULL, &amp;tv);
		if(r == -1)
			return -EINVAL;

		if(!r) {
			_get_random_progress(ctx, warn_once, old_len, len);
			warn_once = 0;
			continue;
		}

		do {
			n = RANDOM_DEVICE_CHUNK;
			if (len &lt; RANDOM_DEVICE_CHUNK)
				n = len;

			r = read(random_fd, buf, n);

			if (r == -1 &amp;&amp; errno == EINTR) {
				r = 0;
				continue;
			}

			/* bogus read? */
			if(r &gt; (int)n)
				return -EINVAL;

			/* random device is opened with O_NONBLOCK, EAGAIN is expected */
			if (r == -1 &amp;&amp; (errno != EAGAIN &amp;&amp; errno != EWOULDBLOCK))
				return -EINVAL;

			if (r &gt; 0) {
				len -= r;
				buf += r;
			}
		} while (len &amp;&amp; r &gt; 0);
	}

	assert(len == 0);
	assert((size_t)(buf - old_buf) == old_len);

	if (!warn_once)
		_get_random_progress(ctx, 0, old_len, len);

	return 0;
}
/* Initialisation of both RNG file descriptors is mandatory */
int crypt_random_init(struct crypt_device *ctx)
{
	if (random_initialised)
		return 0;

	/* Used for CRYPT_RND_NORMAL */
	if(urandom_fd == -1)
		urandom_fd = open(URANDOM_DEVICE, O_RDONLY | O_CLOEXEC);
	if(urandom_fd == -1)
		goto err;

	/* Used for CRYPT_RND_KEY */
	if(random_fd == -1)
		random_fd = open(RANDOM_DEVICE, O_RDONLY | O_NONBLOCK | O_CLOEXEC);
	if(random_fd == -1)
		goto err;

	if (crypt_fips_mode())
		log_verbose(ctx, _("Running in FIPS mode."));

	random_initialised = 1;
	return 0;
err:
	crypt_random_exit();
	log_err(ctx, _("Fatal error during RNG initialisation."));
	return -ENOSYS;
}

/* coverity[ -taint_source : arg-1 ] */
int crypt_random_get(struct crypt_device *ctx, char *buf, size_t len, int quality)
{
	int status, rng_type;

	switch(quality) {
	case CRYPT_RND_NORMAL:
		status = _get_urandom(buf, len);
		break;
	case CRYPT_RND_SALT:
		if (crypt_fips_mode())
			status = crypt_backend_rng(buf, len, quality, 1);
		else
			status = _get_urandom(buf, len);
		break;
	case CRYPT_RND_KEY:
		if (crypt_fips_mode()) {
			status = crypt_backend_rng(buf, len, quality, 1);
			break;
		}
		rng_type = ctx ? crypt_get_rng_type(ctx) :
				 crypt_random_default_key_rng();
		switch (rng_type) {
		case CRYPT_RNG_URANDOM:
			status = _get_urandom(buf, len);
			break;
		case CRYPT_RNG_RANDOM:
			status = _get_random(ctx, buf, len);
			break;
		default:
			abort();
		}
		break;
	default:
		log_err(ctx, _("Unknown RNG quality requested."));
		return -EINVAL;
	}

	if (status)
		log_err(ctx, _("Error reading from RNG."));

	return status;
}

void crypt_random_exit(void)
{
	random_initialised = 0;

	if(random_fd != -1) {
		(void)close(random_fd);
		random_fd = -1;
	}

	if(urandom_fd != -1) {
		(void)close(urandom_fd);
		urandom_fd = -1;
	}
}

int crypt_random_default_key_rng(void)
{
	/* coverity[pointless_string_compare] */
	if (!strcmp(DEFAULT_RNG, RANDOM_DEVICE))
		return CRYPT_RNG_RANDOM;

	/* coverity[pointless_string_compare] */
	if (!strcmp(DEFAULT_RNG, URANDOM_DEVICE))
		return CRYPT_RNG_URANDOM;

	/* RNG misconfiguration is fatal */
	abort();
}
</file>
  <file fpath="/out/src/cryptsetup/lib/setup.c">/*
 * libcryptsetup - cryptsetup library
 *
 * Copyright (C) 2004 Jana Saout &lt;jana@saout.de&gt;
 * Copyright (C) 2004-2007 Clemens Fruhwirth &lt;clemens@endorphin.org&gt;
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;string.h&gt;
#include &lt;stdio.h&gt;
#include &lt;stdlib.h&gt;
#include &lt;stdarg.h&gt;
#include &lt;sys/utsname.h&gt;
#include &lt;errno.h&gt;

#include "libcryptsetup.h"
#include "luks1/luks.h"
#include "luks2/luks2.h"
#include "luks2/luks2_internal.h"
#include "loopaes/loopaes.h"
#include "verity/verity.h"
#include "tcrypt/tcrypt.h"
#include "integrity/integrity.h"
#include "bitlk/bitlk.h"
#include "fvault2/fvault2.h"
#include "utils_device_locking.h"
#include "internal.h"
#include "keyslot_context.h"
#include "luks2/hw_opal/hw_opal.h"

#define CRYPT_CD_UNRESTRICTED	(1 &lt;&lt; 0)
#define CRYPT_CD_QUIET		(1 &lt;&lt; 1)

struct crypt_device {
	char *type;

	struct device *device;
	struct device *metadata_device;

	struct volume_key *volume_key;
	int rng_type;
	uint32_t compatibility;
	struct crypt_pbkdf_type pbkdf;

	/* global context scope settings */
	unsigned key_in_keyring:1;

	bool link_vk_to_keyring;
	int32_t keyring_to_link_vk;
	const char *user_key_name1;
	const char *user_key_name2;
	key_type_t keyring_key_type;

	uint64_t data_offset;
	uint64_t metadata_size; /* Used in LUKS2 format */
	uint64_t keyslots_size; /* Used in LUKS2 format */

	/* Workaround for OOM during parallel activation (like in systemd) */
	bool memory_hard_pbkdf_lock_enabled;
	struct crypt_lock_handle *pbkdf_memory_hard_lock;

	union {
	struct { /* used in CRYPT_LUKS1 */
		struct luks_phdr hdr;
		char *cipher_spec;
	} luks1;
	struct { /* used in CRYPT_LUKS2 */
		struct luks2_hdr hdr;
		char cipher[MAX_CIPHER_LEN];	  /* only for compatibility */
		char cipher_mode[MAX_CIPHER_LEN]; /* only for compatibility */
		char *keyslot_cipher;
		unsigned int keyslot_key_size;
		struct luks2_reencrypt *rh;
	} luks2;
	struct { /* used in CRYPT_PLAIN */
		struct crypt_params_plain hdr;
		char *cipher_spec;
		char *cipher;
		const char *cipher_mode;
		unsigned int key_size;
	} plain;
	struct { /* used in CRYPT_LOOPAES */
		struct crypt_params_loopaes hdr;
		char *cipher_spec;
		char *cipher;
		const char *cipher_mode;
		unsigned int key_size;
	} loopaes;
	struct { /* used in CRYPT_VERITY */
		struct crypt_params_verity hdr;
		const char *root_hash;
		unsigned int root_hash_size;
		char *uuid;
		struct device *fec_device;
	} verity;
	struct { /* used in CRYPT_TCRYPT */
		struct crypt_params_tcrypt params;
		struct tcrypt_phdr hdr;
	} tcrypt;
	struct { /* used in CRYPT_INTEGRITY */
		struct crypt_params_integrity params;
		struct volume_key *journal_mac_key;
		struct volume_key *journal_crypt_key;
		uint32_t sb_flags;
	} integrity;
	struct { /* used in CRYPT_BITLK */
		struct bitlk_metadata params;
		char *cipher_spec;
	} bitlk;
	struct { /* used in CRYPT_FVAULT2 */
		struct fvault2_params params;
	} fvault2;
	struct { /* used if initialized without header by name */
		char *active_name;
		/* buffers, must refresh from kernel on every query */
		char cipher_spec[MAX_CIPHER_LEN*2+1];
		char cipher[MAX_CIPHER_LEN];
		char integrity_spec[MAX_INTEGRITY_LEN];
		const char *cipher_mode;
		unsigned int key_size;
		uint32_t sector_size;
	} none;
	} u;

	/* callbacks definitions */
	void (*log)(int level, const char *msg, void *usrptr);
	void *log_usrptr;
	int (*confirm)(const char *msg, void *usrptr);
	void *confirm_usrptr;
};

/* Just to suppress redundant messages about crypto backend */
static int _crypto_logged = 0;

/* Log helper */
static void (*_default_log)(int level, const char *msg, void *usrptr) = NULL;
static void *_default_log_usrptr = NULL;
static int _debug_level = 0;

/* Library can do metadata locking  */
static int _metadata_locking = 1;

/* Library scope detection for kernel keyring support */
static int _kernel_keyring_supported;

/* Library allowed to use kernel keyring for loading VK in kernel crypto layer */
static int _vk_via_keyring = 1;

void crypt_set_debug_level(int level)
{
	_debug_level = level;
}

int crypt_get_debug_level(void)
{
	return _debug_level;
}

void crypt_log(struct crypt_device *cd, int level, const char *msg)
{
	if (!msg)
		return;

	if (level &lt; _debug_level)
		return;

	if (cd &amp;&amp; cd-&gt;log)
		cd-&gt;log(level, msg, cd-&gt;log_usrptr);
	else if (_default_log)
		_default_log(level, msg, _default_log_usrptr);
	/* Default to stdout/stderr if there is no callback. */
	else
		fprintf(level == CRYPT_LOG_ERROR ? stderr : stdout, "%s", msg);
}

__attribute__((format(printf, 3, 4)))
void crypt_logf(struct crypt_device *cd, int level, const char *format, ...)
{
	va_list argp;
	char target[LOG_MAX_LEN + 2];
	int len;

	va_start(argp, format);

	len = vsnprintf(&amp;target[0], LOG_MAX_LEN, format, argp);
	if (len &gt; 0 &amp;&amp; len &lt; LOG_MAX_LEN) {
		/* All verbose and error messages in tools end with EOL. */
		if (level == CRYPT_LOG_VERBOSE || level == CRYPT_LOG_ERROR ||
		    level == CRYPT_LOG_DEBUG || level == CRYPT_LOG_DEBUG_JSON)
			strncat(target, "\n", LOG_MAX_LEN);

		crypt_log(cd, level, target);
	}

	va_end(argp);
}

static const char *mdata_device_path(struct crypt_device *cd)
{
	return device_path(cd-&gt;metadata_device ?: cd-&gt;device);
}

static const char *data_device_path(struct crypt_device *cd)
{
	return device_path(cd-&gt;device);
}

/* internal only */
struct device *crypt_metadata_device(struct crypt_device *cd)
{
	return cd-&gt;metadata_device ?: cd-&gt;device;
}

struct device *crypt_data_device(struct crypt_device *cd)
{
	return cd-&gt;device;
}

uint64_t crypt_get_metadata_size_bytes(struct crypt_device *cd)
{
	assert(cd);
	return cd-&gt;metadata_size;
}

uint64_t crypt_get_keyslots_size_bytes(struct crypt_device *cd)
{
	assert(cd);
	return cd-&gt;keyslots_size;
}

uint64_t crypt_get_data_offset_sectors(struct crypt_device *cd)
{
	assert(cd);
	return cd-&gt;data_offset;
}

int crypt_opal_supported(struct crypt_device *cd, struct device *opal_device)
{
	int r;

	assert(cd);
	assert(opal_device);

	r = opal_supported(cd, opal_device);
	if (r &lt;= 0) {
		if (r == -ENOTSUP)
			log_err(cd, _("OPAL support is disabled in libcryptsetup."));
		else
			log_err(cd, _("Device %s or kernel does not support OPAL encryption."),
				    device_path(opal_device));
		r = -EINVAL;
	} else
		r = 0;

	return r;
}

int init_crypto(struct crypt_device *ctx)
{
	struct utsname uts;
	int r;

	r = crypt_random_init(ctx);
	if (r &lt; 0) {
		log_err(ctx, _("Cannot initialize crypto RNG backend."));
		return r;
	}

	r = crypt_backend_init(crypt_fips_mode());
	if (r &lt; 0)
		log_err(ctx, _("Cannot initialize crypto backend."));

	if (!r &amp;&amp; !_crypto_logged) {
		log_dbg(ctx, "Crypto backend (%s%s) initialized in cryptsetup library version %s.",
			crypt_backend_version(), crypt_argon2_version(), PACKAGE_VERSION);

		if (!uname(&amp;uts))
			log_dbg(ctx, "Detected kernel %s %s %s.",
				uts.sysname, uts.release, uts.machine);
		_crypto_logged = 1;
	}

	return r;
}

static int process_key(struct crypt_device *cd, const char *hash_name,
		       size_t key_size, const char *pass, size_t passLen,
		       struct volume_key **vk)
{
	int r;

	if (!key_size)
		return -EINVAL;

	*vk = crypt_alloc_volume_key(key_size, NULL);
	if (!*vk)
		return -ENOMEM;

	if (hash_name) {
		r = crypt_plain_hash(cd, hash_name, (*vk)-&gt;key, key_size, pass, passLen);
		if (r &lt; 0) {
			if (r == -ENOENT)
				log_err(cd, _("Hash algorithm %s not supported."),
					hash_name);
			else
				log_err(cd, _("Key processing error (using hash %s)."),
					hash_name);
			crypt_free_volume_key(*vk);
			*vk = NULL;
			return -EINVAL;
		}
	} else if (passLen &gt; key_size) {
		memcpy((*vk)-&gt;key, pass, key_size);
	} else {
		memcpy((*vk)-&gt;key, pass, passLen);
	}

	return 0;
}

static int isPLAIN(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_PLAIN, type));
}

static int isLUKS1(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_LUKS1, type));
}

static int isLUKS2(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_LUKS2, type));
}

static int isLUKS(const char *type)
{
	return (isLUKS2(type) || isLUKS1(type));
}

static int isLOOPAES(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_LOOPAES, type));
}

static int isVERITY(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_VERITY, type));
}

static int isTCRYPT(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_TCRYPT, type));
}

static int isINTEGRITY(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_INTEGRITY, type));
}

static int isBITLK(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_BITLK, type));
}

static int isFVAULT2(const char *type)
{
	return (type &amp;&amp; !strcmp(CRYPT_FVAULT2, type));
}

static int _onlyLUKS(struct crypt_device *cd, uint32_t cdflags, uint32_t mask)
{
	int r = 0;

	if (cd &amp;&amp; !cd-&gt;type) {
		if (!(cdflags &amp; CRYPT_CD_QUIET))
			log_err(cd, _("Cannot determine device type. Incompatible activation of device?"));
		r = -EINVAL;
	}

	if (!cd || !isLUKS(cd-&gt;type)) {
		if (!(cdflags &amp; CRYPT_CD_QUIET))
			log_err(cd, _("This operation is supported only for LUKS device."));
		r = -EINVAL;
	}

	if (r || (cdflags &amp; CRYPT_CD_UNRESTRICTED) || isLUKS1(cd-&gt;type))
		return r;

	return LUKS2_unmet_requirements(cd, &amp;cd-&gt;u.luks2.hdr, mask, cdflags &amp; CRYPT_CD_QUIET);
}

static int onlyLUKSunrestricted(struct crypt_device *cd)
{
	return _onlyLUKS(cd, CRYPT_CD_UNRESTRICTED, 0);
}

static int onlyLUKSnoRequirements(struct crypt_device *cd)
{
	return _onlyLUKS(cd, 0, 0);
}

static int onlyLUKS(struct crypt_device *cd)
{
	return _onlyLUKS(cd, 0, CRYPT_REQUIREMENT_OPAL);
}

static int _onlyLUKS2(struct crypt_device *cd, uint32_t cdflags, uint32_t mask)
{
	int r = 0;

	if (cd &amp;&amp; !cd-&gt;type) {
		if (!(cdflags &amp; CRYPT_CD_QUIET))
			log_err(cd, _("Cannot determine device type. Incompatible activation of device?"));
		r = -EINVAL;
	}

	if (!cd || !isLUKS2(cd-&gt;type)) {
		if (!(cdflags &amp; CRYPT_CD_QUIET))
			log_err(cd, _("This operation is supported only for LUKS2 device."));
		r = -EINVAL;
	}

	if (r || (cdflags &amp; CRYPT_CD_UNRESTRICTED))
		return r;

	return LUKS2_unmet_requirements(cd, &amp;cd-&gt;u.luks2.hdr, mask, cdflags &amp; CRYPT_CD_QUIET);
}

static int onlyLUKS2unrestricted(struct crypt_device *cd)
{
	return _onlyLUKS2(cd, CRYPT_CD_UNRESTRICTED, 0);
}

/* Internal only */
int onlyLUKS2(struct crypt_device *cd)
{
	return _onlyLUKS2(cd, 0, CRYPT_REQUIREMENT_OPAL);
}

/* Internal only */
int onlyLUKS2reencrypt(struct crypt_device *cd)
{
	return _onlyLUKS2(cd, 0, CRYPT_REQUIREMENT_ONLINE_REENCRYPT);
}

static void crypt_set_null_type(struct crypt_device *cd)
{
	free(cd-&gt;type);
	cd-&gt;type = NULL;
	cd-&gt;data_offset = 0;
	cd-&gt;metadata_size = 0;
	cd-&gt;keyslots_size = 0;
	crypt_safe_memzero(&amp;cd-&gt;u, sizeof(cd-&gt;u));
}

static void crypt_reset_null_type(struct crypt_device *cd)
{
	if (cd-&gt;type)
		return;

	free(cd-&gt;u.none.active_name);
	cd-&gt;u.none.active_name = NULL;
}

/* keyslot helpers */
static int keyslot_verify_or_find_empty(struct crypt_device *cd, int *keyslot)
{
	crypt_keyslot_info ki;

	if (*keyslot == CRYPT_ANY_SLOT) {
		if (isLUKS1(cd-&gt;type))
			*keyslot = LUKS_keyslot_find_empty(&amp;cd-&gt;u.luks1.hdr);
		else
			*keyslot = LUKS2_keyslot_find_empty(cd, &amp;cd-&gt;u.luks2.hdr, 0);
		if (*keyslot &lt; 0) {
			log_err(cd, _("All key slots full."));
			return -EINVAL;
		}
	}

	if (isLUKS1(cd-&gt;type))
		ki = LUKS_keyslot_info(&amp;cd-&gt;u.luks1.hdr, *keyslot);
	else
		ki = LUKS2_keyslot_info(&amp;cd-&gt;u.luks2.hdr, *keyslot);
	switch (ki) {
		case CRYPT_SLOT_INVALID:
			log_err(cd, _("Key slot %d is invalid, please select between 0 and %d."),
				*keyslot, crypt_keyslot_max(cd-&gt;type) - 1);
			return -EINVAL;
		case CRYPT_SLOT_INACTIVE:
			break;
		default:
			log_err(cd, _("Key slot %d is full, please select another one."),
				*keyslot);
			return -EINVAL;
	}

	log_dbg(cd, "Selected keyslot %d.", *keyslot);
	return 0;
}

/*
 * compares UUIDs returned by device-mapper (striped by cryptsetup) and uuid in header
 */
int crypt_uuid_cmp(const char *dm_uuid, const char *hdr_uuid)
{
	int i, j;
	char *str;

	if (!dm_uuid || !hdr_uuid)
		return -EINVAL;

	/* skip beyond LUKS2_HW_OPAL prefix */
	if (!strncmp(dm_uuid, CRYPT_LUKS2_HW_OPAL, strlen(CRYPT_LUKS2_HW_OPAL)))
		dm_uuid = dm_uuid + strlen(CRYPT_LUKS2_HW_OPAL);

	str = strchr(dm_uuid, '-');
	if (!str)
		return -EINVAL;

	for (i = 0, j = 1; hdr_uuid[i]; i++) {
		if (hdr_uuid[i] == '-')
			continue;

		if (!str[j] || str[j] == '-')
			return -EINVAL;

		if (str[j] != hdr_uuid[i])
			return -EINVAL;
		j++;
	}

	return 0;
}

/*
 * compares two UUIDs returned by device-mapper (striped by cryptsetup)
 * used for stacked LUKS2 &amp; INTEGRITY devices
 */
static int crypt_uuid_integrity_cmp(const char *dm_uuid, const char *dmi_uuid)
{
	int i;
	char *str, *stri;

	if (!dm_uuid || !dmi_uuid)
		return -EINVAL;

	/* skip beyond LUKS2_HW_OPAL prefix */
	if (!strncmp(dm_uuid, CRYPT_LUKS2_HW_OPAL, strlen(CRYPT_LUKS2_HW_OPAL)))
		dm_uuid = dm_uuid + strlen(CRYPT_LUKS2_HW_OPAL);

	str = strchr(dm_uuid, '-');
	if (!str)
		return -EINVAL;

	stri = strchr(dmi_uuid, '-');
	if (!stri)
		return -EINVAL;

	for (i = 1; str[i] &amp;&amp; str[i] != '-'; i++) {
		if (!stri[i])
			return -EINVAL;

		if (str[i] != stri[i])
			return -EINVAL;
	}

	return 0;
}

/*
 * compares type of active device to provided string
 */
int crypt_uuid_type_cmp(const char *dm_uuid, const char *type)
{
	size_t len;

	assert(type);

	len = strlen(type);
	if (dm_uuid &amp;&amp; strlen(dm_uuid) &gt; len &amp;&amp;
	    !strncmp(dm_uuid, type, len) &amp;&amp; dm_uuid[len] == '-')
		return 0;

	return -ENODEV;
}

int PLAIN_activate(struct crypt_device *cd,
		     const char *name,
		     struct volume_key *vk,
		     uint64_t size,
		     uint32_t flags)
{
	int r;
	struct crypt_dm_active_device dmd = {
		.flags = flags,
		.size = size,
	};

	log_dbg(cd, "Trying to activate PLAIN device %s using cipher %s.",
		name, crypt_get_cipher_spec(cd));

	if (MISALIGNED(size, device_block_size(cd, crypt_data_device(cd)) &gt;&gt; SECTOR_SHIFT)) {
		log_err(cd, _("Device size is not aligned to device logical block size."));
		return -EINVAL;
	}

	r = dm_crypt_target_set(&amp;dmd.segment, 0, dmd.size, crypt_data_device(cd),
			vk, crypt_get_cipher_spec(cd), crypt_get_iv_offset(cd),
			crypt_get_data_offset(cd), crypt_get_integrity(cd),
			crypt_get_integrity_tag_size(cd), crypt_get_sector_size(cd));
	if (r &lt; 0)
		return r;

	r = create_or_reload_device(cd, name, CRYPT_PLAIN, &amp;dmd);

	dm_targets_free(cd, &amp;dmd);
	return r;
}

int crypt_confirm(struct crypt_device *cd, const char *msg)
{
	if (!cd || !cd-&gt;confirm)
		return 1;
	else
		return cd-&gt;confirm(msg, cd-&gt;confirm_usrptr);
}

void crypt_set_log_callback(struct crypt_device *cd,
	void (*log)(int level, const char *msg, void *usrptr),
	void *usrptr)
{
	if (!cd) {
		_default_log = log;
		_default_log_usrptr = usrptr;
	} else {
		cd-&gt;log = log;
		cd-&gt;log_usrptr = usrptr;
	}
}

void crypt_set_confirm_callback(struct crypt_device *cd,
	int (*confirm)(const char *msg, void *usrptr),
	void *usrptr)
{
	if (cd) {
		cd-&gt;confirm = confirm;
		cd-&gt;confirm_usrptr = usrptr;
	}
}

const char *crypt_get_dir(void)
{
	return dm_get_dir();
}

int crypt_init(struct crypt_device **cd, const char *device)
{
	struct crypt_device *h = NULL;
	int r;

	if (!cd)
		return -EINVAL;

	log_dbg(NULL, "Allocating context for crypt device %s.", device ?: "(none)");
#if !HAVE_DECL_O_CLOEXEC
	log_dbg(NULL, "Running without O_CLOEXEC.");
#endif

	if (!(h = malloc(sizeof(struct crypt_device))))
		return -ENOMEM;

	memset(h, 0, sizeof(*h));

	r = device_alloc(NULL, &amp;h-&gt;device, device);
	if (r &lt; 0) {
		free(h);
		return r;
	}

	dm_backend_init(NULL);

	h-&gt;rng_type = crypt_random_default_key_rng();

	*cd = h;
	return 0;
}

static int crypt_check_data_device_size(struct crypt_device *cd)
{
	int r;
	uint64_t size, size_min;

	/* Check data device size, require at least header or one sector */
	size_min = crypt_get_data_offset(cd) &lt;&lt; SECTOR_SHIFT ?: SECTOR_SIZE;

	r = device_size(cd-&gt;device, &amp;size);
	if (r &lt; 0)
		return r;

	if (size &lt; size_min) {
		log_err(cd, _("Header detected but device %s is too small."),
			device_path(cd-&gt;device));
		return -EINVAL;
	}

	return r;
}

static int _crypt_set_data_device(struct crypt_device *cd, const char *device)
{
	struct device *dev = NULL;
	int r;

	r = device_alloc(cd, &amp;dev, device);
	if (r &lt; 0)
		return r;

	if (!cd-&gt;metadata_device) {
		cd-&gt;metadata_device = cd-&gt;device;
	} else
		device_free(cd, cd-&gt;device);

	cd-&gt;device = dev;

	r = crypt_check_data_device_size(cd);
	if (!r &amp;&amp; isLUKS2(cd-&gt;type))
		device_set_block_size(crypt_data_device(cd), LUKS2_get_sector_size(&amp;cd-&gt;u.luks2.hdr));

	return r;
}

int crypt_set_data_device(struct crypt_device *cd, const char *device)
{
	/* metadata device must be set */
	if (!cd || !cd-&gt;device || !device)
		return -EINVAL;

	log_dbg(cd, "Setting ciphertext data device to %s.", device ?: "(none)");

	if (!isLUKS1(cd-&gt;type) &amp;&amp; !isLUKS2(cd-&gt;type) &amp;&amp; !isVERITY(cd-&gt;type) &amp;&amp;
	    !isINTEGRITY(cd-&gt;type) &amp;&amp; !isTCRYPT(cd-&gt;type)) {
		log_err(cd, _("This operation is not supported for this device type."));
		return -EINVAL;
	}

	if (isLUKS2(cd-&gt;type) &amp;&amp; crypt_get_luks2_reencrypt(cd)) {
		log_err(cd, _("Illegal operation with reencryption in-progress."));
		return -EINVAL;
	}

	return _crypt_set_data_device(cd, device);
}

int crypt_init_data_device(struct crypt_device **cd, const char *device, const char *data_device)
{
	int r;

	if (!cd)
		return -EINVAL;

	r = crypt_init(cd, device);
	if (r || !data_device || !strcmp(device, data_device))
		return r;

	log_dbg(NULL, "Setting ciphertext data device to %s.", data_device);
	r = _crypt_set_data_device(*cd, data_device);
	if (r) {
		crypt_free(*cd);
		*cd = NULL;
	}

	return r;
}

static void crypt_free_type(struct crypt_device *cd, const char *force_type)
{
	const char *type = force_type ?: cd-&gt;type;

	if (isPLAIN(type)) {
		free(CONST_CAST(void*)cd-&gt;u.plain.hdr.hash);
		free(cd-&gt;u.plain.cipher);
		free(cd-&gt;u.plain.cipher_spec);
	} else if (isLUKS2(type)) {
		LUKS2_reencrypt_free(cd, cd-&gt;u.luks2.rh);
		LUKS2_hdr_free(cd, &amp;cd-&gt;u.luks2.hdr);
		free(cd-&gt;u.luks2.keyslot_cipher);
	} else if (isLUKS1(type)) {
		free(cd-&gt;u.luks1.cipher_spec);
	} else if (isLOOPAES(type)) {
		free(CONST_CAST(void*)cd-&gt;u.loopaes.hdr.hash);
		free(cd-&gt;u.loopaes.cipher);
		free(cd-&gt;u.loopaes.cipher_spec);
	} else if (isVERITY(type)) {
		free(CONST_CAST(void*)cd-&gt;u.verity.hdr.hash_name);
		free(CONST_CAST(void*)cd-&gt;u.verity.hdr.data_device);
		free(CONST_CAST(void*)cd-&gt;u.verity.hdr.hash_device);
		free(CONST_CAST(void*)cd-&gt;u.verity.hdr.fec_device);
		free(CONST_CAST(void*)cd-&gt;u.verity.hdr.salt);
		free(CONST_CAST(void*)cd-&gt;u.verity.root_hash);
		free(cd-&gt;u.verity.uuid);
		device_free(cd, cd-&gt;u.verity.fec_device);
	} else if (isINTEGRITY(type)) {
		free(CONST_CAST(void*)cd-&gt;u.integrity.params.integrity);
		free(CONST_CAST(void*)cd-&gt;u.integrity.params.journal_integrity);
		free(CONST_CAST(void*)cd-&gt;u.integrity.params.journal_crypt);
		crypt_free_volume_key(cd-&gt;u.integrity.journal_crypt_key);
		crypt_free_volume_key(cd-&gt;u.integrity.journal_mac_key);
	} else if (isBITLK(type)) {
		free(cd-&gt;u.bitlk.cipher_spec);
		BITLK_bitlk_metadata_free(&amp;cd-&gt;u.bitlk.params);
	} else if (!type) {
		free(cd-&gt;u.none.active_name);
		cd-&gt;u.none.active_name = NULL;
	}

	crypt_set_null_type(cd);
}

/* internal only */
struct crypt_pbkdf_type *crypt_get_pbkdf(struct crypt_device *cd)
{
	return &amp;cd-&gt;pbkdf;
}

/*
 * crypt_load() helpers
 */
static int _crypt_load_luks2(struct crypt_device *cd, int reload, int repair)
{
	int r;
	char *type = NULL;
	struct luks2_hdr hdr2 = {};

	log_dbg(cd, "%soading LUKS2 header (repair %sabled).", reload ? "Rel" : "L", repair ? "en" : "dis");

	r = LUKS2_hdr_read(cd, &amp;hdr2, repair);
	if (r)
		return r;

	if (!reload) {
		type = strdup(CRYPT_LUKS2);
		if (!type) {
			r = -ENOMEM;
			goto out;
		}
	}

	if (verify_pbkdf_params(cd, &amp;cd-&gt;pbkdf)) {
		r = init_pbkdf_type(cd, NULL, CRYPT_LUKS2);
		if (r)
			goto out;
	}

	if (reload) {
		LUKS2_hdr_free(cd, &amp;cd-&gt;u.luks2.hdr);
		free(cd-&gt;u.luks2.keyslot_cipher);
	} else
		cd-&gt;type = type;

	r = 0;
	memcpy(&amp;cd-&gt;u.luks2.hdr, &amp;hdr2, sizeof(hdr2));
	cd-&gt;u.luks2.keyslot_cipher = NULL;
	cd-&gt;u.luks2.rh = NULL;

out:
	if (r) {
		free(type);
		LUKS2_hdr_free(cd, &amp;hdr2);
	}
	return r;
}

static void _luks2_rollback(struct crypt_device *cd)
{
	if (!cd || !isLUKS2(cd-&gt;type))
		return;

	if (LUKS2_hdr_rollback(cd, &amp;cd-&gt;u.luks2.hdr)) {
		log_err(cd, _("Failed to rollback LUKS2 metadata in memory."));
		return;
	}

	free(cd-&gt;u.luks2.keyslot_cipher);
	cd-&gt;u.luks2.keyslot_cipher = NULL;
}

static int _crypt_load_luks(struct crypt_device *cd, const char *requested_type,
			    bool quiet, bool repair)
{
	char *cipher_spec;
	struct luks_phdr hdr = {};
	int r, version;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	/* This will return 0 if primary LUKS2 header is damaged */
	version = LUKS2_hdr_version_unlocked(cd, NULL);

	if ((isLUKS1(requested_type) &amp;&amp; version == 2) ||
	    (isLUKS2(requested_type) &amp;&amp; version == 1))
		return -EINVAL;

	if (requested_type)
		version = 0;

	if (isLUKS1(requested_type) || version == 1) {
		if (isLUKS2(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}

		if (verify_pbkdf_params(cd, &amp;cd-&gt;pbkdf)) {
			r = init_pbkdf_type(cd, NULL, CRYPT_LUKS1);
			if (r)
				return r;
		}

		r = LUKS_read_phdr(&amp;hdr, !quiet, repair, cd);
		if (r)
			goto out;

		if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_LUKS1))) {
			r = -ENOMEM;
			goto out;
		}

		/* Set hash to the same as in the loaded header */
		if (!cd-&gt;pbkdf.hash || strcmp(cd-&gt;pbkdf.hash, hdr.hashSpec)) {
			free(CONST_CAST(void*)cd-&gt;pbkdf.hash);
			cd-&gt;pbkdf.hash = strdup(hdr.hashSpec);
			if (!cd-&gt;pbkdf.hash) {
				r = -ENOMEM;
				goto out;
			}
		}

		if (asprintf(&amp;cipher_spec, "%s-%s", hdr.cipherName, hdr.cipherMode) &lt; 0) {
			r = -ENOMEM;
			goto out;
		}

		free(cd-&gt;u.luks1.cipher_spec);
		cd-&gt;u.luks1.cipher_spec = cipher_spec;

		memcpy(&amp;cd-&gt;u.luks1.hdr, &amp;hdr, sizeof(hdr));
	} else if (isLUKS2(requested_type) || version == 2 || version == 0) {
		if (isLUKS1(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}

		/*
		 * Current LUKS2 repair just overrides blkid probes
		 * and perform auto-recovery if possible. This is safe
		 * unless future LUKS2 repair code do something more
		 * sophisticated. In such case we would need to check
		 * for LUKS2 requirements and decide if it's safe to
		 * perform repair.
		 */
		r =  _crypt_load_luks2(cd, cd-&gt;type != NULL, repair);
		if (!r)
			device_set_block_size(crypt_data_device(cd), LUKS2_get_sector_size(&amp;cd-&gt;u.luks2.hdr));
		else if (!quiet)
			log_err(cd, _("Device %s is not a valid LUKS device."), mdata_device_path(cd));
	} else {
		if (version &gt; 2)
			log_err(cd, _("Unsupported LUKS version %d."), version);
		r = -EINVAL;
	}
out:
	crypt_safe_memzero(&amp;hdr, sizeof(hdr));

	return r;
}

static int _crypt_load_tcrypt(struct crypt_device *cd, struct crypt_params_tcrypt *params)
{
	int r;

	if (!params)
		return -EINVAL;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	memcpy(&amp;cd-&gt;u.tcrypt.params, params, sizeof(*params));

	r = TCRYPT_read_phdr(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);

	cd-&gt;u.tcrypt.params.passphrase = NULL;
	cd-&gt;u.tcrypt.params.passphrase_size = 0;
	cd-&gt;u.tcrypt.params.keyfiles = NULL;
	cd-&gt;u.tcrypt.params.keyfiles_count = 0;
	cd-&gt;u.tcrypt.params.veracrypt_pim = 0;

	if (r &lt; 0)
		goto out;

	if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_TCRYPT)))
		r = -ENOMEM;
out:
	if (r &lt; 0)
		crypt_free_type(cd, CRYPT_TCRYPT);
	return r;
}

static int _crypt_load_verity(struct crypt_device *cd, struct crypt_params_verity *params)
{
	int r;
	uint64_t sb_offset = 0;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	if (params &amp;&amp; params-&gt;flags &amp; CRYPT_VERITY_NO_HEADER)
		return -EINVAL;

	if (params)
		sb_offset = params-&gt;hash_area_offset;

	r = VERITY_read_sb(cd, sb_offset, &amp;cd-&gt;u.verity.uuid, &amp;cd-&gt;u.verity.hdr);
	if (r &lt; 0)
		goto out;

	if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_VERITY))) {
		r = -ENOMEM;
		goto out;
	}

	if (params)
		cd-&gt;u.verity.hdr.flags = params-&gt;flags;

	/* Hash availability checked in sb load */
	cd-&gt;u.verity.root_hash_size = crypt_hash_size(cd-&gt;u.verity.hdr.hash_name);
	if (cd-&gt;u.verity.root_hash_size &gt; 4096) {
		r = -EINVAL;
		goto out;
	}

	if (params &amp;&amp; params-&gt;data_device &amp;&amp;
	    (r = crypt_set_data_device(cd, params-&gt;data_device)) &lt; 0)
		goto out;

	if (params &amp;&amp; params-&gt;fec_device) {
		r = device_alloc(cd, &amp;cd-&gt;u.verity.fec_device, params-&gt;fec_device);
		if (r &lt; 0)
			goto out;
		cd-&gt;u.verity.hdr.fec_area_offset = params-&gt;fec_area_offset;
		cd-&gt;u.verity.hdr.fec_roots = params-&gt;fec_roots;
	}
out:
	if (r &lt; 0)
		crypt_free_type(cd, CRYPT_VERITY);
	return r;
}

static int _crypt_load_integrity(struct crypt_device *cd,
				 struct crypt_params_integrity *params)
{
	int r;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	r = INTEGRITY_read_sb(cd, &amp;cd-&gt;u.integrity.params, &amp;cd-&gt;u.integrity.sb_flags);
	if (r &lt; 0)
		goto out;

	// FIXME: add checks for fields in integrity sb vs params

	r = -ENOMEM;
	if (params) {
		cd-&gt;u.integrity.params.journal_watermark = params-&gt;journal_watermark;
		cd-&gt;u.integrity.params.journal_commit_time = params-&gt;journal_commit_time;
		cd-&gt;u.integrity.params.buffer_sectors = params-&gt;buffer_sectors;
		if (params-&gt;integrity &amp;&amp;
		    !(cd-&gt;u.integrity.params.integrity = strdup(params-&gt;integrity)))
			goto out;
		cd-&gt;u.integrity.params.integrity_key_size = params-&gt;integrity_key_size;
		if (params-&gt;journal_integrity &amp;&amp;
		    !(cd-&gt;u.integrity.params.journal_integrity = strdup(params-&gt;journal_integrity)))
			goto out;
		if (params-&gt;journal_crypt &amp;&amp;
		    !(cd-&gt;u.integrity.params.journal_crypt = strdup(params-&gt;journal_crypt)))
			goto out;

		if (params-&gt;journal_crypt_key) {
			cd-&gt;u.integrity.journal_crypt_key =
				crypt_alloc_volume_key(params-&gt;journal_crypt_key_size,
						       params-&gt;journal_crypt_key);
			if (!cd-&gt;u.integrity.journal_crypt_key)
				goto out;
		}
		if (params-&gt;journal_integrity_key) {
			cd-&gt;u.integrity.journal_mac_key =
				crypt_alloc_volume_key(params-&gt;journal_integrity_key_size,
						       params-&gt;journal_integrity_key);
			if (!cd-&gt;u.integrity.journal_mac_key)
				goto out;
		}
	}

	if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_INTEGRITY)))
		goto out;
	r = 0;
out:
	if (r &lt; 0)
		crypt_free_type(cd, CRYPT_INTEGRITY);
	return r;
}

static int _crypt_load_bitlk(struct crypt_device *cd)
{
	int r;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	r = BITLK_read_sb(cd, &amp;cd-&gt;u.bitlk.params);
	if (r &lt; 0)
		goto out;

	if (asprintf(&amp;cd-&gt;u.bitlk.cipher_spec, "%s-%s",
		     cd-&gt;u.bitlk.params.cipher, cd-&gt;u.bitlk.params.cipher_mode) &lt; 0) {
		cd-&gt;u.bitlk.cipher_spec = NULL;
		r = -ENOMEM;
		goto out;
	}

	if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_BITLK))) {
		r = -ENOMEM;
		goto out;
	}

	device_set_block_size(crypt_data_device(cd), cd-&gt;u.bitlk.params.sector_size);
out:
	if (r &lt; 0)
		crypt_free_type(cd, CRYPT_BITLK);
	return r;
}

static int _crypt_load_fvault2(struct crypt_device *cd)
{
	int r;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	r = FVAULT2_read_metadata(cd, &amp;cd-&gt;u.fvault2.params);
	if (r &lt; 0)
		goto out;

	if (!cd-&gt;type &amp;&amp; !(cd-&gt;type = strdup(CRYPT_FVAULT2)))
		r = -ENOMEM;
out:
	if (r &lt; 0)
		crypt_free_type(cd, CRYPT_FVAULT2);
	return r;
}

int crypt_load(struct crypt_device *cd,
	       const char *requested_type,
	       void *params)
{
	int r;

	if (!cd)
		return -EINVAL;

	log_dbg(cd, "Trying to load %s crypt type from device %s.",
		requested_type ?: "any", mdata_device_path(cd) ?: "(none)");

	if (!crypt_metadata_device(cd))
		return -EINVAL;

	crypt_reset_null_type(cd);
	cd-&gt;data_offset = 0;
	cd-&gt;metadata_size = 0;
	cd-&gt;keyslots_size = 0;

	if (!requested_type || isLUKS1(requested_type) || isLUKS2(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isLUKS1(cd-&gt;type) &amp;&amp; !isLUKS2(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}

		r = _crypt_load_luks(cd, requested_type, true, false);
	} else if (isVERITY(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isVERITY(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}
		r = _crypt_load_verity(cd, params);
	} else if (isTCRYPT(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isTCRYPT(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}
		r = _crypt_load_tcrypt(cd, params);
	} else if (isINTEGRITY(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isINTEGRITY(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}
		r = _crypt_load_integrity(cd, params);
	} else if (isBITLK(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isBITLK(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}
		r = _crypt_load_bitlk(cd);
	} else if (isFVAULT2(requested_type)) {
		if (cd-&gt;type &amp;&amp; !isFVAULT2(cd-&gt;type)) {
			log_dbg(cd, "Context is already initialized to type %s", cd-&gt;type);
			return -EINVAL;
		}
		r = _crypt_load_fvault2(cd);
	} else
		return -EINVAL;

	return r;
}

/*
 * crypt_init() helpers
 */
static int _init_by_name_crypt_none(struct crypt_device *cd)
{
	int r;
	char _mode[MAX_CIPHER_LEN];
	struct crypt_dm_active_device dmd;
	struct dm_target *tgt = &amp;dmd.segment;

	if (cd-&gt;type || !cd-&gt;u.none.active_name)
		return -EINVAL;

	r = dm_query_device(cd, cd-&gt;u.none.active_name,
			DM_ACTIVE_CRYPT_CIPHER |
			DM_ACTIVE_CRYPT_KEYSIZE, &amp;dmd);
	if (r &lt; 0)
		return r;
	if (!single_segment(&amp;dmd) || tgt-&gt;type != DM_CRYPT)
		r = -EINVAL;
	if (r &gt;= 0)
		r = crypt_parse_name_and_mode(tgt-&gt;u.crypt.cipher,
					      cd-&gt;u.none.cipher, NULL,
					      _mode);

	if (!r) {
		r = snprintf(cd-&gt;u.none.cipher_spec, sizeof(cd-&gt;u.none.cipher_spec),
			 "%s-%s", cd-&gt;u.none.cipher, _mode);
		if (r &lt; 0 || (size_t)r &gt;= sizeof(cd-&gt;u.none.cipher_spec))
			r = -EINVAL;
		else {
			cd-&gt;u.none.cipher_mode = cd-&gt;u.none.cipher_spec + strlen(cd-&gt;u.none.cipher) + 1;
			cd-&gt;u.none.key_size = tgt-&gt;u.crypt.vk-&gt;keylength;
			r = 0;
		}
	}

	if (!r &amp;&amp; tgt-&gt;u.crypt.integrity) {
		r = snprintf(cd-&gt;u.none.integrity_spec, sizeof(cd-&gt;u.none.integrity_spec),
			 "%s", tgt-&gt;u.crypt.integrity);
		if (r &lt; 0 || (size_t)r &gt;= sizeof(cd-&gt;u.none.integrity_spec))
			r = -EINVAL;
		else
			r = 0;
	}

	cd-&gt;u.none.sector_size = tgt-&gt;u.crypt.sector_size;

	dm_targets_free(cd, &amp;dmd);
	return r;
}

static const char *LUKS_UUID(struct crypt_device *cd)
{
	if (!cd)
		return NULL;
	else if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.uuid;
	else if (isLUKS2(cd-&gt;type))
		return cd-&gt;u.luks2.hdr.uuid;

	return NULL;
}

static int _init_by_name_crypt(struct crypt_device *cd, const char *name)
{
	bool found = false;
	char **dep, *cipher_spec = NULL, cipher[MAX_CIPHER_LEN], cipher_mode[MAX_CIPHER_LEN];
	char deps_uuid_prefix[40], *deps[MAX_DM_DEPS+1] = {};
	const char *dev, *namei;
	int key_nums, r;
	struct crypt_dm_active_device dmd, dmdi = {}, dmdep = {};
	struct dm_target *tgt = &amp;dmd.segment, *tgti = &amp;dmdi.segment;

	r = dm_query_device(cd, name,
			DM_ACTIVE_DEVICE |
			DM_ACTIVE_UUID |
			DM_ACTIVE_CRYPT_CIPHER |
			DM_ACTIVE_CRYPT_KEYSIZE, &amp;dmd);
	if (r &lt; 0)
		return r;

	if (tgt-&gt;type != DM_CRYPT &amp;&amp; tgt-&gt;type != DM_LINEAR) {
		log_dbg(cd, "Unsupported device table detected in %s.", name);
		r = -EINVAL;
		goto out;
	}

	r = -EINVAL;

	if (dmd.uuid) {
		r = snprintf(deps_uuid_prefix, sizeof(deps_uuid_prefix), CRYPT_SUBDEV "-%.32s", dmd.uuid + 6);
		if (r &lt; 0 || (size_t)r != (sizeof(deps_uuid_prefix) - 1))
			r = -EINVAL;
	}

	if (r &gt;= 0) {
		r = dm_device_deps(cd, name, deps_uuid_prefix, deps, ARRAY_SIZE(deps));
		if (r)
			goto out;
	}

	r = crypt_parse_name_and_mode(tgt-&gt;type == DM_LINEAR ? "null" : tgt-&gt;u.crypt.cipher, cipher,
				      &amp;key_nums, cipher_mode);
	if (r &lt; 0) {
		/* Allow crypt null context with unknown cipher string */
		if (tgt-&gt;type == DM_CRYPT &amp;&amp; !tgt-&gt;u.crypt.integrity) {
			crypt_set_null_type(cd);
			r = 0;
			goto out;
		}
		log_err(cd, _("No known cipher specification pattern detected for active device %s."), name);
		goto out;
	}

	dep = deps;

	if (tgt-&gt;type == DM_CRYPT &amp;&amp; tgt-&gt;u.crypt.integrity &amp;&amp; (namei = device_dm_name(tgt-&gt;data_device))) {
		r = dm_query_device(cd, namei, DM_ACTIVE_DEVICE, &amp;dmdi);
		if (r &lt; 0)
			goto out;
		if (!single_segment(&amp;dmdi) || tgti-&gt;type != DM_INTEGRITY) {
			log_dbg(cd, "Unsupported device table detected in %s.", namei);
			r = -EINVAL;
			goto out;
		}

		/*
		 * Data device for crypt with integrity is not dm-integrity device,
		 * but always the device underlying dm-integrity.
		 */
		device_free(cd, cd-&gt;device);
		MOVE_REF(cd-&gt;device, tgti-&gt;data_device);
	}

	/* do not try to lookup LUKS2 header in detached header mode */
	if (dmd.uuid &amp;&amp; !cd-&gt;metadata_device &amp;&amp; !found) {
		while (*dep &amp;&amp; !found) {
			r = dm_query_device(cd, *dep, DM_ACTIVE_DEVICE, &amp;dmdep);
			if (r &lt; 0)
				goto out;

			tgt = &amp;dmdep.segment;

			while (tgt &amp;&amp; !found) {
				dev = device_path(tgt-&gt;data_device);
				if (!dev) {
					tgt = tgt-&gt;next;
					continue;
				}
				if (!strstr(dev, dm_get_dir()) ||
				    !crypt_string_in(dev + strlen(dm_get_dir()) + 1, deps, ARRAY_SIZE(deps))) {
					device_free(cd, cd-&gt;device);
					MOVE_REF(cd-&gt;device, tgt-&gt;data_device);
					found = true;
				}
				tgt = tgt-&gt;next;
			}
			dep++;
			dm_targets_free(cd, &amp;dmdep);
		}
	}

	if (asprintf(&amp;cipher_spec, "%s-%s", cipher, cipher_mode) &lt; 0) {
		cipher_spec = NULL;
		r = -ENOMEM;
		goto out;
	}

	tgt = &amp;dmd.segment;
	r = 0;

	if (isPLAIN(cd-&gt;type) &amp;&amp; single_segment(&amp;dmd) &amp;&amp; tgt-&gt;type == DM_CRYPT) {
		cd-&gt;u.plain.hdr.hash = NULL; /* no way to get this */
		cd-&gt;u.plain.hdr.offset = tgt-&gt;u.crypt.offset;
		cd-&gt;u.plain.hdr.skip = tgt-&gt;u.crypt.iv_offset;
		cd-&gt;u.plain.hdr.sector_size = tgt-&gt;u.crypt.sector_size;
		cd-&gt;u.plain.key_size = tgt-&gt;u.crypt.vk-&gt;keylength;
		cd-&gt;u.plain.cipher = strdup(cipher);
		MOVE_REF(cd-&gt;u.plain.cipher_spec, cipher_spec);
		cd-&gt;u.plain.cipher_mode = cd-&gt;u.plain.cipher_spec + strlen(cipher) + 1;
	} else if (isLOOPAES(cd-&gt;type) &amp;&amp; single_segment(&amp;dmd) &amp;&amp; tgt-&gt;type == DM_CRYPT) {
		cd-&gt;u.loopaes.hdr.offset = tgt-&gt;u.crypt.offset;
		cd-&gt;u.loopaes.cipher = strdup(cipher);
		MOVE_REF(cd-&gt;u.loopaes.cipher_spec, cipher_spec);
		cd-&gt;u.loopaes.cipher_mode = cd-&gt;u.loopaes.cipher_spec + strlen(cipher) + 1;
		/* version 3 uses last key for IV */
		if (tgt-&gt;u.crypt.vk-&gt;keylength % key_nums)
			key_nums++;
		cd-&gt;u.loopaes.key_size = tgt-&gt;u.crypt.vk-&gt;keylength / key_nums;
	} else if (isLUKS1(cd-&gt;type) || isLUKS2(cd-&gt;type)) {
		if (crypt_metadata_device(cd)) {
			r = _crypt_load_luks(cd, cd-&gt;type, true, false);
			if (r &lt; 0) {
				log_dbg(cd, "LUKS device header does not match active device.");
				crypt_set_null_type(cd);
				device_close(cd, cd-&gt;metadata_device);
				device_close(cd, cd-&gt;device);
				r = 0;
				goto out;
			}
			/* check whether UUIDs match each other */
			r = crypt_uuid_cmp(dmd.uuid, LUKS_UUID(cd));
			if (r &lt; 0) {
				log_dbg(cd, "LUKS device header uuid: %s mismatches DM returned uuid %s",
					LUKS_UUID(cd), dmd.uuid);
				crypt_free_type(cd, NULL);
				r = 0;
				goto out;
			}
		} else {
			log_dbg(cd, "LUKS device header not available.");
			crypt_set_null_type(cd);
			r = 0;
		}
	} else if (isTCRYPT(cd-&gt;type) &amp;&amp; single_segment(&amp;dmd) &amp;&amp; tgt-&gt;type == DM_CRYPT) {
		r = TCRYPT_init_by_name(cd, name, dmd.uuid, tgt, &amp;cd-&gt;device,
					&amp;cd-&gt;u.tcrypt.params, &amp;cd-&gt;u.tcrypt.hdr);
	} else if (isBITLK(cd-&gt;type)) {
		r = _crypt_load_bitlk(cd);
		if (r &lt; 0) {
			log_dbg(cd, "BITLK device header not available.");
			crypt_set_null_type(cd);
			r = 0;
		}
	} else if (isFVAULT2(cd-&gt;type)) {
		r = _crypt_load_fvault2(cd);
		if (r &lt; 0) {
			log_dbg(cd, "FVAULT2 device header not available.");
			crypt_set_null_type(cd);
			r = 0;
		}
	}
out:
	dm_targets_free(cd, &amp;dmd);
	dm_targets_free(cd, &amp;dmdi);
	dm_targets_free(cd, &amp;dmdep);
	free(CONST_CAST(void*)dmd.uuid);
	free(cipher_spec);
	dep = deps;
	while (*dep)
		free(*dep++);
	return r;
}

static int _init_by_name_verity(struct crypt_device *cd, const char *name)
{
	struct crypt_dm_active_device dmd;
	struct dm_target *tgt = &amp;dmd.segment;
	int r;

	r = dm_query_device(cd, name,
				DM_ACTIVE_DEVICE |
				DM_ACTIVE_VERITY_HASH_DEVICE |
				DM_ACTIVE_VERITY_ROOT_HASH |
				DM_ACTIVE_VERITY_PARAMS, &amp;dmd);
	if (r &lt; 0)
		return r;
	if (!single_segment(&amp;dmd) || tgt-&gt;type != DM_VERITY) {
		log_dbg(cd, "Unsupported device table detected in %s.", name);
		r = -EINVAL;
		goto out;
	}
	if (r &gt; 0)
		r = 0;

	if (isVERITY(cd-&gt;type)) {
		cd-&gt;u.verity.uuid = NULL; // FIXME
		cd-&gt;u.verity.hdr.flags = CRYPT_VERITY_NO_HEADER; //FIXME
		cd-&gt;u.verity.hdr.data_size = tgt-&gt;u.verity.vp-&gt;data_size;
		cd-&gt;u.verity.root_hash_size = tgt-&gt;u.verity.root_hash_size;
		MOVE_REF(cd-&gt;u.verity.hdr.hash_name, tgt-&gt;u.verity.vp-&gt;hash_name);
		cd-&gt;u.verity.hdr.data_device = NULL;
		cd-&gt;u.verity.hdr.hash_device = NULL;
		cd-&gt;u.verity.hdr.data_block_size = tgt-&gt;u.verity.vp-&gt;data_block_size;
		cd-&gt;u.verity.hdr.hash_block_size = tgt-&gt;u.verity.vp-&gt;hash_block_size;
		cd-&gt;u.verity.hdr.hash_area_offset = tgt-&gt;u.verity.hash_offset;
		cd-&gt;u.verity.hdr.fec_area_offset = tgt-&gt;u.verity.fec_offset;
		cd-&gt;u.verity.hdr.hash_type = tgt-&gt;u.verity.vp-&gt;hash_type;
		cd-&gt;u.verity.hdr.flags = tgt-&gt;u.verity.vp-&gt;flags;
		cd-&gt;u.verity.hdr.salt_size = tgt-&gt;u.verity.vp-&gt;salt_size;
		MOVE_REF(cd-&gt;u.verity.hdr.salt, tgt-&gt;u.verity.vp-&gt;salt);
		MOVE_REF(cd-&gt;u.verity.hdr.fec_device, tgt-&gt;u.verity.vp-&gt;fec_device);
		cd-&gt;u.verity.hdr.fec_roots = tgt-&gt;u.verity.vp-&gt;fec_roots;
		MOVE_REF(cd-&gt;u.verity.fec_device, tgt-&gt;u.verity.fec_device);
		MOVE_REF(cd-&gt;metadata_device, tgt-&gt;u.verity.hash_device);
		MOVE_REF(cd-&gt;u.verity.root_hash, tgt-&gt;u.verity.root_hash);
	}
out:
	dm_targets_free(cd, &amp;dmd);
	return r;
}

static int _init_by_name_integrity(struct crypt_device *cd, const char *name)
{
	struct crypt_dm_active_device dmd;
	struct dm_target *tgt = &amp;dmd.segment;
	int r;

	r = dm_query_device(cd, name, DM_ACTIVE_DEVICE |
				      DM_ACTIVE_CRYPT_KEY |
				      DM_ACTIVE_CRYPT_KEYSIZE |
				      DM_ACTIVE_INTEGRITY_PARAMS, &amp;dmd);
	if (r &lt; 0)
		return r;
	if (!single_segment(&amp;dmd) || tgt-&gt;type != DM_INTEGRITY) {
		log_dbg(cd, "Unsupported device table detected in %s.", name);
		r = -EINVAL;
		goto out;
	}
	if (r &gt; 0)
		r = 0;

	if (isINTEGRITY(cd-&gt;type)) {
		cd-&gt;u.integrity.params.tag_size = tgt-&gt;u.integrity.tag_size;
		cd-&gt;u.integrity.params.sector_size = tgt-&gt;u.integrity.sector_size;
		cd-&gt;u.integrity.params.journal_size = tgt-&gt;u.integrity.journal_size;
		cd-&gt;u.integrity.params.journal_watermark = tgt-&gt;u.integrity.journal_watermark;
		cd-&gt;u.integrity.params.journal_commit_time = tgt-&gt;u.integrity.journal_commit_time;
		cd-&gt;u.integrity.params.interleave_sectors = tgt-&gt;u.integrity.interleave_sectors;
		cd-&gt;u.integrity.params.buffer_sectors = tgt-&gt;u.integrity.buffer_sectors;
		MOVE_REF(cd-&gt;u.integrity.params.integrity, tgt-&gt;u.integrity.integrity);
		MOVE_REF(cd-&gt;u.integrity.params.journal_integrity, tgt-&gt;u.integrity.journal_integrity);
		MOVE_REF(cd-&gt;u.integrity.params.journal_crypt, tgt-&gt;u.integrity.journal_crypt);

		if (tgt-&gt;u.integrity.vk)
			cd-&gt;u.integrity.params.integrity_key_size = tgt-&gt;u.integrity.vk-&gt;keylength;
		if (tgt-&gt;u.integrity.journal_integrity_key)
			cd-&gt;u.integrity.params.journal_integrity_key_size = tgt-&gt;u.integrity.journal_integrity_key-&gt;keylength;
		if (tgt-&gt;u.integrity.journal_crypt_key)
			cd-&gt;u.integrity.params.integrity_key_size = tgt-&gt;u.integrity.journal_crypt_key-&gt;keylength;
		MOVE_REF(cd-&gt;metadata_device, tgt-&gt;u.integrity.meta_device);
	}
out:
	dm_targets_free(cd, &amp;dmd);
	return r;
}

int crypt_init_by_name_and_header(struct crypt_device **cd,
				  const char *name,
				  const char *header_device)
{
	crypt_status_info ci;
	struct crypt_dm_active_device dmd;
	struct dm_target *tgt = &amp;dmd.segment;
	int r;

	if (!cd || !name)
		return -EINVAL;

	log_dbg(NULL, "Allocating crypt device context by device %s.", name);

	ci = crypt_status(NULL, name);
	if (ci == CRYPT_INVALID)
		return -ENODEV;

	if (ci &lt; CRYPT_ACTIVE) {
		log_err(NULL, _("Device %s is not active."), name);
		return -ENODEV;
	}

	r = dm_query_device(NULL, name, DM_ACTIVE_DEVICE | DM_ACTIVE_UUID, &amp;dmd);
	if (r &lt; 0)
		return r;

	*cd = NULL;

	if (header_device) {
		r = crypt_init(cd, header_device);
	} else {
		r = crypt_init(cd, device_path(tgt-&gt;data_device));

		/* Underlying device disappeared but mapping still active */
		if (!tgt-&gt;data_device || r == -ENOTBLK)
			log_verbose(NULL, _("Underlying device for crypt device %s disappeared."),
				    name);

		/* Underlying device is not readable but crypt mapping exists */
		if (r == -ENOTBLK)
			r = crypt_init(cd, NULL);
	}

	if (r &lt; 0)
		goto out;

	if (dmd.uuid) {
		if (!strncmp(CRYPT_PLAIN, dmd.uuid, sizeof(CRYPT_PLAIN)-1))
			(*cd)-&gt;type = strdup(CRYPT_PLAIN);
		else if (!strncmp(CRYPT_LOOPAES, dmd.uuid, sizeof(CRYPT_LOOPAES)-1))
			(*cd)-&gt;type = strdup(CRYPT_LOOPAES);
		else if (!strncmp(CRYPT_LUKS1, dmd.uuid, sizeof(CRYPT_LUKS1)-1))
			(*cd)-&gt;type = strdup(CRYPT_LUKS1);
		else if (!strncmp(CRYPT_LUKS2, dmd.uuid, sizeof(CRYPT_LUKS2)-1))
			(*cd)-&gt;type = strdup(CRYPT_LUKS2);
		else if (!strncmp(CRYPT_VERITY, dmd.uuid, sizeof(CRYPT_VERITY)-1))
			(*cd)-&gt;type = strdup(CRYPT_VERITY);
		else if (!strncmp(CRYPT_TCRYPT, dmd.uuid, sizeof(CRYPT_TCRYPT)-1))
			(*cd)-&gt;type = strdup(CRYPT_TCRYPT);
		else if (!strncmp(CRYPT_INTEGRITY, dmd.uuid, sizeof(CRYPT_INTEGRITY)-1))
			(*cd)-&gt;type = strdup(CRYPT_INTEGRITY);
		else if (!strncmp(CRYPT_BITLK, dmd.uuid, sizeof(CRYPT_BITLK)-1))
			(*cd)-&gt;type = strdup(CRYPT_BITLK);
		else if (!strncmp(CRYPT_FVAULT2, dmd.uuid, sizeof(CRYPT_FVAULT2)-1))
			(*cd)-&gt;type = strdup(CRYPT_FVAULT2);
		else
			log_dbg(NULL, "Unknown UUID set, some parameters are not set.");
	} else
		log_dbg(NULL, "Active device has no UUID set, some parameters are not set.");

	if (header_device) {
		r = crypt_set_data_device(*cd, device_path(tgt-&gt;data_device));
		if (r &lt; 0)
			goto out;
	}

	/* Try to initialize basic parameters from active device */

	if (tgt-&gt;type == DM_CRYPT || tgt-&gt;type == DM_LINEAR)
		r = _init_by_name_crypt(*cd, name);
	else if (tgt-&gt;type == DM_VERITY)
		r = _init_by_name_verity(*cd, name);
	else if (tgt-&gt;type == DM_INTEGRITY)
		r = _init_by_name_integrity(*cd, name);
out:
	if (r &lt; 0) {
		crypt_free(*cd);
		*cd = NULL;
	} else if (!(*cd)-&gt;type) {
		/* For anonymous device (no header found) remember initialized name */
		(*cd)-&gt;u.none.active_name = strdup(name);
	}

	free(CONST_CAST(void*)dmd.uuid);
	dm_targets_free(NULL, &amp;dmd);
	return r;
}

int crypt_init_by_name(struct crypt_device **cd, const char *name)
{
	return crypt_init_by_name_and_header(cd, name, NULL);
}

/*
 * crypt_format() helpers
 */
static int _crypt_format_plain(struct crypt_device *cd,
			       const char *cipher,
			       const char *cipher_mode,
			       const char *uuid,
			       size_t volume_key_size,
			       struct crypt_params_plain *params)
{
	unsigned int sector_size = params ? params-&gt;sector_size : SECTOR_SIZE;
	uint64_t dev_size;

	if (!cipher || !cipher_mode) {
		log_err(cd, _("Invalid plain crypt parameters."));
		return -EINVAL;
	}

	if (volume_key_size &gt; 1024) {
		log_err(cd, _("Invalid key size."));
		return -EINVAL;
	}

	if (uuid) {
		log_err(cd, _("UUID is not supported for this crypt type."));
		return -EINVAL;
	}

	if (cd-&gt;metadata_device) {
		log_err(cd, _("Detached metadata device is not supported for this crypt type."));
		return -EINVAL;
	}

	/* For compatibility with old params structure */
	if (!sector_size)
		sector_size = SECTOR_SIZE;

	if (sector_size &lt; SECTOR_SIZE || sector_size &gt; MAX_SECTOR_SIZE ||
	    NOTPOW2(sector_size)) {
		log_err(cd, _("Unsupported encryption sector size."));
		return -EINVAL;
	}

	if (sector_size &gt; SECTOR_SIZE &amp;&amp; !device_size(cd-&gt;device, &amp;dev_size)) {
		if (params &amp;&amp; params-&gt;offset)
			dev_size -= (params-&gt;offset * SECTOR_SIZE);
		if (dev_size % sector_size) {
			log_err(cd, _("Device size is not aligned to requested sector size."));
			return -EINVAL;
		}
		device_set_block_size(crypt_data_device(cd), sector_size);
	}

	if (!(cd-&gt;type = strdup(CRYPT_PLAIN)))
		return -ENOMEM;

	cd-&gt;u.plain.key_size = volume_key_size;
	cd-&gt;volume_key = crypt_alloc_volume_key(volume_key_size, NULL);
	if (!cd-&gt;volume_key)
		return -ENOMEM;

	if (asprintf(&amp;cd-&gt;u.plain.cipher_spec, "%s-%s", cipher, cipher_mode) &lt; 0) {
		cd-&gt;u.plain.cipher_spec = NULL;
		return -ENOMEM;
	}
	cd-&gt;u.plain.cipher = strdup(cipher);
	cd-&gt;u.plain.cipher_mode = cd-&gt;u.plain.cipher_spec + strlen(cipher) + 1;

	if (params &amp;&amp; params-&gt;hash)
		cd-&gt;u.plain.hdr.hash = strdup(params-&gt;hash);

	cd-&gt;u.plain.hdr.offset = params ? params-&gt;offset : 0;
	cd-&gt;u.plain.hdr.skip = params ? params-&gt;skip : 0;
	cd-&gt;u.plain.hdr.size = params ? params-&gt;size : 0;
	cd-&gt;u.plain.hdr.sector_size = sector_size;

	if (!cd-&gt;u.plain.cipher)
		return -ENOMEM;

	return 0;
}

static int _crypt_format_luks1(struct crypt_device *cd,
			       const char *cipher,
			       const char *cipher_mode,
			       const char *uuid,
			       const char *volume_key,
			       size_t volume_key_size,
			       struct crypt_params_luks1 *params)
{
	int r;
	unsigned long required_alignment = DEFAULT_DISK_ALIGNMENT;
	unsigned long alignment_offset = 0;
	uint64_t dev_size;

	if (!cipher || !cipher_mode)
		return -EINVAL;

	if (!crypt_metadata_device(cd)) {
		log_err(cd, _("Can't format LUKS without device."));
		return -EINVAL;
	}

	if (params &amp;&amp; cd-&gt;data_offset &amp;&amp; params-&gt;data_alignment &amp;&amp;
	   (cd-&gt;data_offset % params-&gt;data_alignment)) {
		log_err(cd, _("Requested data alignment is not compatible with data offset."));
		return -EINVAL;
	}

	if (!(cd-&gt;type = strdup(CRYPT_LUKS1)))
		return -ENOMEM;

	if (volume_key)
		cd-&gt;volume_key = crypt_alloc_volume_key(volume_key_size,
						      volume_key);
	else
		cd-&gt;volume_key = crypt_generate_volume_key(cd, volume_key_size);

	if (!cd-&gt;volume_key)
		return -ENOMEM;

	if (verify_pbkdf_params(cd, &amp;cd-&gt;pbkdf)) {
		r = init_pbkdf_type(cd, NULL, CRYPT_LUKS1);
		if (r)
			return r;
	}

	if (params &amp;&amp; params-&gt;hash &amp;&amp; strcmp(params-&gt;hash, cd-&gt;pbkdf.hash)) {
		free(CONST_CAST(void*)cd-&gt;pbkdf.hash);
		cd-&gt;pbkdf.hash = strdup(params-&gt;hash);
		if (!cd-&gt;pbkdf.hash)
			return -ENOMEM;
	}

	if (params &amp;&amp; params-&gt;data_device) {
		if (!cd-&gt;metadata_device)
			cd-&gt;metadata_device = cd-&gt;device;
		else
			device_free(cd, cd-&gt;device);
		cd-&gt;device = NULL;
		if (device_alloc(cd, &amp;cd-&gt;device, params-&gt;data_device) &lt; 0)
			return -ENOMEM;
	}

	if (device_is_dax(crypt_data_device(cd)) &gt; 0)
		log_std(cd, _("WARNING: DAX device can corrupt data as it does not guarantee atomic sector updates.\n"));

	if (params &amp;&amp; cd-&gt;metadata_device) {
		/* For detached header the alignment is used directly as data offset */
		if (!cd-&gt;data_offset)
			cd-&gt;data_offset = params-&gt;data_alignment;
		required_alignment = params-&gt;data_alignment * SECTOR_SIZE;
	} else if (params &amp;&amp; params-&gt;data_alignment) {
		required_alignment = params-&gt;data_alignment * SECTOR_SIZE;
	} else
		device_topology_alignment(cd, cd-&gt;device,
				       &amp;required_alignment,
				       &amp;alignment_offset, DEFAULT_DISK_ALIGNMENT);

	r = LUKS_check_cipher(cd, volume_key_size, cipher, cipher_mode);
	if (r &lt; 0)
		return r;

	r = LUKS_generate_phdr(&amp;cd-&gt;u.luks1.hdr, cd-&gt;volume_key, cipher, cipher_mode,
			       cd-&gt;pbkdf.hash, uuid,
			       cd-&gt;data_offset * SECTOR_SIZE,
			       alignment_offset, required_alignment, cd);
	if (r &lt; 0)
		return r;

	r = device_check_access(cd, crypt_metadata_device(cd), DEV_EXCL);
	if (r &lt; 0)
		return r;


	if (asprintf(&amp;cd-&gt;u.luks1.cipher_spec, "%s-%s", cipher, cipher_mode) &lt; 0) {
		cd-&gt;u.luks1.cipher_spec = NULL;
		return -ENOMEM;
	}

	r = LUKS_wipe_header_areas(&amp;cd-&gt;u.luks1.hdr, cd);
	if (r &lt; 0) {
		free(cd-&gt;u.luks1.cipher_spec);
		log_err(cd, _("Cannot wipe header on device %s."),
			mdata_device_path(cd));
		return r;
	}

	r = LUKS_write_phdr(&amp;cd-&gt;u.luks1.hdr, cd);
	if (r) {
		free(cd-&gt;u.luks1.cipher_spec);
		return r;
	}

	if (!device_size(crypt_data_device(cd), &amp;dev_size) &amp;&amp;
	    dev_size &lt;= (crypt_get_data_offset(cd) * SECTOR_SIZE))
		log_std(cd, _("Device %s is too small for activation, there is no remaining space for data.\n"),
			      device_path(crypt_data_device(cd)));

	return 0;
}

static int LUKS2_check_encryption_params(struct crypt_device *cd,
	const char *cipher,
	const char *cipher_mode,
	const char *integrity,
	size_t volume_key_size,
	const struct crypt_params_luks2 *params,
	const char **ret_integrity)
{
	int r, integrity_key_size = 0;

	assert(cipher);
	assert(cipher_mode);
	assert(ret_integrity);

	if (integrity) {
		if (params-&gt;integrity_params) {
			/* Standalone dm-integrity must not be used */
			if (params-&gt;integrity_params-&gt;integrity ||
			    params-&gt;integrity_params-&gt;integrity_key_size)
				return -EINVAL;
			/* FIXME: journal encryption and MAC is here not yet supported */
			if (params-&gt;integrity_params-&gt;journal_crypt ||
			params-&gt;integrity_params-&gt;journal_integrity)
				return -ENOTSUP;
		}
		if (!INTEGRITY_tag_size(integrity, cipher, cipher_mode)) {
			/* merge "none" string into NULL to make branching logic is easier */
			if (!strcmp(integrity, "none"))
				integrity = NULL;
			else
				return -EINVAL;
		}
		integrity_key_size = INTEGRITY_key_size(integrity);
		if ((integrity_key_size &lt; 0) || (integrity_key_size &gt;= (int)volume_key_size)) {
			log_err(cd, _("Volume key is too small for encryption with integrity extensions."));
			return -EINVAL;
		}
	}

	/* FIXME: allow this later also for normal ciphers (check AF_ALG availability. */
	if (integrity &amp;&amp; !integrity_key_size) {
		r = crypt_cipher_check_kernel(cipher, cipher_mode, integrity, volume_key_size);
		if (r &lt; 0) {
			log_err(cd, _("Cipher %s-%s (key size %zd bits) is not available."),
				cipher, cipher_mode, volume_key_size * 8);
			return r;
		}
	}

	if ((!integrity || integrity_key_size) &amp;&amp; !crypt_cipher_wrapped_key(cipher, cipher_mode) &amp;&amp;
	    !INTEGRITY_tag_size(NULL, cipher, cipher_mode)) {
		r = LUKS_check_cipher(cd, volume_key_size - integrity_key_size,
				      cipher, cipher_mode);
		if (r &lt; 0)
			return r;
	}

	*ret_integrity = integrity;

	return 0;
}

static int LUKS2_check_encryption_sector(struct crypt_device *cd, uint64_t device_size_bytes,
		uint64_t data_offset_bytes, uint32_t sector_size, bool modify_sector_size,
		bool verify_data_area_alignment, uint32_t *ret_sector_size)
{
	uint32_t dmc_flags;

	assert(ret_sector_size);

	if (sector_size &lt; SECTOR_SIZE || sector_size &gt; MAX_SECTOR_SIZE ||
	    NOTPOW2(sector_size)) {
		log_err(cd, _("Unsupported encryption sector size."));
		return -EINVAL;
	}

	if (sector_size != SECTOR_SIZE &amp;&amp; !dm_flags(cd, DM_CRYPT, &amp;dmc_flags) &amp;&amp;
	    !(dmc_flags &amp; DM_SECTOR_SIZE_SUPPORTED)) {
		if (modify_sector_size) {
			log_dbg(cd, "dm-crypt does not support encryption sector size option. Reverting to 512 bytes.");
			sector_size = SECTOR_SIZE;
		} else
			log_std(cd, _("WARNING: The device activation will fail, dm-crypt is missing "
				      "support for requested encryption sector size.\n"));
	}

	if (modify_sector_size) {
		if (data_offset_bytes &amp;&amp; MISALIGNED(data_offset_bytes, sector_size)) {
			log_dbg(cd, "Data offset not aligned to sector size. Reverting to 512 bytes.");
			sector_size = SECTOR_SIZE;
		} else if (MISALIGNED(device_size_bytes - data_offset_bytes, sector_size)) {
			/* underflow does not affect misalignment checks */
			log_dbg(cd, "Device size is not aligned to sector size. Reverting to 512 bytes.");
			sector_size = SECTOR_SIZE;
		}
	}

	/* underflow does not affect misalignment checks */
	if (verify_data_area_alignment &amp;&amp;
	    sector_size &gt; SECTOR_SIZE &amp;&amp;
	    MISALIGNED(device_size_bytes - data_offset_bytes, sector_size)) {
	       log_err(cd, _("Device size is not aligned to requested sector size."));
	       return -EINVAL;
	}

	*ret_sector_size = sector_size;

	return 0;
}

static int _crypt_format_luks2(struct crypt_device *cd,
			       const char *cipher,
			       const char *cipher_mode,
			       const char *uuid,
			       const char *volume_key,
			       size_t volume_key_size,
			       struct crypt_params_luks2 *params,
			       bool sector_size_autodetect)
{
	int r;
	unsigned long required_alignment = DEFAULT_DISK_ALIGNMENT;
	unsigned long alignment_offset = 0;
	unsigned int sector_size;
	char cipher_spec[2*MAX_CAPI_ONE_LEN];
	const char *integrity = params ? params-&gt;integrity : NULL;
	uint64_t data_offset_bytes, dev_size, metadata_size_bytes, keyslots_size_bytes;

	cd-&gt;u.luks2.hdr.jobj = NULL;
	cd-&gt;u.luks2.keyslot_cipher = NULL;

	if (!cipher || !cipher_mode)
		return -EINVAL;

	if (!crypt_metadata_device(cd)) {
		log_err(cd, _("Can't format LUKS without device."));
		return -EINVAL;
	}

	if (params &amp;&amp; cd-&gt;data_offset &amp;&amp; params-&gt;data_alignment &amp;&amp;
	   (cd-&gt;data_offset % params-&gt;data_alignment)) {
		log_err(cd, _("Requested data alignment is not compatible with data offset."));
		return -EINVAL;
	}

	if (params &amp;&amp; params-&gt;sector_size)
		sector_size_autodetect = false;

	if (params &amp;&amp; params-&gt;data_device) {
		if (!cd-&gt;metadata_device)
			cd-&gt;metadata_device = cd-&gt;device;
		else
			device_free(cd, cd-&gt;device);
		cd-&gt;device = NULL;
		if (device_alloc(cd, &amp;cd-&gt;device, params-&gt;data_device) &lt; 0)
			return -ENOMEM;
	}

	if (device_is_dax(crypt_data_device(cd)) &gt; 0)
		log_std(cd, _("WARNING: DAX device can corrupt data as it does not guarantee atomic sector updates.\n"));

	if (sector_size_autodetect) {
		sector_size = device_optimal_encryption_sector_size(cd, crypt_data_device(cd));
		log_dbg(cd, "Auto-detected optimal encryption sector size for device %s is %d bytes.",
			device_path(crypt_data_device(cd)), sector_size);
	} else
		sector_size = params ? params-&gt;sector_size : SECTOR_SIZE;

	r = device_check_access(cd, crypt_metadata_device(cd), DEV_EXCL);
	if (r &lt; 0)
		return r;

	if (!(cd-&gt;type = strdup(CRYPT_LUKS2)))
		return -ENOMEM;

	if (volume_key)
		cd-&gt;volume_key = crypt_alloc_volume_key(volume_key_size,
						      volume_key);
	else
		cd-&gt;volume_key = crypt_generate_volume_key(cd, volume_key_size);

	if (!cd-&gt;volume_key)
		return -ENOMEM;

	if (params &amp;&amp; params-&gt;pbkdf)
		r = crypt_set_pbkdf_type(cd, params-&gt;pbkdf);
	else if (verify_pbkdf_params(cd, &amp;cd-&gt;pbkdf))
		r = init_pbkdf_type(cd, NULL, CRYPT_LUKS2);

	if (r &lt; 0)
		return r;

	if (params &amp;&amp; cd-&gt;metadata_device) {
		/* For detached header the alignment is used directly as data offset */
		if (!cd-&gt;data_offset)
			cd-&gt;data_offset = params-&gt;data_alignment;
		required_alignment = params-&gt;data_alignment * SECTOR_SIZE;
	} else if (params &amp;&amp; params-&gt;data_alignment) {
		required_alignment = params-&gt;data_alignment * SECTOR_SIZE;
	} else
		device_topology_alignment(cd, cd-&gt;device,
				       &amp;required_alignment,
				       &amp;alignment_offset, DEFAULT_DISK_ALIGNMENT);

	r = LUKS2_check_encryption_params(cd, cipher, cipher_mode, integrity,
					  volume_key_size, params, &amp;integrity);
	if (r &lt; 0)
		goto out;

	r = device_size(crypt_data_device(cd), &amp;dev_size);
	if (r &lt; 0)
		goto out;

	r = LUKS2_hdr_get_storage_params(cd, alignment_offset, required_alignment,
					 &amp;metadata_size_bytes, &amp;keyslots_size_bytes, &amp;data_offset_bytes);
	if (r &lt; 0)
		goto out;

	r = LUKS2_check_encryption_sector(cd, dev_size, data_offset_bytes, sector_size,
					  sector_size_autodetect, integrity == NULL,
					  &amp;sector_size);
	if (r &lt; 0)
		goto out;

	if (*cipher_mode != '\0')
		r = snprintf(cipher_spec, sizeof(cipher_spec), "%s-%s", cipher, cipher_mode);
	else
		r = snprintf(cipher_spec, sizeof(cipher_spec), "%s", cipher);
	if (r &lt; 0 || (size_t)r &gt;= sizeof(cipher_spec)) {
		r = -EINVAL;
		goto out;
	}

	r = LUKS2_generate_hdr(cd, &amp;cd-&gt;u.luks2.hdr, cd-&gt;volume_key,
			       cipher_spec,
			       integrity, uuid,
			       sector_size,
			       data_offset_bytes,
			       metadata_size_bytes, keyslots_size_bytes,
			       0, 0, 0);
	if (r &lt; 0)
		goto out;

	if (params &amp;&amp; (params-&gt;label || params-&gt;subsystem)) {
		r = LUKS2_hdr_labels(cd, &amp;cd-&gt;u.luks2.hdr,
				     params-&gt;label, params-&gt;subsystem, 0);
		if (r &lt; 0)
			goto out;
	}

	device_set_block_size(crypt_data_device(cd), sector_size);

	r = LUKS2_wipe_header_areas(cd, &amp;cd-&gt;u.luks2.hdr, cd-&gt;metadata_device != NULL);
	if (r &lt; 0) {
		log_err(cd, _("Cannot wipe header on device %s."),
			mdata_device_path(cd));
		if (dev_size &lt; LUKS2_hdr_and_areas_size(&amp;cd-&gt;u.luks2.hdr))
			log_err(cd, _("Device %s is too small."), device_path(crypt_metadata_device(cd)));
		goto out;
	}

	/* Wipe integrity superblock and create integrity superblock */
	if (crypt_get_integrity_tag_size(cd)) {
		r = crypt_wipe_device(cd, crypt_data_device(cd), CRYPT_WIPE_ZERO,
				      crypt_get_data_offset(cd) * SECTOR_SIZE,
				      8 * SECTOR_SIZE, 8 * SECTOR_SIZE, NULL, NULL);
		if (r &lt; 0) {
			if (r == -EBUSY)
				log_err(cd, _("Cannot format device %s in use."),
					data_device_path(cd));
			else if (r == -EACCES) {
				log_err(cd, _("Cannot format device %s, permission denied."),
					data_device_path(cd));
				r = -EINVAL;
			} else
				log_err(cd, _("Cannot wipe header on device %s."),
					data_device_path(cd));

			goto out;
		}

		r = INTEGRITY_format(cd, params ? params-&gt;integrity_params : NULL, NULL, NULL, 0);
		if (r)
			log_err(cd, _("Cannot format integrity for device %s."),
				data_device_path(cd));
	}

	if (r &lt; 0)
		goto out;

	/* override sequence id check with format */
	r = LUKS2_hdr_write_force(cd, &amp;cd-&gt;u.luks2.hdr);
	if (r &lt; 0) {
		if (r == -EBUSY)
			log_err(cd, _("Cannot format device %s in use."),
				mdata_device_path(cd));
		else if (r == -EACCES) {
			log_err(cd, _("Cannot format device %s, permission denied."),
				mdata_device_path(cd));
			r = -EINVAL;
		} else
			log_err(cd, _("Cannot format device %s."),
				mdata_device_path(cd));
	}

out:
	if (r) {
		LUKS2_hdr_free(cd, &amp;cd-&gt;u.luks2.hdr);
		return r;
	}

	/* Device size can be larger now if it is a file container */
	if (!device_size(crypt_data_device(cd), &amp;dev_size) &amp;&amp;
	    dev_size &lt;= (crypt_get_data_offset(cd) * SECTOR_SIZE))
		log_std(cd, _("Device %s is too small for activation, there is no remaining space for data.\n"),
			      device_path(crypt_data_device(cd)));

	return 0;
}

static int opal_topology_alignment(struct crypt_device *cd,
				   uint64_t partition_offset_sectors,
				   uint64_t data_offset_sectors,
				   uint64_t required_alignment_sectors,
				   uint64_t default_alignment_bytes,
				   uint64_t *ret_alignment_offset_bytes,
				   uint64_t *ret_alignment_bytes,
				   uint32_t *ret_opal_block_bytes,
				   uint64_t *ret_opal_alignment_granularity_blocks)
{
	bool opal_align;
	int r;
	uint32_t opal_block_bytes;
	uint64_t opal_alignment_granularity_blocks, opal_lowest_lba_blocks;

	assert(cd);
	assert(ret_alignment_offset_bytes);
	assert(ret_alignment_bytes);
	assert(ret_opal_block_bytes);
	assert(ret_opal_alignment_granularity_blocks);

	r = opal_geometry(cd, crypt_data_device(cd), &amp;opal_align, &amp;opal_block_bytes,
			  &amp;opal_alignment_granularity_blocks, &amp;opal_lowest_lba_blocks);
	if (r) {
		log_err(cd, _("Cannot get OPAL alignment parameters."));
		return -EINVAL;
	}

	log_dbg(cd, "OPAL geometry: alignment: '%c', logical block size: %" PRIu32
		    ", alignment granularity: %" PRIu64 ", lowest aligned LBA: %" PRIu64,
	        opal_align ? 'y' : 'n', opal_block_bytes, opal_alignment_granularity_blocks, opal_lowest_lba_blocks);

	if (opal_block_bytes &lt; SECTOR_SIZE || NOTPOW2(opal_block_bytes)) {
		log_err(cd, _("Bogus OPAL logical block size."));
		return -EINVAL;
	}

	if (data_offset_sectors &amp;&amp;
	    MISALIGNED(data_offset_sectors + partition_offset_sectors, opal_block_bytes / SECTOR_SIZE)) {
		log_err(cd, _("Requested data offset is not compatible with OPAL block size."));
		return -EINVAL;
	}

	/* Data offset has priority over data alignment parameter */
	if (!data_offset_sectors &amp;&amp;
	    MISALIGNED(required_alignment_sectors, opal_block_bytes / SECTOR_SIZE)) {
		log_err(cd, _("Requested data alignment is not compatible with OPAL alignment."));
		return -EINVAL;
	}

	if (!opal_align) {
		/* For detached header the alignment is used directly as data offset */
		if (required_alignment_sectors || cd-&gt;metadata_device)
			*ret_alignment_bytes = required_alignment_sectors * SECTOR_SIZE;
		else
			*ret_alignment_bytes = default_alignment_bytes;
		*ret_alignment_offset_bytes = 0;
		*ret_opal_block_bytes = opal_block_bytes;
		*ret_opal_alignment_granularity_blocks = 1;
		return 0;
	}

	if (data_offset_sectors) {
		if (MISALIGNED((((data_offset_sectors + partition_offset_sectors) * SECTOR_SIZE) / opal_block_bytes) - opal_lowest_lba_blocks,
			       opal_alignment_granularity_blocks)) {
			// FIXME: Add hint to user on how to fix it
			log_err(cd, _("Data offset does not satisfy OPAL alignment requirements."));
			return -EINVAL;
		}

		*ret_alignment_offset_bytes = 0;
		*ret_alignment_bytes = 0;
		*ret_opal_block_bytes = opal_block_bytes;
		*ret_opal_alignment_granularity_blocks = opal_alignment_granularity_blocks;

		return 0;
	}

	if (MISALIGNED(required_alignment_sectors * SECTOR_SIZE, opal_block_bytes * opal_alignment_granularity_blocks)) {
		log_err(cd, _("Requested data alignment does not satisfy locking range alignment requirements."));
		return -EINVAL;
	}

	/* For detached header the alignment is used directly as data offset */
	if (required_alignment_sectors || cd-&gt;metadata_device)
		*ret_alignment_bytes = required_alignment_sectors * SECTOR_SIZE;
	else
		*ret_alignment_bytes = size_round_up(default_alignment_bytes, opal_block_bytes * opal_alignment_granularity_blocks);

	/* data offset is not set, calculate proper alignment */
	*ret_alignment_offset_bytes = (partition_offset_sectors * SECTOR_SIZE) % (opal_block_bytes * opal_alignment_granularity_blocks);
	if (*ret_alignment_offset_bytes)
		*ret_alignment_offset_bytes = opal_block_bytes * opal_alignment_granularity_blocks - *ret_alignment_offset_bytes;

	if (*ret_alignment_offset_bytes)
		log_dbg(cd, "Compensating misaligned partition offset by %" PRIu64 "bytes.",
			*ret_alignment_offset_bytes);

	*ret_alignment_offset_bytes += (opal_lowest_lba_blocks * opal_block_bytes);
	*ret_opal_block_bytes = opal_block_bytes;
	*ret_opal_alignment_granularity_blocks = opal_alignment_granularity_blocks;

	log_dbg(cd, "OPAL alignment (%" PRIu32 "/%" PRIu64 "), offset = %" PRIu64 ". Required alignment is %" PRIu64 ".",
		opal_block_bytes, opal_alignment_granularity_blocks, *ret_alignment_offset_bytes, *ret_alignment_bytes);

	return 0;
}

int crypt_format_luks2_opal(struct crypt_device *cd,
			      const char *cipher,
			      const char *cipher_mode,
			      const char *uuid,
			      const char *volume_keys,
			      size_t volume_keys_size,
			      struct crypt_params_luks2 *params,
			      struct crypt_params_hw_opal *opal_params)
{
	bool opal_range_reset = false, subsystem_overridden = false, sector_size_autodetect = cipher != NULL;
	int r;
	char cipher_spec[128];
	const char *integrity = params ? params-&gt;integrity : NULL;
	uint32_t sector_size, opal_block_bytes, opal_segment_number = 1; /* We'll use the partition number if available later */
	uint64_t alignment_offset_bytes, data_offset_bytes, device_size_bytes, opal_alignment_granularity_blocks,
		 partition_offset_sectors, range_offset_blocks, range_size_bytes,
		 required_alignment_bytes, metadata_size_bytes, keyslots_size_bytes,
		 provided_data_sectors;
	struct volume_key *user_key = NULL;
	struct crypt_lock_handle *opal_lh = NULL;

	if (!cd || !params || !opal_params ||
	    !opal_params-&gt;admin_key || !opal_params-&gt;admin_key_size || !opal_params-&gt;user_key_size)
		return -EINVAL;

	if (cd-&gt;type) {
		log_dbg(cd, "Context already formatted as %s.", cd-&gt;type);
		return -EINVAL;
	}

	log_dbg(cd, "Formatting device %s as type LUKS2 with OPAL HW encryption.", mdata_device_path(cd) ?: "(none)");

	if (volume_keys_size &lt; opal_params-&gt;user_key_size)
		return -EINVAL;

	if (cipher &amp;&amp; (volume_keys_size == opal_params-&gt;user_key_size))
		return -EINVAL;

	if (!crypt_metadata_device(cd)) {
		log_err(cd, _("Can't format LUKS without device."));
		return -EINVAL;
	}

	if (params-&gt;data_alignment &amp;&amp;
	    MISALIGNED(cd-&gt;data_offset, params-&gt;data_alignment)) {
		log_err(cd, _("Requested data alignment is not compatible with data offset."));
		return -EINVAL;
	}

	if (params-&gt;data_device) {
		if (!cd-&gt;metadata_device)
			cd-&gt;metadata_device = cd-&gt;device;
		else
			device_free(cd, cd-&gt;device);
		cd-&gt;device = NULL;
		if (device_alloc(cd, &amp;cd-&gt;device, params-&gt;data_device) &lt; 0)
			return -ENOMEM;
	}

	r = crypt_opal_supported(cd, crypt_data_device(cd));
	if (r &lt; 0)
		return r;

	if (params-&gt;sector_size)
		sector_size_autodetect = false;

	partition_offset_sectors = crypt_dev_partition_offset(device_path(crypt_data_device(cd)));

	r = device_check_access(cd, crypt_metadata_device(cd), DEV_EXCL);
	if (r &lt; 0)
		return r;

	/*
	 * Check both data and metadata devices for exclusive access since
	 * we don't want to setup locking range on already used partition.
	 */
	if (crypt_metadata_device(cd) != crypt_data_device(cd)) {
		r = device_check_access(cd, crypt_data_device(cd), DEV_EXCL);
		if (r &lt; 0)
			return r;
	}

	if (!(cd-&gt;type = strdup(CRYPT_LUKS2)))
		return -ENOMEM;

	if (volume_keys)
		cd-&gt;volume_key = crypt_alloc_volume_key(volume_keys_size, volume_keys);
	else
		cd-&gt;volume_key = crypt_generate_volume_key(cd, volume_keys_size);

	if (!cd-&gt;volume_key) {
		r = -ENOMEM;
		goto out;
	}

	if (cipher) {
		user_key = crypt_alloc_volume_key(opal_params-&gt;user_key_size, cd-&gt;volume_key-&gt;key);
		if (!user_key) {
			r = -ENOMEM;
			goto out;
		}
	}

	r = 0;
	if (params-&gt;pbkdf)
		r = crypt_set_pbkdf_type(cd, params-&gt;pbkdf);
	else if (verify_pbkdf_params(cd, &amp;cd-&gt;pbkdf))
		r = init_pbkdf_type(cd, NULL, CRYPT_LUKS2);

	if (r &lt; 0)
		goto out;

	if (cd-&gt;metadata_device &amp;&amp; !cd-&gt;data_offset)
		/* For detached header the alignment is used directly as data offset */
		cd-&gt;data_offset = params-&gt;data_alignment;

	r = opal_topology_alignment(cd, partition_offset_sectors,
				    cd-&gt;data_offset, params-&gt;data_alignment,
				    DEFAULT_DISK_ALIGNMENT, &amp;alignment_offset_bytes, &amp;required_alignment_bytes,
				    &amp;opal_block_bytes, &amp;opal_alignment_granularity_blocks);
	if (r &lt; 0)
		goto out;

	if (sector_size_autodetect) {
		sector_size = device_optimal_encryption_sector_size(cd, crypt_data_device(cd));
		if ((opal_block_bytes * opal_alignment_granularity_blocks) &gt; sector_size)
			sector_size = opal_block_bytes * opal_alignment_granularity_blocks;
		if (sector_size &gt; MAX_SECTOR_SIZE)
			sector_size = MAX_SECTOR_SIZE;
		log_dbg(cd, "Auto-detected optimal encryption sector size for device %s is %d bytes.",
			device_path(crypt_data_device(cd)), sector_size);
	} else
		sector_size = params-&gt;sector_size;

	/* To ensure it is obvious and explicit that OPAL is being used, set the
	 * subsystem tag if the user hasn't passed one. */
	if (!params-&gt;subsystem) {
		params-&gt;subsystem = "HW-OPAL";
		subsystem_overridden = true;
	}

	/* We need to give the drive a segment number - use the partition number if there is
	 * one, otherwise the first valid (1) number if it's a single-volume setup */
	r = crypt_dev_get_partition_number(device_path(crypt_data_device(cd)));
	if (r &gt; 0)
		opal_segment_number = r;

	if (cipher) {
		r = LUKS2_check_encryption_params(cd, cipher, cipher_mode, integrity,
						  volume_keys_size - opal_params-&gt;user_key_size,
						  params, &amp;integrity);
		if (r &lt; 0)
			goto out;
	}

	r = device_size(crypt_data_device(cd), &amp;device_size_bytes);
	if (r &lt; 0)
		goto out;

	r = LUKS2_hdr_get_storage_params(cd, alignment_offset_bytes, required_alignment_bytes,
			     &amp;metadata_size_bytes, &amp;keyslots_size_bytes, &amp;data_offset_bytes);
	if (r &lt; 0)
		goto out;

	r = -EINVAL;
	if (device_size_bytes &lt; data_offset_bytes &amp;&amp; !cd-&gt;metadata_device) {
		log_err(cd, _("Device %s is too small."), device_path(crypt_data_device(cd)));
		goto out;
	}

	device_size_bytes -= data_offset_bytes;
	range_size_bytes = device_size_bytes - (device_size_bytes % (opal_block_bytes * opal_alignment_granularity_blocks));
	if (!range_size_bytes)
		goto out;

	if (device_size_bytes != range_size_bytes)
		log_err(cd, _("Compensating device size by %" PRIu64 " sectors to align it with OPAL alignment granularity."),
			(device_size_bytes - range_size_bytes) / SECTOR_SIZE);

	if (cipher) {
		r = LUKS2_check_encryption_sector(cd, range_size_bytes, data_offset_bytes, sector_size,
						  sector_size_autodetect, integrity == NULL,
						  &amp;sector_size);
		if (r &lt; 0)
			goto out;

		if (*cipher_mode != '\0')
			r = snprintf(cipher_spec, sizeof(cipher_spec), "%s-%s", cipher, cipher_mode);
		else
			r = snprintf(cipher_spec, sizeof(cipher_spec), "%s", cipher);
		if (r &lt; 0 || (size_t)r &gt;= sizeof(cipher_spec)) {
			r = -EINVAL;
			goto out;
		}
	}

	r = LUKS2_generate_hdr(cd, &amp;cd-&gt;u.luks2.hdr, cd-&gt;volume_key,
			       cipher ? cipher_spec : NULL, integrity, uuid,
			       sector_size,
			       data_offset_bytes,
			       metadata_size_bytes, keyslots_size_bytes,
			       range_size_bytes,
			       opal_segment_number,
			       opal_params-&gt;user_key_size);
	if (r &lt; 0)
		goto out;

	log_dbg(cd, "Adding LUKS2 OPAL requirement flag.");
	r = LUKS2_config_set_requirement_version(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_REQUIREMENT_OPAL, 1, false);
	if (r &lt; 0)
		goto out;

	if (params-&gt;label || params-&gt;subsystem) {
		r = LUKS2_hdr_labels(cd, &amp;cd-&gt;u.luks2.hdr,
				     params-&gt;label, params-&gt;subsystem, 0);
		if (r &lt; 0)
			goto out;
	}

	device_set_block_size(crypt_data_device(cd), sector_size);

	r = LUKS2_wipe_header_areas(cd, &amp;cd-&gt;u.luks2.hdr, cd-&gt;metadata_device != NULL);
	if (r &lt; 0) {
		log_err(cd, _("Cannot wipe header on device %s."),
			mdata_device_path(cd));
		if (device_size_bytes &lt; LUKS2_hdr_and_areas_size(&amp;cd-&gt;u.luks2.hdr))
			log_err(cd, _("Device %s is too small."), device_path(crypt_metadata_device(cd)));
		goto out;
	}

	range_offset_blocks = (data_offset_bytes + partition_offset_sectors * SECTOR_SIZE) / opal_block_bytes;

	r = opal_exclusive_lock(cd, crypt_data_device(cd), &amp;opal_lh);
	if (r &lt; 0) {
		log_err(cd, _("Failed to acquire OPAL lock on device %s."), device_path(crypt_data_device(cd)));
		goto out;
	}

	r = opal_setup_ranges(cd, crypt_data_device(cd), user_key ?: cd-&gt;volume_key,
					range_offset_blocks, range_size_bytes / opal_block_bytes,
					opal_block_bytes, opal_segment_number,
					opal_params-&gt;admin_key, opal_params-&gt;admin_key_size);
	if (r &lt; 0) {
		if (r == -EPERM)
			log_err(cd, _("Incorrect OPAL Admin key."));
		else
			log_err(cd, _("Cannot setup OPAL segment."));
		goto out;
	}

	opal_range_reset = true;

	/* integrity metadata goes in unlocked OPAL locking range */
	if (crypt_get_integrity_tag_size(cd)) {
		r = opal_unlock(cd, crypt_data_device(cd), opal_segment_number, user_key ?: cd-&gt;volume_key);
		if (r &lt; 0)
			goto out;

		r = crypt_wipe_device(cd, crypt_data_device(cd), CRYPT_WIPE_ZERO,
				      crypt_get_data_offset(cd) * SECTOR_SIZE,
				      8 * SECTOR_SIZE, 8 * SECTOR_SIZE, NULL, NULL);
		if (r &lt; 0) {
			if (r == -EBUSY)
				log_err(cd, _("Cannot format device %s in use."),
					data_device_path(cd));
			else if (r == -EACCES) {
				log_err(cd, _("Cannot format device %s, permission denied."),
					data_device_path(cd));
				r = -EINVAL;
			} else
				log_err(cd, _("Cannot wipe header on device %s."),
					data_device_path(cd));

			goto out;
		}

		r = INTEGRITY_format(cd, params-&gt;integrity_params, NULL, NULL,
				     /*
				      * Create reduced dm-integrity device only if locking range size does
				      * not match device size.
				      */
				     device_size_bytes != range_size_bytes ? range_size_bytes / SECTOR_SIZE : 0);
		if (r)
			log_err(cd, _("Cannot format integrity for device %s."),
				data_device_path(cd));
		if (r &lt; 0)
			goto out;

		r = INTEGRITY_data_sectors(cd, crypt_data_device(cd),
					   crypt_get_data_offset(cd) * SECTOR_SIZE,
					   &amp;provided_data_sectors);
		if (r &lt; 0)
			goto out;

		if (!LUKS2_segment_set_size(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT,
					    &amp;(uint64_t) {provided_data_sectors * SECTOR_SIZE})) {
			r = -EINVAL;
			goto out;
		}

		r = opal_lock(cd, crypt_data_device(cd), opal_segment_number);
		if (r &lt; 0)
			goto out;
	}

	/* override sequence id check with format */
	r = LUKS2_hdr_write_force(cd, &amp;cd-&gt;u.luks2.hdr);
	if (r &lt; 0) {
		if (r == -EBUSY)
			log_err(cd, _("Cannot format device %s in use."),
				mdata_device_path(cd));
		else if (r == -EACCES) {
			log_err(cd, _("Cannot format device %s, permission denied."),
				mdata_device_path(cd));
			r = -EINVAL;
		} else if (r == -EIO) {
			log_err(cd, _("Cannot format device %s, OPAL device seems to be fully write-protected now."),
				mdata_device_path(cd));
			log_err(cd, _("This is perhaps a bug in firmware. Run OPAL PSID reset and reconnect for recovery."));
		} else
			log_err(cd, _("Cannot format device %s."),
				mdata_device_path(cd));
	}

out:
	crypt_free_volume_key(user_key);

	if (subsystem_overridden)
		params-&gt;subsystem = NULL;

	if (r &gt;= 0) {
		opal_exclusive_unlock(cd, opal_lh);
		return 0;
	}

	if (opal_range_reset &amp;&amp;
	    (opal_reset_segment(cd, crypt_data_device(cd), opal_segment_number,
				opal_params-&gt;admin_key, opal_params-&gt;admin_key_size) &lt; 0))
		log_err(cd, _("Locking range %d reset on device %s failed."),
			opal_segment_number, device_path(crypt_data_device(cd)));

	opal_exclusive_unlock(cd, opal_lh);
	LUKS2_hdr_free(cd, &amp;cd-&gt;u.luks2.hdr);

	crypt_set_null_type(cd);
	crypt_free_volume_key(cd-&gt;volume_key);
	cd-&gt;volume_key = NULL;

	return r;
}

static int _crypt_format_loopaes(struct crypt_device *cd,
				 const char *cipher,
				 const char *uuid,
				 size_t volume_key_size,
				 struct crypt_params_loopaes *params)
{
	if (!crypt_metadata_device(cd)) {
		log_err(cd, _("Can't format LOOPAES without device."));
		return -EINVAL;
	}

	if (volume_key_size &gt; 1024) {
		log_err(cd, _("Invalid key size."));
		return -EINVAL;
	}

	if (uuid) {
		log_err(cd, _("UUID is not supported for this crypt type."));
		return -EINVAL;
	}

	if (cd-&gt;metadata_device) {
		log_err(cd, _("Detached metadata device is not supported for this crypt type."));
		return -EINVAL;
	}

	if (!(cd-&gt;type = strdup(CRYPT_LOOPAES)))
		return -ENOMEM;

	cd-&gt;u.loopaes.key_size = volume_key_size;

	cd-&gt;u.loopaes.cipher = strdup(cipher ?: DEFAULT_LOOPAES_CIPHER);

	if (params &amp;&amp; params-&gt;hash)
		cd-&gt;u.loopaes.hdr.hash = strdup(params-&gt;hash);

	cd-&gt;u.loopaes.hdr.offset = params ? params-&gt;offset : 0;
	cd-&gt;u.loopaes.hdr.skip = params ? params-&gt;skip : 0;

	return 0;
}

static int _crypt_format_verity(struct crypt_device *cd,
				 const char *uuid,
				 struct crypt_params_verity *params)
{
	int r = 0, hash_size;
	uint64_t data_device_size, hash_blocks_size;
	struct device *fec_device = NULL;
	char *fec_device_path = NULL, *hash_name = NULL, *root_hash = NULL, *salt = NULL;

	if (!crypt_metadata_device(cd)) {
		log_err(cd, _("Can't format VERITY without device."));
		return -EINVAL;
	}

	if (!params)
		return -EINVAL;

	if (!params-&gt;data_device &amp;&amp; !cd-&gt;metadata_device)
		return -EINVAL;

	if (params-&gt;hash_type &gt; VERITY_MAX_HASH_TYPE) {
		log_err(cd, _("Unsupported VERITY hash type %d."), params-&gt;hash_type);
		return -EINVAL;
	}

	if (VERITY_BLOCK_SIZE_OK(params-&gt;data_block_size) ||
	    VERITY_BLOCK_SIZE_OK(params-&gt;hash_block_size)) {
		log_err(cd, _("Unsupported VERITY block size."));
		return -EINVAL;
	}

	if (MISALIGNED_512(params-&gt;hash_area_offset)) {
		log_err(cd, _("Unsupported VERITY hash offset."));
		return -EINVAL;
	}

	if (MISALIGNED_512(params-&gt;fec_area_offset)) {
		log_err(cd, _("Unsupported VERITY FEC offset."));
		return -EINVAL;
	}

	if (!(cd-&gt;type = strdup(CRYPT_VERITY)))
		return -ENOMEM;

	if (params-&gt;data_device) {
		r = crypt_set_data_device(cd, params-&gt;data_device);
		if (r)
			return r;
	}

	if (!params-&gt;data_size) {
		r = device_size(cd-&gt;device, &amp;data_device_size);
		if (r &lt; 0)
			return r;

		cd-&gt;u.verity.hdr.data_size = data_device_size / params-&gt;data_block_size;
	} else
		cd-&gt;u.verity.hdr.data_size = params-&gt;data_size;

	if (device_is_identical(crypt_metadata_device(cd), crypt_data_device(cd)) &gt; 0 &amp;&amp;
	   (cd-&gt;u.verity.hdr.data_size * params-&gt;data_block_size) &gt; params-&gt;hash_area_offset) {
		log_err(cd, _("Data area overlaps with hash area."));
		return -EINVAL;
	}

	hash_size = crypt_hash_size(params-&gt;hash_name);
	if (hash_size &lt;= 0) {
		log_err(cd, _("Hash algorithm %s not supported."),
			params-&gt;hash_name);
		return -EINVAL;
	}
	cd-&gt;u.verity.root_hash_size = hash_size;

	if (params-&gt;fec_device) {
		fec_device_path = strdup(params-&gt;fec_device);
		if (!fec_device_path)
			return -ENOMEM;
		r = device_alloc(cd, &amp;fec_device, params-&gt;fec_device);
		if (r &lt; 0) {
			r = -ENOMEM;
			goto out;
		}

		hash_blocks_size = VERITY_hash_blocks(cd, params) * params-&gt;hash_block_size;
		if (device_is_identical(crypt_metadata_device(cd), fec_device) &gt; 0 &amp;&amp;
		    (params-&gt;hash_area_offset + hash_blocks_size) &gt; params-&gt;fec_area_offset) {
			log_err(cd, _("Hash area overlaps with FEC area."));
			r = -EINVAL;
			goto out;
		}

		if (device_is_identical(crypt_data_device(cd), fec_device) &gt; 0 &amp;&amp;
		    (cd-&gt;u.verity.hdr.data_size * params-&gt;data_block_size) &gt; params-&gt;fec_area_offset) {
			log_err(cd, _("Data area overlaps with FEC area."));
			r = -EINVAL;
			goto out;
		}
	}

	root_hash = malloc(cd-&gt;u.verity.root_hash_size);
	hash_name = strdup(params-&gt;hash_name);
	salt = malloc(params-&gt;salt_size);

	if (!root_hash || !hash_name || !salt) {
		r = -ENOMEM;
		goto out;
	}

	cd-&gt;u.verity.hdr.flags = params-&gt;flags;
	cd-&gt;u.verity.root_hash = root_hash;
	cd-&gt;u.verity.hdr.hash_name = hash_name;
	cd-&gt;u.verity.hdr.data_device = NULL;
	cd-&gt;u.verity.fec_device = fec_device;
	cd-&gt;u.verity.hdr.fec_device = fec_device_path;
	cd-&gt;u.verity.hdr.fec_roots = params-&gt;fec_roots;
	cd-&gt;u.verity.hdr.data_block_size = params-&gt;data_block_size;
	cd-&gt;u.verity.hdr.hash_block_size = params-&gt;hash_block_size;
	cd-&gt;u.verity.hdr.hash_area_offset = params-&gt;hash_area_offset;
	cd-&gt;u.verity.hdr.fec_area_offset = params-&gt;fec_area_offset;
	cd-&gt;u.verity.hdr.hash_type = params-&gt;hash_type;
	cd-&gt;u.verity.hdr.flags = params-&gt;flags;
	cd-&gt;u.verity.hdr.salt_size = params-&gt;salt_size;
	cd-&gt;u.verity.hdr.salt = salt;

	if (params-&gt;salt)
		memcpy(salt, params-&gt;salt, params-&gt;salt_size);
	else
		r = crypt_random_get(cd, salt, params-&gt;salt_size, CRYPT_RND_SALT);
	if (r)
		goto out;

	if (params-&gt;flags &amp; CRYPT_VERITY_CREATE_HASH) {
		r = VERITY_create(cd, &amp;cd-&gt;u.verity.hdr,
				  cd-&gt;u.verity.root_hash, cd-&gt;u.verity.root_hash_size);
		if (!r &amp;&amp; params-&gt;fec_device)
			r = VERITY_FEC_process(cd, &amp;cd-&gt;u.verity.hdr, cd-&gt;u.verity.fec_device, 0, NULL);
		if (r)
			goto out;
	}

	if (!(params-&gt;flags &amp; CRYPT_VERITY_NO_HEADER)) {
		if (uuid) {
			if (!(cd-&gt;u.verity.uuid = strdup(uuid)))
				r = -ENOMEM;
		} else
			r = VERITY_UUID_generate(&amp;cd-&gt;u.verity.uuid);

		if (!r)
			r = VERITY_write_sb(cd, cd-&gt;u.verity.hdr.hash_area_offset,
					    cd-&gt;u.verity.uuid,
					    &amp;cd-&gt;u.verity.hdr);
	}

out:
	if (r) {
		device_free(cd, fec_device);
		free(root_hash);
		free(hash_name);
		free(fec_device_path);
		free(salt);
	}

	return r;
}

static int _crypt_format_integrity(struct crypt_device *cd,
				   const char *uuid,
				   struct crypt_params_integrity *params)
{
	int r;
	uint32_t integrity_tag_size;
	char *integrity = NULL, *journal_integrity = NULL, *journal_crypt = NULL;
	struct volume_key *journal_crypt_key = NULL, *journal_mac_key = NULL;

	if (!params)
		return -EINVAL;

	if (uuid) {
		log_err(cd, _("UUID is not supported for this crypt type."));
		return -EINVAL;
	}

	r = device_check_access(cd, crypt_metadata_device(cd), DEV_EXCL);
	if (r &lt; 0)
		return r;

	/* Wipe first 8 sectors - fs magic numbers etc. */
	r = crypt_wipe_device(cd, crypt_metadata_device(cd), CRYPT_WIPE_ZERO, 0,
			      8 * SECTOR_SIZE, 8 * SECTOR_SIZE, NULL, NULL);
	if (r &lt; 0) {
		log_err(cd, _("Cannot wipe header on device %s."),
			mdata_device_path(cd));
		return r;
	}

	if (!(cd-&gt;type = strdup(CRYPT_INTEGRITY)))
		return -ENOMEM;

	if (params-&gt;journal_crypt_key) {
		journal_crypt_key = crypt_alloc_volume_key(params-&gt;journal_crypt_key_size,
							   params-&gt;journal_crypt_key);
		if (!journal_crypt_key)
			return -ENOMEM;
	}

	if (params-&gt;journal_integrity_key) {
		journal_mac_key = crypt_alloc_volume_key(params-&gt;journal_integrity_key_size,
							 params-&gt;journal_integrity_key);
		if (!journal_mac_key) {
			r = -ENOMEM;
			goto out;
		}
	}

	if (params-&gt;integrity &amp;&amp; !(integrity = strdup(params-&gt;integrity))) {
		r = -ENOMEM;
		goto out;
	}
	if (params-&gt;journal_integrity &amp;&amp; !(journal_integrity = strdup(params-&gt;journal_integrity))) {
		r = -ENOMEM;
		goto out;
	}
	if (params-&gt;journal_crypt &amp;&amp; !(journal_crypt = strdup(params-&gt;journal_crypt))) {
		r = -ENOMEM;
		goto out;
	}

	integrity_tag_size = INTEGRITY_hash_tag_size(integrity);
	if (integrity_tag_size &gt; 0 &amp;&amp; params-&gt;tag_size &amp;&amp; integrity_tag_size != params-&gt;tag_size)
		log_std(cd, _("WARNING: Requested tag size %d bytes differs from %s size output (%d bytes).\n"),
			params-&gt;tag_size, integrity, integrity_tag_size);

	if (params-&gt;tag_size)
		integrity_tag_size = params-&gt;tag_size;

	cd-&gt;u.integrity.journal_crypt_key = journal_crypt_key;
	cd-&gt;u.integrity.journal_mac_key = journal_mac_key;
	cd-&gt;u.integrity.params.journal_size = params-&gt;journal_size;
	cd-&gt;u.integrity.params.journal_watermark = params-&gt;journal_watermark;
	cd-&gt;u.integrity.params.journal_commit_time = params-&gt;journal_commit_time;
	cd-&gt;u.integrity.params.interleave_sectors = params-&gt;interleave_sectors;
	cd-&gt;u.integrity.params.buffer_sectors = params-&gt;buffer_sectors;
	cd-&gt;u.integrity.params.sector_size = params-&gt;sector_size;
	cd-&gt;u.integrity.params.tag_size = integrity_tag_size;
	cd-&gt;u.integrity.params.integrity = integrity;
	cd-&gt;u.integrity.params.journal_integrity = journal_integrity;
	cd-&gt;u.integrity.params.journal_crypt = journal_crypt;

	r = INTEGRITY_format(cd, params, cd-&gt;u.integrity.journal_crypt_key, cd-&gt;u.integrity.journal_mac_key, 0);
	if (r)
		log_err(cd, _("Cannot format integrity for device %s."),
			mdata_device_path(cd));
out:
	if (r) {
		crypt_free_volume_key(journal_crypt_key);
		crypt_free_volume_key(journal_mac_key);
		free(integrity);
		free(journal_integrity);
		free(journal_crypt);
	}

	return r;
}

static int _crypt_format(struct crypt_device *cd,
	const char *type,
	const char *cipher,
	const char *cipher_mode,
	const char *uuid,
	const char *volume_key,
	size_t volume_key_size,
	void *params,
	bool sector_size_autodetect)
{
	int r;

	if (!cd || !type)
		return -EINVAL;

	if (cd-&gt;type) {
		log_dbg(cd, "Context already formatted as %s.", cd-&gt;type);
		return -EINVAL;
	}

	log_dbg(cd, "Formatting device %s as type %s.", mdata_device_path(cd) ?: "(none)", type);

	crypt_reset_null_type(cd);

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	if (isPLAIN(type))
		r = _crypt_format_plain(cd, cipher, cipher_mode,
					uuid, volume_key_size, params);
	else if (isLUKS1(type))
		r = _crypt_format_luks1(cd, cipher, cipher_mode,
					uuid, volume_key, volume_key_size, params);
	else if (isLUKS2(type))
		r = _crypt_format_luks2(cd, cipher, cipher_mode,
					uuid, volume_key, volume_key_size, params, sector_size_autodetect);
	else if (isLOOPAES(type))
		r = _crypt_format_loopaes(cd, cipher, uuid, volume_key_size, params);
	else if (isVERITY(type))
		r = _crypt_format_verity(cd, uuid, params);
	else if (isINTEGRITY(type))
		r = _crypt_format_integrity(cd, uuid, params);
	else {
		log_err(cd, _("Unknown crypt device type %s requested."), type);
		r = -EINVAL;
	}

	if (r &lt; 0) {
		crypt_set_null_type(cd);
		crypt_free_volume_key(cd-&gt;volume_key);
		cd-&gt;volume_key = NULL;
	}

	return r;
}

CRYPT_SYMBOL_EXPORT_NEW(int, crypt_format, 2, 4,
	/* crypt_format parameters follows */
	struct crypt_device *cd,
	const char *type,
	const char *cipher,
	const char *cipher_mode,
	const char *uuid,
	const char *volume_key,
	size_t volume_key_size,
	void *params)
{
	return _crypt_format(cd, type, cipher, cipher_mode, uuid, volume_key, volume_key_size, params, true);
}


CRYPT_SYMBOL_EXPORT_OLD(int, crypt_format, 2, 0,
	/* crypt_format parameters follows */
	struct crypt_device *cd,
	const char *type,
	const char *cipher,
	const char *cipher_mode,
	const char *uuid,
	const char *volume_key,
	size_t volume_key_size,
	void *params)
{
	return _crypt_format(cd, type, cipher, cipher_mode, uuid, volume_key, volume_key_size, params, false);
}

int crypt_repair(struct crypt_device *cd,
		 const char *requested_type,
		 void *params __attribute__((unused)))
{
	int r;

	if (!cd)
		return -EINVAL;

	log_dbg(cd, "Trying to repair %s crypt type from device %s.",
		requested_type ?: "any", mdata_device_path(cd) ?: "(none)");

	if (!crypt_metadata_device(cd))
		return -EINVAL;

	if (requested_type &amp;&amp; !isLUKS(requested_type))
		return -EINVAL;

	/* Load with repair */
	r = _crypt_load_luks(cd, requested_type, false, true);
	if (r &lt; 0)
		return r;

	/* cd-&gt;type and header must be set in context */
	r = crypt_check_data_device_size(cd);
	if (r &lt; 0)
		crypt_set_null_type(cd);

	return r;
}

/* compare volume keys */
static int _compare_volume_keys(struct volume_key *svk, unsigned skeyring_only,
				struct volume_key *tvk, unsigned tkeyring_only)
{
	if (!svk &amp;&amp; !tvk)
		return 0;
	else if (!svk || !tvk)
		return 1;

	if (svk-&gt;keylength != tvk-&gt;keylength)
		return 1;

	if (!skeyring_only &amp;&amp; !tkeyring_only)
		return crypt_backend_memeq(svk-&gt;key, tvk-&gt;key, svk-&gt;keylength);

	if (svk-&gt;key_description &amp;&amp; tvk-&gt;key_description)
		return strcmp(svk-&gt;key_description, tvk-&gt;key_description);

	return 0;
}

static int _compare_device_types(struct crypt_device *cd,
			       const struct crypt_dm_active_device *src,
			       const struct crypt_dm_active_device *tgt)
{
	if (!tgt-&gt;uuid) {
		log_dbg(cd, "Missing device uuid in target device.");
		return -EINVAL;
	}

	if (isLUKS2(cd-&gt;type) &amp;&amp; !strncmp("INTEGRITY-", tgt-&gt;uuid, strlen("INTEGRITY-"))) {
		if (crypt_uuid_cmp(tgt-&gt;uuid, src-&gt;uuid)) {
			log_dbg(cd, "LUKS UUID mismatch.");
			return -EINVAL;
		}
	} else if (isLUKS(cd-&gt;type)) {
		if (!src-&gt;uuid || strncmp(cd-&gt;type, tgt-&gt;uuid, strlen(cd-&gt;type)) ||
		    crypt_uuid_cmp(tgt-&gt;uuid, src-&gt;uuid)) {
			log_dbg(cd, "LUKS UUID mismatch.");
			return -EINVAL;
		}
	} else if (isPLAIN(cd-&gt;type) || isLOOPAES(cd-&gt;type)) {
		if (strncmp(cd-&gt;type, tgt-&gt;uuid, strlen(cd-&gt;type))) {
			log_dbg(cd, "Unexpected uuid prefix %s in target device.", tgt-&gt;uuid);
			return -EINVAL;
		}
	} else if (!isINTEGRITY(cd-&gt;type)) {
		log_dbg(cd, "Unsupported device type %s for reload.", cd-&gt;type ?: "&lt;empty&gt;");
		return -ENOTSUP;
	}

	return 0;
}

static int _compare_crypt_devices(struct crypt_device *cd,
			       const struct dm_target *src,
			       const struct dm_target *tgt)
{
	char *src_cipher = NULL, *src_integrity = NULL;
	int r = -EINVAL;

	/* for crypt devices keys are mandatory */
	if (!src-&gt;u.crypt.vk || !tgt-&gt;u.crypt.vk)
		return -EINVAL;

	/* CIPHER checks */
	if (!src-&gt;u.crypt.cipher || !tgt-&gt;u.crypt.cipher)
		return -EINVAL;

	/*
	 * dm_query_target converts capi cipher specification to dm-crypt format.
	 * We need to do same for cipher specification requested in source
	 * device.
	 */
	if (crypt_capi_to_cipher(&amp;src_cipher, &amp;src_integrity, src-&gt;u.crypt.cipher, src-&gt;u.crypt.integrity))
		return -EINVAL;

	if (strcmp(src_cipher, tgt-&gt;u.crypt.cipher)) {
		log_dbg(cd, "Cipher specs do not match.");
		goto out;
	}

	if (tgt-&gt;u.crypt.vk-&gt;keylength == 0 &amp;&amp; crypt_is_cipher_null(tgt-&gt;u.crypt.cipher))
		log_dbg(cd, "Existing device uses cipher null. Skipping key comparison.");
	else if (_compare_volume_keys(src-&gt;u.crypt.vk, 0, tgt-&gt;u.crypt.vk, tgt-&gt;u.crypt.vk-&gt;key_description != NULL)) {
		log_dbg(cd, "Keys in context and target device do not match.");
		goto out;
	}

	if (crypt_strcmp(src_integrity, tgt-&gt;u.crypt.integrity)) {
		log_dbg(cd, "Integrity parameters do not match.");
		goto out;
	}

	if (src-&gt;u.crypt.offset      != tgt-&gt;u.crypt.offset ||
	    src-&gt;u.crypt.sector_size != tgt-&gt;u.crypt.sector_size ||
	    src-&gt;u.crypt.iv_offset   != tgt-&gt;u.crypt.iv_offset ||
	    src-&gt;u.crypt.tag_size    != tgt-&gt;u.crypt.tag_size) {
		log_dbg(cd, "Integer parameters do not match.");
		goto out;
	}

	if (device_is_identical(src-&gt;data_device, tgt-&gt;data_device) &lt;= 0)
		log_dbg(cd, "Data devices do not match.");
	else
		r = 0;

out:
	free(src_cipher);
	free(src_integrity);

	return r;
}

static int _compare_integrity_devices(struct crypt_device *cd,
			       const struct dm_target *src,
			       const struct dm_target *tgt)
{
	/*
	 * some parameters may be implicit (and set in dm-integrity ctor)
	 *
	 *	journal_size
	 *	journal_watermark
	 *	journal_commit_time
	 *	buffer_sectors
	 *	interleave_sectors
	 */

	/* check remaining integer values that makes sense */
	if (src-&gt;u.integrity.tag_size	  != tgt-&gt;u.integrity.tag_size ||
	    src-&gt;u.integrity.offset	  != tgt-&gt;u.integrity.offset   ||
	    src-&gt;u.integrity.sector_size  != tgt-&gt;u.integrity.sector_size) {
		log_dbg(cd, "Integer parameters do not match.");
		return -EINVAL;
	}

	if (crypt_strcmp(src-&gt;u.integrity.integrity,	     tgt-&gt;u.integrity.integrity) ||
	    crypt_strcmp(src-&gt;u.integrity.journal_integrity, tgt-&gt;u.integrity.journal_integrity) ||
	    crypt_strcmp(src-&gt;u.integrity.journal_crypt,     tgt-&gt;u.integrity.journal_crypt)) {
		log_dbg(cd, "Journal parameters do not match.");
		return -EINVAL;
	}

	/* unfortunately dm-integrity doesn't support keyring */
	if (_compare_volume_keys(src-&gt;u.integrity.vk, 0, tgt-&gt;u.integrity.vk, 0) ||
	    _compare_volume_keys(src-&gt;u.integrity.journal_integrity_key, 0, tgt-&gt;u.integrity.journal_integrity_key, 0) ||
	    _compare_volume_keys(src-&gt;u.integrity.journal_crypt_key, 0, tgt-&gt;u.integrity.journal_crypt_key, 0)) {
		log_dbg(cd, "Journal keys do not match.");
		return -EINVAL;
	}

	if (device_is_identical(src-&gt;data_device, tgt-&gt;data_device) &lt;= 0) {
		log_dbg(cd, "Data devices do not match.");
		return -EINVAL;
	}

	return 0;
}

int crypt_compare_dm_devices(struct crypt_device *cd,
			       const struct crypt_dm_active_device *src,
			       const struct crypt_dm_active_device *tgt)
{
	int r;
	const struct dm_target *s, *t;

	if (!src || !tgt)
		return -EINVAL;

	r = _compare_device_types(cd, src, tgt);
	if (r)
		return r;

	s = &amp;src-&gt;segment;
	t = &amp;tgt-&gt;segment;

	while (s || t) {
		if (!s || !t) {
			log_dbg(cd, "segments count mismatch.");
			return -EINVAL;
		}
		if (s-&gt;type != t-&gt;type) {
			log_dbg(cd, "segment type mismatch.");
			r = -EINVAL;
			break;
		}

		switch (s-&gt;type) {
		case DM_CRYPT:
			r = _compare_crypt_devices(cd, s, t);
			break;
		case DM_INTEGRITY:
			r = _compare_integrity_devices(cd, s, t);
			break;
		case DM_LINEAR:
			r = (s-&gt;u.linear.offset == t-&gt;u.linear.offset) ? 0 : -EINVAL;
			break;
		default:
			r = -ENOTSUP;
		}

		if (r)
			break;

		s = s-&gt;next;
		t = t-&gt;next;
	}

	return r;
}

static int _reload_device(struct crypt_device *cd, const char *name,
			  struct crypt_dm_active_device *sdmd, uint32_t dmflags)
{
	int r;
	struct crypt_dm_active_device tdmd;
	struct dm_target *src, *tgt = &amp;tdmd.segment;

	if (!cd || !cd-&gt;type || !name || !(sdmd-&gt;flags &amp; CRYPT_ACTIVATE_REFRESH))
		return -EINVAL;

	r = dm_query_device(cd, name, DM_ACTIVE_DEVICE | DM_ACTIVE_CRYPT_CIPHER |
				  DM_ACTIVE_UUID | DM_ACTIVE_CRYPT_KEYSIZE |
				  DM_ACTIVE_CRYPT_KEY | DM_ACTIVE_INTEGRITY_PARAMS |
				  DM_ACTIVE_JOURNAL_CRYPT_KEY | DM_ACTIVE_JOURNAL_MAC_KEY, &amp;tdmd);
	if (r &lt; 0) {
		log_err(cd, _("Device %s is not active."), name);
		return -EINVAL;
	}

	if (!single_segment(&amp;tdmd) ||
	    (tgt-&gt;type != DM_CRYPT &amp;&amp; tgt-&gt;type != DM_INTEGRITY) ||
	    (tgt-&gt;type == DM_CRYPT &amp;&amp; tgt-&gt;u.crypt.tag_size)) {
		r = -ENOTSUP;
		log_err(cd, _("Unsupported parameters on device %s."), name);
		goto out;
	}

	r = crypt_compare_dm_devices(cd, sdmd, &amp;tdmd);
	if (r) {
		log_err(cd, _("Mismatching parameters on device %s."), name);
		goto out;
	}

	src = &amp;sdmd-&gt;segment;

	/* Changing read only flag for active device makes no sense */
	if (tdmd.flags &amp; CRYPT_ACTIVATE_READONLY)
		sdmd-&gt;flags |= CRYPT_ACTIVATE_READONLY;
	else
		sdmd-&gt;flags &amp;= ~CRYPT_ACTIVATE_READONLY;

	if (tgt-&gt;type == DM_CRYPT &amp;&amp; sdmd-&gt;flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) {
		r = crypt_volume_key_set_description(tgt-&gt;u.crypt.vk, src-&gt;u.crypt.vk-&gt;key_description);
		if (r)
			goto out;
	} else if (tgt-&gt;type == DM_CRYPT) {
		crypt_free_volume_key(tgt-&gt;u.crypt.vk);
		tgt-&gt;u.crypt.vk = crypt_alloc_volume_key(src-&gt;u.crypt.vk-&gt;keylength, src-&gt;u.crypt.vk-&gt;key);
		if (!tgt-&gt;u.crypt.vk) {
			r = -ENOMEM;
			goto out;
		}
	}

	if (tgt-&gt;type == DM_CRYPT)
		r = device_block_adjust(cd, src-&gt;data_device, DEV_OK,
					src-&gt;u.crypt.offset, &amp;sdmd-&gt;size, NULL);
	else if (tgt-&gt;type == DM_INTEGRITY)
		r = device_block_adjust(cd, src-&gt;data_device, DEV_OK,
					src-&gt;u.integrity.offset, &amp;sdmd-&gt;size, NULL);
	else
		r = -EINVAL;

	if (r)
		goto out;

	tdmd.flags = sdmd-&gt;flags;
	tgt-&gt;size = tdmd.size = sdmd-&gt;size;

	r = dm_reload_device(cd, name, &amp;tdmd, dmflags, 1);
out:
	dm_targets_free(cd, &amp;tdmd);
	free(CONST_CAST(void*)tdmd.uuid);

	return r;
}

static int _reload_device_with_integrity(struct crypt_device *cd,
	const char *name,
	const char *iname,
	const char *ipath,
	struct crypt_dm_active_device *sdmd,
	struct crypt_dm_active_device *sdmdi)
{
	int r;
	struct crypt_dm_active_device tdmd, tdmdi = {};
	struct dm_target *src, *srci, *tgt = &amp;tdmd.segment, *tgti = &amp;tdmdi.segment;
	struct device *data_device = NULL;
	bool clear = false;

	if (!cd || !cd-&gt;type || !name || !iname || !(sdmd-&gt;flags &amp; CRYPT_ACTIVATE_REFRESH))
		return -EINVAL;

	r = dm_query_device(cd, name, DM_ACTIVE_DEVICE | DM_ACTIVE_CRYPT_CIPHER |
				  DM_ACTIVE_UUID | DM_ACTIVE_CRYPT_KEYSIZE |
				  DM_ACTIVE_CRYPT_KEY, &amp;tdmd);
	if (r &lt; 0) {
		log_err(cd, _("Device %s is not active."), name);
		return -EINVAL;
	}

	if (!single_segment(&amp;tdmd) || tgt-&gt;type != DM_CRYPT || !tgt-&gt;u.crypt.tag_size) {
		log_err(cd, _("Unsupported parameters on device %s."), name);
		r = -ENOTSUP;
		goto out;
	}

	r = dm_query_device(cd, iname, DM_ACTIVE_DEVICE | DM_ACTIVE_UUID, &amp;tdmdi);
	if (r &lt; 0) {
		log_err(cd, _("Device %s is not active."), iname);
		r = -EINVAL;
		goto out;
	}

	if (!single_segment(&amp;tdmdi) || tgti-&gt;type != DM_INTEGRITY) {
		log_err(cd, _("Unsupported parameters on device %s."), iname);
		r = -ENOTSUP;
		goto out;
	}

	r = crypt_compare_dm_devices(cd, sdmdi, &amp;tdmdi);
	if (r) {
		log_err(cd, _("Mismatching parameters on device %s."), iname);
		goto out;
	}

	/* unsupported underneath dm-crypt with auth. encryption */
	if (sdmdi-&gt;segment.u.integrity.meta_device || tdmdi.segment.u.integrity.meta_device)
		return -ENOTSUP;

	src = &amp;sdmd-&gt;segment;
	srci = &amp;sdmdi-&gt;segment;

	r = device_alloc(cd, &amp;data_device, ipath);
	if (r &lt; 0)
		goto out;

	r = device_block_adjust(cd, srci-&gt;data_device, DEV_OK,
				srci-&gt;u.integrity.offset, &amp;sdmdi-&gt;size, NULL);
	if (r)
		goto out;

	src-&gt;data_device = data_device;

	r = crypt_compare_dm_devices(cd, sdmd, &amp;tdmd);
	if (r) {
		log_err(cd, _("Crypt devices mismatch."));
		goto out;
	}

	/* Changing read only flag for active device makes no sense */
	if (tdmd.flags &amp; CRYPT_ACTIVATE_READONLY)
		sdmd-&gt;flags |= CRYPT_ACTIVATE_READONLY;
	else
		sdmd-&gt;flags &amp;= ~CRYPT_ACTIVATE_READONLY;

	if (tdmdi.flags &amp; CRYPT_ACTIVATE_READONLY)
		sdmdi-&gt;flags |= CRYPT_ACTIVATE_READONLY;
	else
		sdmdi-&gt;flags &amp;= ~CRYPT_ACTIVATE_READONLY;

	if (sdmd-&gt;flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) {
		r = crypt_volume_key_set_description(tgt-&gt;u.crypt.vk, src-&gt;u.crypt.vk-&gt;key_description);
		if (r)
			goto out;
	} else {
		crypt_free_volume_key(tgt-&gt;u.crypt.vk);
		tgt-&gt;u.crypt.vk = crypt_alloc_volume_key(src-&gt;u.crypt.vk-&gt;keylength, src-&gt;u.crypt.vk-&gt;key);
		if (!tgt-&gt;u.crypt.vk) {
			r = -ENOMEM;
			goto out;
		}
	}

	r = device_block_adjust(cd, src-&gt;data_device, DEV_OK,
				src-&gt;u.crypt.offset, &amp;sdmd-&gt;size, NULL);
	if (r)
		goto out;

	tdmd.flags = sdmd-&gt;flags;
	tdmd.size = sdmd-&gt;size;

	if ((r = dm_reload_device(cd, iname, sdmdi, 0, 0))) {
		log_err(cd, _("Failed to reload device %s."), iname);
		goto out;
	}

	if ((r = dm_reload_device(cd, name, &amp;tdmd, 0, 0))) {
		log_err(cd, _("Failed to reload device %s."), name);
		clear = true;
		goto out;
	}

	if ((r = dm_suspend_device(cd, name, 0))) {
		log_err(cd, _("Failed to suspend device %s."), name);
		clear = true;
		goto out;
	}

	if ((r = dm_suspend_device(cd, iname, 0))) {
		log_err(cd, _("Failed to suspend device %s."), iname);
		clear = true;
		goto out;
	}

	if ((r = dm_resume_device(cd, iname, act2dmflags(sdmdi-&gt;flags)))) {
		log_err(cd, _("Failed to resume device %s."), iname);
		clear = true;
		goto out;
	}

	r = dm_resume_device(cd, name, act2dmflags(tdmd.flags));
	if (!r)
		goto out;

	/*
	 * This is worst case scenario. We have active underlying dm-integrity device with
	 * new table but dm-crypt resume failed for some reason. Tear everything down and
	 * burn it for good.
	 */

	log_err(cd, _("Fatal error while reloading device %s (on top of device %s)."), name, iname);

	if (dm_error_device(cd, name))
		log_err(cd, _("Failed to switch device %s to dm-error."), name);
	if (dm_error_device(cd, iname))
		log_err(cd, _("Failed to switch device %s to dm-error."), iname);
out:
	if (clear) {
		dm_clear_device(cd, name);
		dm_clear_device(cd, iname);

		if (dm_status_suspended(cd, name) &gt; 0)
			dm_resume_device(cd, name, 0);
		if (dm_status_suspended(cd, iname) &gt; 0)
			dm_resume_device(cd, iname, 0);
	}

	dm_targets_free(cd, &amp;tdmd);
	dm_targets_free(cd, &amp;tdmdi);
	free(CONST_CAST(void*)tdmdi.uuid);
	free(CONST_CAST(void*)tdmd.uuid);
	device_free(cd, data_device);

	return r;
}

int crypt_resize(struct crypt_device *cd, const char *name, uint64_t new_size)
{
	struct crypt_dm_active_device dmdq, dmd = {};
	struct dm_target *tgt = &amp;dmdq.segment;
	struct crypt_params_integrity params = {};
	uint32_t supported_flags = 0, dmflags = 0;
	uint64_t old_size;
	int r;

	/* Device context type must be initialized */
	if (!cd || !cd-&gt;type || !name)
		return -EINVAL;

	if (isTCRYPT(cd-&gt;type) || isBITLK(cd-&gt;type)) {
		log_err(cd, _("This operation is not supported for this device type."));
		return -ENOTSUP;
	}

	if (isLUKS2(cd-&gt;type) &amp;&amp; !LUKS2_segments_dynamic_size(&amp;cd-&gt;u.luks2.hdr)) {
		log_err(cd, _("Can not resize LUKS2 device with static size."));
		return -EINVAL;
	}

	if (new_size)
		log_dbg(cd, "Resizing device %s to %" PRIu64 " sectors.", name, new_size);
	else
		log_dbg(cd, "Resizing device %s to underlying device size.", name);

	r = dm_query_device(cd, name, DM_ACTIVE_CRYPT_KEYSIZE | DM_ACTIVE_CRYPT_KEY |
			    DM_ACTIVE_INTEGRITY_PARAMS | DM_ACTIVE_JOURNAL_CRYPT_KEY |
			    DM_ACTIVE_JOURNAL_MAC_KEY, &amp;dmdq);
	if (r &lt; 0) {
		log_err(cd, _("Device %s is not active."), name);
		return -EINVAL;
	}
	if (!single_segment(&amp;dmdq) || (tgt-&gt;type != DM_CRYPT &amp;&amp; tgt-&gt;type != DM_INTEGRITY)) {
		log_dbg(cd, "Unsupported device table detected in %s.", name);
		r = -EINVAL;
		goto out;
	}

	if ((dmdq.flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) &amp;&amp; !crypt_key_in_keyring(cd)) {
		r = -EPERM;
		goto out;
	}

	if (crypt_key_in_keyring(cd)) {
		if (!isLUKS2(cd-&gt;type)) {
			r = -EINVAL;
			goto out;
		}
		r = LUKS2_key_description_by_segment(cd, &amp;cd-&gt;u.luks2.hdr,
					tgt-&gt;u.crypt.vk, CRYPT_DEFAULT_SEGMENT);
		if (r)
			goto out;

		dmdq.flags |= CRYPT_ACTIVATE_KEYRING_KEY;
	}

	if (crypt_loop_device(crypt_get_device_name(cd))) {
		log_dbg(cd, "Trying to resize underlying loop device %s.",
			crypt_get_device_name(cd));
		/* Here we always use default size not new_size */
		if (crypt_loop_resize(crypt_get_device_name(cd)))
			log_err(cd, _("Cannot resize loop device."));
	}


	/*
	 * Integrity device metadata are maintained by the kernel. We need to
	 * reload the device (with the same parameters) and let the kernel
	 * calculate the maximum size of integrity device and store it in the
	 * superblock.
	 */
	if (!new_size &amp;&amp; tgt-&gt;type == DM_INTEGRITY) {
		r = INTEGRITY_data_sectors(cd, crypt_metadata_device(cd),
					   crypt_get_data_offset(cd) * SECTOR_SIZE, &amp;old_size);
		if (r &lt; 0)
			return r;

		dmd.size = dmdq.size;
		dmd.flags = dmdq.flags | CRYPT_ACTIVATE_REFRESH | CRYPT_ACTIVATE_PRIVATE;

		r = crypt_get_integrity_info(cd, &amp;params);
		if (r)
			goto out;

		r = dm_integrity_target_set(cd, &amp;dmd.segment, 0, dmdq.segment.size,
				crypt_metadata_device(cd), crypt_data_device(cd),
				crypt_get_integrity_tag_size(cd), crypt_get_data_offset(cd),
				crypt_get_sector_size(cd), tgt-&gt;u.integrity.vk, tgt-&gt;u.integrity.journal_crypt_key,
				tgt-&gt;u.integrity.journal_integrity_key, &amp;params);
		if (r)
			goto out;
		/* Backend device cannot be smaller here, device_block_adjust() will fail if so. */
		r = _reload_device(cd, name, &amp;dmd, DM_SUSPEND_SKIP_LOCKFS | DM_SUSPEND_NOFLUSH);
		if (r)
			goto out;

		r = INTEGRITY_data_sectors(cd, crypt_metadata_device(cd),
				crypt_get_data_offset(cd) * SECTOR_SIZE, &amp;new_size);
		if (r &lt; 0)
			return r;
		log_dbg(cd, "Maximum integrity device size from kernel %" PRIu64, new_size);

		if (old_size == new_size &amp;&amp; new_size == dmdq.size &amp;&amp;
		    !dm_flags(cd, tgt-&gt;type, &amp;supported_flags) &amp;&amp;
		    !(supported_flags &amp; DM_INTEGRITY_RESIZE_SUPPORTED))
			log_std(cd, _("WARNING: Maximum size already set or kernel doesn't support resize.\n"));
	}

	r = device_block_adjust(cd, crypt_data_device(cd), DEV_OK,
			crypt_get_data_offset(cd), &amp;new_size, &amp;dmdq.flags);
	if (r)
		goto out;

	if (MISALIGNED(new_size, (tgt-&gt;type == DM_CRYPT ? tgt-&gt;u.crypt.sector_size : tgt-&gt;u.integrity.sector_size) &gt;&gt; SECTOR_SHIFT)) {
		log_err(cd, _("Device size is not aligned to requested sector size."));
		r = -EINVAL;
		goto out;
	}

	if (MISALIGNED(new_size, device_block_size(cd, crypt_data_device(cd)) &gt;&gt; SECTOR_SHIFT)) {
		log_err(cd, _("Device size is not aligned to device logical block size."));
		r = -EINVAL;
		goto out;
	}

	dmd.uuid = crypt_get_uuid(cd);
	dmd.size = new_size;
	dmd.flags = dmdq.flags | CRYPT_ACTIVATE_REFRESH;

	if (tgt-&gt;type == DM_CRYPT) {
		r = dm_crypt_target_set(&amp;dmd.segment, 0, new_size, crypt_data_device(cd),
				tgt-&gt;u.crypt.vk, crypt_get_cipher_spec(cd),
				crypt_get_iv_offset(cd), crypt_get_data_offset(cd),
				crypt_get_integrity(cd), crypt_get_integrity_tag_size(cd),
				crypt_get_sector_size(cd));
		if (r &lt; 0)
			goto out;
	} else if (tgt-&gt;type == DM_INTEGRITY) {
		r = crypt_get_integrity_info(cd, &amp;params);
		if (r)
			goto out;

		r = dm_integrity_target_set(cd, &amp;dmd.segment, 0, new_size,
				crypt_metadata_device(cd), crypt_data_device(cd),
				crypt_get_integrity_tag_size(cd), crypt_get_data_offset(cd),
				crypt_get_sector_size(cd), tgt-&gt;u.integrity.vk, tgt-&gt;u.integrity.journal_crypt_key,
				tgt-&gt;u.integrity.journal_integrity_key, &amp;params);
		if (r)
			goto out;
	}

	if (new_size == dmdq.size) {
		log_dbg(cd, "Device has already requested size %" PRIu64
			" sectors.", dmdq.size);
		r = 0;
	} else {
		if (isTCRYPT(cd-&gt;type))
			r = -ENOTSUP;
		else if (isLUKS2(cd-&gt;type))
			r = LUKS2_unmet_requirements(cd, &amp;cd-&gt;u.luks2.hdr, 0, 0);

		if (!r) {
			/* Skip flush and lockfs if extending device */
			if (new_size &gt; dmdq.size)
				dmflags = DM_SUSPEND_SKIP_LOCKFS | DM_SUSPEND_NOFLUSH;
			r = _reload_device(cd, name, &amp;dmd, dmflags);
		}

		if (r &amp;&amp; tgt-&gt;type == DM_INTEGRITY &amp;&amp;
		    !dm_flags(cd, tgt-&gt;type, &amp;supported_flags) &amp;&amp;
		    !(supported_flags &amp; DM_INTEGRITY_RESIZE_SUPPORTED))
			log_err(cd, _("Resize failed, the kernel doesn't support it."));
	}
out:
	dm_targets_free(cd, &amp;dmd);
	dm_targets_free(cd, &amp;dmdq);

	return r;
}

int crypt_set_uuid(struct crypt_device *cd, const char *uuid)
{
	const char *active_uuid;
	int r;

	log_dbg(cd, "%s device uuid.", uuid ? "Setting new" : "Refreshing");

	if ((r = onlyLUKS(cd)))
		return r;

	active_uuid = crypt_get_uuid(cd);

	if (uuid &amp;&amp; active_uuid &amp;&amp; !strncmp(uuid, active_uuid, UUID_STRING_L)) {
		log_dbg(cd, "UUID is the same as requested (%s) for device %s.",
			uuid, mdata_device_path(cd));
		return 0;
	}

	if (uuid)
		log_dbg(cd, "Requested new UUID change to %s for %s.", uuid, mdata_device_path(cd));
	else
		log_dbg(cd, "Requested new UUID refresh for %s.", mdata_device_path(cd));

	if (!crypt_confirm(cd, _("Do you really want to change UUID of device?")))
		return -EPERM;

	if (isLUKS1(cd-&gt;type))
		return LUKS_hdr_uuid_set(&amp;cd-&gt;u.luks1.hdr, uuid, cd);
	else
		return LUKS2_hdr_uuid(cd, &amp;cd-&gt;u.luks2.hdr, uuid);
}

int crypt_set_label(struct crypt_device *cd, const char *label, const char *subsystem)
{
	int r;

	log_dbg(cd, "Setting new labels.");

	if ((r = onlyLUKS2(cd)))
		return r;

	return LUKS2_hdr_labels(cd, &amp;cd-&gt;u.luks2.hdr, label, subsystem, 1);
}

const char *crypt_get_label(struct crypt_device *cd)
{
	if (_onlyLUKS2(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0))
		return NULL;

	return cd-&gt;u.luks2.hdr.label;
}

const char *crypt_get_subsystem(struct crypt_device *cd)
{
	if (_onlyLUKS2(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0))
		return NULL;

	return cd-&gt;u.luks2.hdr.subsystem;
}

int crypt_header_backup(struct crypt_device *cd,
			const char *requested_type,
			const char *backup_file)
{
	int r;

	if (requested_type &amp;&amp; !isLUKS(requested_type))
		return -EINVAL;

	if (!backup_file)
		return -EINVAL;

	/* Load with repair */
	r = _crypt_load_luks(cd, requested_type, false, false);
	if (r &lt; 0)
		return r;

	log_dbg(cd, "Requested header backup of device %s (%s) to "
		"file %s.", mdata_device_path(cd), requested_type ?: "any type", backup_file);

	if (isLUKS1(cd-&gt;type) &amp;&amp; (!requested_type || isLUKS1(requested_type)))
		r = LUKS_hdr_backup(backup_file, cd);
	else if (isLUKS2(cd-&gt;type) &amp;&amp; (!requested_type || isLUKS2(requested_type)))
		r = LUKS2_hdr_backup(cd, &amp;cd-&gt;u.luks2.hdr, backup_file);
	else
		r = -EINVAL;

	return r;
}

int crypt_header_restore(struct crypt_device *cd,
			 const char *requested_type,
			 const char *backup_file)
{
	struct luks_phdr hdr1;
	struct luks2_hdr hdr2;
	int r, version;

	if (requested_type &amp;&amp; !isLUKS(requested_type))
		return -EINVAL;

	if (!cd || (cd-&gt;type &amp;&amp; !isLUKS(cd-&gt;type)) || !backup_file)
		return -EINVAL;

	r = init_crypto(cd);
	if (r &lt; 0)
		return r;

	log_dbg(cd, "Requested header restore to device %s (%s) from "
		"file %s.", mdata_device_path(cd), requested_type ?: "any type", backup_file);

	version = LUKS2_hdr_version_unlocked(cd, backup_file);
	if (!version ||
	   (requested_type &amp;&amp; version == 1 &amp;&amp; !isLUKS1(requested_type)) ||
	   (requested_type &amp;&amp; version == 2 &amp;&amp; !isLUKS2(requested_type))) {
		log_err(cd, _("Header backup file does not contain compatible LUKS header."));
		return -EINVAL;
	}

	memset(&amp;hdr2, 0, sizeof(hdr2));

	if (!cd-&gt;type) {
		if (version == 1)
			r = LUKS_hdr_restore(backup_file, &amp;hdr1, cd);
		else
			r = LUKS2_hdr_restore(cd, &amp;hdr2, backup_file);

		crypt_safe_memzero(&amp;hdr1, sizeof(hdr1));
		crypt_safe_memzero(&amp;hdr2, sizeof(hdr2));
	} else if (isLUKS2(cd-&gt;type) &amp;&amp; (!requested_type || isLUKS2(requested_type))) {
		r = LUKS2_hdr_restore(cd, &amp;cd-&gt;u.luks2.hdr, backup_file);
		if (r)
			(void) _crypt_load_luks2(cd, 1, 0);
	} else if (isLUKS1(cd-&gt;type) &amp;&amp; (!requested_type || isLUKS1(requested_type)))
		r = LUKS_hdr_restore(backup_file, &amp;cd-&gt;u.luks1.hdr, cd);
	else
		r = -EINVAL;

	if (!r)
		r = _crypt_load_luks(cd, version == 1 ? CRYPT_LUKS1 : CRYPT_LUKS2, false, true);

	return r;
}

int crypt_header_is_detached(struct crypt_device *cd)
{
	int r;

	if (!cd || (cd-&gt;type &amp;&amp; !isLUKS(cd-&gt;type)))
		return -EINVAL;

	r = device_is_identical(crypt_data_device(cd), crypt_metadata_device(cd));
	if (r &lt; 0) {
		log_dbg(cd, "Failed to compare data and metadata devices path.");
		return r;
	}

	return r ? 0 : 1;
}

void crypt_free(struct crypt_device *cd)
{
	if (!cd)
		return;

	log_dbg(cd, "Releasing crypt device %s context.", mdata_device_path(cd) ?: "empty");

	dm_backend_exit(cd);
	crypt_free_volume_key(cd-&gt;volume_key);

	crypt_free_type(cd, NULL);

	device_free(cd, cd-&gt;device);
	device_free(cd, cd-&gt;metadata_device);

	free(CONST_CAST(void*)cd-&gt;pbkdf.type);
	free(CONST_CAST(void*)cd-&gt;pbkdf.hash);
	free(CONST_CAST(void*)cd-&gt;user_key_name1);
	free(CONST_CAST(void*)cd-&gt;user_key_name2);

	/* Some structures can contain keys (TCRYPT), wipe it */
	crypt_safe_memzero(cd, sizeof(*cd));
	free(cd);
}

static char *crypt_get_device_key_description(struct crypt_device *cd, const char *name)
{
	char *desc = NULL;
	struct crypt_dm_active_device dmd;
	struct dm_target *tgt = &amp;dmd.segment;

	if (dm_query_device(cd, name, DM_ACTIVE_CRYPT_KEY | DM_ACTIVE_CRYPT_KEYSIZE, &amp;dmd) &lt; 0)
		return NULL;

	if (single_segment(&amp;dmd) &amp;&amp; tgt-&gt;type == DM_CRYPT &amp;&amp;
	    (dmd.flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) &amp;&amp; tgt-&gt;u.crypt.vk-&gt;key_description)
		desc = strdup(tgt-&gt;u.crypt.vk-&gt;key_description);

	dm_targets_free(cd, &amp;dmd);

	return desc;
}

int crypt_suspend(struct crypt_device *cd,
		  const char *name)
{
	bool dm_opal_uuid;
	crypt_status_info ci;
	int r;
	struct crypt_dm_active_device dmd, dmdi = {};
	uint32_t opal_segment_number = 1, dmflags = DM_SUSPEND_WIPE_KEY;
	struct dm_target *tgt = &amp;dmd.segment;
	char *key_desc = NULL, *iname = NULL;
	struct crypt_lock_handle *opal_lh = NULL;

	if (!cd || !name)
		return -EINVAL;

	log_dbg(cd, "Suspending volume %s.", name);

	if (cd-&gt;type &amp;&amp; ((r = onlyLUKS(cd)) &lt; 0))
		return r;

	ci = crypt_status(cd, name);
	if (ci &lt; CRYPT_ACTIVE) {
		log_err(cd, _("Volume %s is not active."), name);
		return -EINVAL;
	}

	r = dm_query_device(cd, name, DM_ACTIVE_UUID, &amp;dmd);
	if (r &lt; 0)
		return r;

	log_dbg(cd, "Checking if active device %s has UUID type LUKS.", name);

	r = crypt_uuid_type_cmp(dmd.uuid, CRYPT_LUKS2);
	if (r &lt; 0)
		r = crypt_uuid_type_cmp(dmd.uuid, CRYPT_LUKS1);

	if (r &lt; 0) {
		log_err(cd, _("This operation is supported only for LUKS device."));
		goto out;
	}

	r = -EINVAL;

	if (isLUKS2(cd-&gt;type) &amp;&amp; crypt_uuid_type_cmp(dmd.uuid, CRYPT_LUKS2)) {
		log_dbg(cd, "LUKS device header type: %s mismatches DM device type.", cd-&gt;type);
		goto out;
	}

	if (isLUKS1(cd-&gt;type) &amp;&amp; crypt_uuid_type_cmp(dmd.uuid, CRYPT_LUKS1)) {
		log_dbg(cd, "LUKS device header type: %s mismatches DM device type.", cd-&gt;type);
		goto out;
	}

	/* check if active device has LUKS2-OPAL dm uuid prefix */
	dm_opal_uuid = !crypt_uuid_type_cmp(dmd.uuid, CRYPT_LUKS2_HW_OPAL);

	if (!dm_opal_uuid &amp;&amp; isLUKS2(cd-&gt;type) &amp;&amp;
	    LUKS2_segment_is_hw_opal(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT))
		goto out;

	if (cd-&gt;type &amp;&amp; (r = crypt_uuid_cmp(dmd.uuid, LUKS_UUID(cd))) &lt; 0) {
		log_dbg(cd, "LUKS device header uuid: %s mismatches DM returned uuid %s",
			LUKS_UUID(cd), dmd.uuid);
		goto out;
	}

	/* check UUID of integrity device underneath crypt device */
	if (crypt_get_integrity_tag_size(cd)) {
		r = dm_get_iname(name, &amp;iname, false);
		if (r)
			goto out;

		r = dm_query_device(cd, iname, DM_ACTIVE_UUID, &amp;dmdi);
		if (r &lt; 0)
			goto out;

		r = crypt_uuid_integrity_cmp(dmd.uuid, dmdi.uuid);
		if (r &lt; 0) {
			log_dbg(cd, "Integrity device uuid: %s mismatches crypt device uuid %s", dmdi.uuid, dmd.uuid);
			goto out;
		}
	}

	r = dm_status_suspended(cd, name);
	if (r &lt; 0)
		goto out;

	if (r) {
		log_err(cd, _("Volume %s is already suspended."), name);
		r = -EINVAL;
		goto out;
	}

	key_desc = crypt_get_device_key_description(cd, name);

	if (dm_opal_uuid &amp;&amp; crypt_data_device(cd)) {
		if (isLUKS2(cd-&gt;type)) {
			r = LUKS2_get_opal_segment_number(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, &amp;opal_segment_number);
			if (r &lt; 0)
				goto out;
		} else {
			 /* Guess OPAL range number for LUKS2-OPAL device with missing header */
			r = crypt_dev_get_partition_number(device_path(crypt_data_device(cd)));
			if (r &gt; 0)
				opal_segment_number = r;
		}
	}

	/* we can't simply wipe wrapped keys. HW OPAL only encryption does not use dm-crypt target */
	if (crypt_cipher_wrapped_key(crypt_get_cipher(cd), crypt_get_cipher_mode(cd)) ||
	    (dm_opal_uuid &amp;&amp; tgt-&gt;type == DM_LINEAR))
		dmflags &amp;= ~DM_SUSPEND_WIPE_KEY;

	r = dm_suspend_device(cd, name, dmflags);
	if (r) {
		if (r == -ENOTSUP)
			log_err(cd, _("Suspend is not supported for device %s."), name);
		else
			log_err(cd, _("Error during suspending device %s."), name);
		goto out;
	}

	/* Suspend integrity device underneath; keep crypt suspended if it fails */
	if (crypt_get_integrity_tag_size(cd)) {
		r = dm_suspend_device(cd, iname, 0);
		if (r)
			log_err(cd, _("Error during suspending device %s."), iname);
	}

	crypt_drop_keyring_key_by_description(cd, key_desc, cd-&gt;keyring_key_type);

	if (dm_opal_uuid &amp;&amp; crypt_data_device(cd)) {
		r = opal_exclusive_lock(cd, crypt_data_device(cd), &amp;opal_lh);
		if (r &lt; 0) {
			log_err(cd, _("Failed to acquire OPAL lock on device %s."), device_path(crypt_data_device(cd)));
			goto out;
		}
	}

	if (dm_opal_uuid &amp;&amp; (!crypt_data_device(cd) || opal_lock(cd, crypt_data_device(cd), opal_segment_number)))
		log_err(cd, _("Device %s was suspended but hardware OPAL device cannot be locked."), name);
out:
	opal_exclusive_unlock(cd, opal_lh);
	free(key_desc);
	free(iname);
	dm_targets_free(cd, &amp;dmd);
	dm_targets_free(cd, &amp;dmdi);
	free(CONST_CAST(void*)dmd.uuid);
	free(CONST_CAST(void*)dmdi.uuid);
	return r;
}

static int resume_luks1_by_volume_key(struct crypt_device *cd,
		struct volume_key *vk,
		const char *name)
{
	int r;
	struct volume_key *zerokey = NULL;

	assert(vk &amp;&amp; crypt_volume_key_get_id(vk) == 0);
	assert(name);

	if (crypt_is_cipher_null(crypt_get_cipher_spec(cd))) {
		zerokey = crypt_alloc_volume_key(0, NULL);
		if (!zerokey)
			return -ENOMEM;
		vk = zerokey;
	}

	r = dm_resume_and_reinstate_key(cd, name, vk);

	if (r == -ENOTSUP)
		log_err(cd, _("Resume is not supported for device %s."), name);
	else if (r)
		log_err(cd, _("Error during resuming device %s."), name);

	crypt_free_volume_key(zerokey);

	return r;
}

static void crypt_unlink_key_from_custom_keyring(struct crypt_device *cd, key_serial_t kid)
{
	assert(cd);
	assert(cd-&gt;keyring_to_link_vk);

	log_dbg(cd, "Unlinking volume key (id: %" PRIi32 ") from kernel keyring (id: %" PRIi32 ").",
		kid, cd-&gt;keyring_to_link_vk);

	if (!keyring_unlink_key_from_keyring(kid, cd-&gt;keyring_to_link_vk))
		return;

	log_dbg(cd, "keyring_unlink_key_from_keyring failed with errno %d.", errno);
	log_err(cd, _("Failed to unlink volume key from user specified keyring."));
}

static key_serial_t crypt_single_volume_key_load_in_user_keyring(struct crypt_device *cd, struct volume_key *vk, const char *user_key_name)
{
	key_serial_t kid;
	const char *type_name;

	assert(cd);
	assert(cd-&gt;link_vk_to_keyring);

	if (!vk || !(type_name = key_type_name(cd-&gt;keyring_key_type)))
		return -EINVAL;

	log_dbg(cd, "Linking volume key (type %s, name %s) to the specified keyring",
		    type_name, user_key_name);

	kid = keyring_add_key_to_custom_keyring(cd-&gt;keyring_key_type, user_key_name, vk-&gt;key, vk-&gt;keylength, cd-&gt;keyring_to_link_vk);
	if (kid &lt;= 0) {
		log_dbg(cd, "The keyring_link_key_to_keyring function failed (error %d).", errno);
	}

	return kid;
}

static int crypt_volume_key_load_in_user_keyring(struct crypt_device *cd, struct volume_key *vk, key_serial_t *kid1_out, key_serial_t *kid2_out)
{
	key_serial_t kid1, kid2 = 0;

	assert(cd);
	assert(cd-&gt;link_vk_to_keyring);
	assert(cd-&gt;user_key_name1);

	if (!vk || !key_type_name(cd-&gt;keyring_key_type))
		return -EINVAL;

	kid1 = crypt_single_volume_key_load_in_user_keyring(cd, vk, cd-&gt;user_key_name1);
	if (kid1 &lt;= 0)
		return -EINVAL;

	vk = vk-&gt;next;
	if (vk) {
		assert(cd-&gt;user_key_name2);
		kid2 = crypt_single_volume_key_load_in_user_keyring(cd, vk, cd-&gt;user_key_name2);
		if (kid2 &lt;= 0) {
			crypt_unlink_key_from_custom_keyring(cd, kid1);
			return -EINVAL;
		}
	}

	*kid2_out = kid2;
	*kid1_out = kid1;
	return 0;
}

static int resume_luks2_by_volume_key(struct crypt_device *cd,
		int digest,
		struct volume_key *vk,
		const char *name)
{
	bool use_keyring;
	int r, enc_type;
	uint32_t opal_segment_number;
	struct volume_key *p_crypt = vk, *p_opal = NULL, *zerokey = NULL, *crypt_key = NULL, *opal_key = NULL;
	char *iname = NULL;
	struct crypt_lock_handle *opal_lh = NULL;
	key_serial_t kid1 = 0, kid2 = 0;

	assert(digest &gt;= 0);
	assert(vk &amp;&amp; crypt_volume_key_get_id(vk) == digest);
	assert(name);

	enc_type = crypt_get_hw_encryption_type(cd);
	if (enc_type &lt; 0)
		return enc_type;

	use_keyring = crypt_use_keyring_for_vk(cd);

	if (enc_type == CRYPT_OPAL_HW_ONLY || enc_type == CRYPT_SW_AND_OPAL_HW) {
		r = LUKS2_get_opal_segment_number(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT,
						  &amp;opal_segment_number);
		if (r &lt; 0)
			return r;

		r = LUKS2_split_crypt_and_opal_keys(cd, &amp;cd-&gt;u.luks2.hdr,
						    vk, &amp;crypt_key,
						    &amp;opal_key);
		if (r &lt; 0)
			return r;

		p_crypt = crypt_key;
		p_opal = opal_key ?: vk;
	}

	if (enc_type != CRYPT_OPAL_HW_ONLY &amp;&amp; crypt_is_cipher_null(crypt_get_cipher_spec(cd))) {
		zerokey = crypt_alloc_volume_key(0, NULL);
		if (!zerokey) {
			r = -ENOMEM;
			goto out;
		}
		p_crypt = zerokey;
		use_keyring = false;
	}

	if (use_keyring) {
		if (p_crypt) {
			r = LUKS2_volume_key_load_in_keyring_by_digest(cd, p_crypt, digest);
			if (r &lt; 0)
				goto out;
		}

		/* upload volume key in custom keyring if requested */
		if (cd-&gt;link_vk_to_keyring) {
			r = crypt_volume_key_load_in_user_keyring(cd, vk, &amp;kid1, &amp;kid2);
			if (r &lt; 0) {
				log_err(cd, _("Failed to link volume key in user defined keyring."));
				goto out;
			}
		}
	}

	if (p_opal) {
		r = opal_exclusive_lock(cd, crypt_data_device(cd), &amp;opal_lh);
		if (r &lt; 0) {
			log_err(cd, _("Failed to acquire OPAL lock on device %s."), device_path(crypt_data_device(cd)));
			goto out;
		}

		r = opal_unlock(cd, crypt_data_device(cd), opal_segment_number, p_opal);
		if (r &lt; 0) {
			p_opal = NULL; /* do not lock on error path */
			goto out;
		}
	}

	if (crypt_get_integrity_tag_size(cd)) {
		r = dm_get_iname(name, &amp;iname, false);
		if (r)
			goto out;

		r = dm_resume_device(cd, iname, 0);
		if (r)
			log_err(cd, _("Error during resuming device %s."), iname);
	}

	if (enc_type == CRYPT_OPAL_HW_ONLY)
		r = dm_resume_device(cd, name, 0);
	else
		r = dm_resume_and_reinstate_key(cd, name, p_crypt);

	if (r == -ENOTSUP)
		log_err(cd, _("Resume is not supported for device %s."), name);
	else if (r)
		log_err(cd, _("Error during resuming device %s."), name);

out:
	if (r &lt; 0) {
		crypt_drop_keyring_key(cd, p_crypt);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid1)
			crypt_unlink_key_from_custom_keyring(cd, kid1);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid2)
			crypt_unlink_key_from_custom_keyring(cd, kid2);
	}

	if (r &lt; 0 &amp;&amp; p_opal)
		opal_lock(cd, crypt_data_device(cd), opal_segment_number);

	opal_exclusive_unlock(cd, opal_lh);
	crypt_free_volume_key(zerokey);
	crypt_free_volume_key(opal_key);
	crypt_free_volume_key(crypt_key);
	free(iname);

	return r;
}

/* key must be properly verified */
static int resume_by_volume_key(struct crypt_device *cd,
		struct volume_key *vk,
		const char *name)
{
	assert(cd);

	if (isLUKS2(cd-&gt;type))
		return resume_luks2_by_volume_key(cd,
				LUKS2_digest_by_segment(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT),
				vk, name);

	if (isLUKS1(cd-&gt;type))
		return resume_luks1_by_volume_key(cd, vk, name);

	return -EINVAL;
}

int crypt_resume_by_keyslot_context(struct crypt_device *cd,
			       const char *name,
			       int keyslot,
			       struct crypt_keyslot_context *kc)
{
	int r;
	struct volume_key *vk = NULL;
	int unlocked_keyslot = -EINVAL;

	if (!name)
		return -EINVAL;

	log_dbg(cd, "Resuming volume %s [keyslot %d] using %s.", name, keyslot, keyslot_context_type_string(kc));

	if ((r = onlyLUKS(cd)))
		return r;

	r = dm_status_suspended(cd, name);
	if (r &lt; 0)
		return r;

	if (!r) {
		log_err(cd, _("Volume %s is not suspended."), name);
		return -EINVAL;
	}

	if (isLUKS1(cd-&gt;type) &amp;&amp; kc-&gt;get_luks1_volume_key)
		r = kc-&gt;get_luks1_volume_key(cd, kc, keyslot, &amp;vk);
	else if (isLUKS2(cd-&gt;type) &amp;&amp; kc-&gt;get_luks2_volume_key)
		r = kc-&gt;get_luks2_volume_key(cd, kc, keyslot, &amp;vk);
	else
		r = -EINVAL;
	if (r &lt; 0)
		goto out;
	unlocked_keyslot = r;

	if (isLUKS1(cd-&gt;type)) {
		r = LUKS_verify_volume_key(&amp;cd-&gt;u.luks1.hdr, vk);
		crypt_volume_key_set_id(vk, 0);
	} else if (isLUKS2(cd-&gt;type)) {
		r = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, vk);
		crypt_volume_key_set_id(vk, r);
	} else
		r = -EINVAL;
	if (r &lt; 0)
		goto out;

	r = resume_by_volume_key(cd, vk, name);

	crypt_free_volume_key(vk);
	return r &lt; 0 ? r : unlocked_keyslot;
out:
	crypt_free_volume_key(vk);
	return r;
}

int crypt_resume_by_passphrase(struct crypt_device *cd,
			       const char *name,
			       int keyslot,
			       const char *passphrase,
			       size_t passphrase_size)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;kc, passphrase, passphrase_size);
	r = crypt_resume_by_keyslot_context(cd, name, keyslot, &amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_resume_by_keyfile_device_offset(struct crypt_device *cd,
					  const char *name,
					  int keyslot,
					  const char *keyfile,
					  size_t keyfile_size,
					  uint64_t keyfile_offset)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_keyfile_init_internal(&amp;kc, keyfile, keyfile_size, keyfile_offset);
	r = crypt_resume_by_keyslot_context(cd, name, keyslot, &amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_resume_by_keyfile(struct crypt_device *cd,
			    const char *name,
			    int keyslot,
			    const char *keyfile,
			    size_t keyfile_size)
{
	return crypt_resume_by_keyfile_device_offset(cd, name, keyslot,
					      keyfile, keyfile_size, 0);
}

int crypt_resume_by_keyfile_offset(struct crypt_device *cd,
				   const char *name,
				   int keyslot,
				   const char *keyfile,
				   size_t keyfile_size,
				   size_t keyfile_offset)
{
	return crypt_resume_by_keyfile_device_offset(cd, name, keyslot,
				      keyfile, keyfile_size, keyfile_offset);
}

int crypt_resume_by_volume_key(struct crypt_device *cd,
	const char *name,
	const char *volume_key,
	size_t volume_key_size)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
	r = crypt_resume_by_keyslot_context(cd, name, CRYPT_ANY_SLOT /* unused */, &amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	if (r == -EPERM || r == -ENOENT)
		log_err(cd, _("Volume key does not match the volume."));

	return r;
}

int crypt_resume_by_token_pin(struct crypt_device *cd, const char *name,
	const char *type, int token, const char *pin, size_t pin_size,
	void *usrptr)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_token_init_internal(&amp;kc, token, type, pin, pin_size, usrptr);
	r = crypt_resume_by_keyslot_context(cd, name, CRYPT_ANY_SLOT, &amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

/*
 * Keyslot manipulation
 */
int crypt_keyslot_add_by_passphrase(struct crypt_device *cd,
	int keyslot, // -1 any
	const char *passphrase,
	size_t passphrase_size,
	const char *new_passphrase,
	size_t new_passphrase_size)
{
	int r;
	struct crypt_keyslot_context kc, new_kc;

	if (!passphrase || !new_passphrase)
		return -EINVAL;

	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;kc, passphrase, passphrase_size);
	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;new_kc, new_passphrase, new_passphrase_size);

	r = crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, &amp;kc, keyslot, &amp;new_kc, 0);

	crypt_keyslot_context_destroy_internal(&amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;new_kc);

	return r;
}

int crypt_keyslot_change_by_passphrase(struct crypt_device *cd,
	int keyslot_old,
	int keyslot_new,
	const char *passphrase,
	size_t passphrase_size,
	const char *new_passphrase,
	size_t new_passphrase_size)
{
	bool keyslot_swap = false;
	int digest = -1, r;
	struct luks2_keyslot_params params;
	struct volume_key *vk = NULL;

	if (!passphrase || !new_passphrase)
		return -EINVAL;

	log_dbg(cd, "Changing passphrase from old keyslot %d to new %d.",
		keyslot_old, keyslot_new);

	if ((r = onlyLUKS(cd)))
		return r;

	if (isLUKS1(cd-&gt;type))
		r = LUKS_open_key_with_hdr(keyslot_old, passphrase, passphrase_size,
					   &amp;cd-&gt;u.luks1.hdr, &amp;vk, cd);
	else if (isLUKS2(cd-&gt;type)) {
		r = LUKS2_keyslot_open(cd, keyslot_old, CRYPT_ANY_SEGMENT, passphrase, passphrase_size, &amp;vk);
		/* will fail for keyslots w/o digest. fix if supported in a future */
		if (r &gt;= 0) {
			digest = LUKS2_digest_by_keyslot(&amp;cd-&gt;u.luks2.hdr, r);
			if (digest &lt; 0)
				r = -EINVAL;
		}
	} else
		r = -EINVAL;
	if (r &lt; 0)
		goto out;

	if (keyslot_old != CRYPT_ANY_SLOT &amp;&amp; keyslot_old != r) {
		log_dbg(cd, "Keyslot mismatch.");
		goto out;
	}
	keyslot_old = r;

	if (isLUKS2(cd-&gt;type)) {
		/* If there is a free keyslot (both id and binary area) avoid in-place keyslot area overwrite  */
		if (keyslot_new == CRYPT_ANY_SLOT || keyslot_new == keyslot_old) {
			keyslot_new = LUKS2_keyslot_find_empty(cd, &amp;cd-&gt;u.luks2.hdr, vk-&gt;keylength);
			if (keyslot_new &lt; 0)
				keyslot_new = keyslot_old;
			else
				keyslot_swap = true;
		}
	} else if (isLUKS1(cd-&gt;type)) {
		if (keyslot_new == CRYPT_ANY_SLOT) {
			keyslot_new = LUKS_keyslot_find_empty(&amp;cd-&gt;u.luks1.hdr);
			if (keyslot_new &lt; 0)
				keyslot_new = keyslot_old;
		}
	}
	log_dbg(cd, "Key change, old slot %d, new slot %d.", keyslot_old, keyslot_new);

	if (isLUKS1(cd-&gt;type)) {
		if (keyslot_old == keyslot_new) {
			log_dbg(cd, "Key slot %d is going to be overwritten.", keyslot_old);
			(void)crypt_keyslot_destroy(cd, keyslot_old);
		}
		r = LUKS_set_key(keyslot_new, new_passphrase, new_passphrase_size,
				 &amp;cd-&gt;u.luks1.hdr, vk, cd);
	} else if (isLUKS2(cd-&gt;type)) {
		r = LUKS2_keyslot_params_default(cd, &amp;cd-&gt;u.luks2.hdr, &amp;params);
		if (r)
			goto out;

		if (keyslot_old != keyslot_new) {
			r = LUKS2_digest_assign(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_new, digest, 1, 0);
			if (r &lt; 0)
				goto out;
			r = LUKS2_token_assignment_copy(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_old, keyslot_new, 0);
			if (r &lt; 0)
				goto out;
		} else
			log_dbg(cd, "Key slot %d is going to be overwritten.", keyslot_old);

		r = LUKS2_keyslot_store(cd,  &amp;cd-&gt;u.luks2.hdr,
					keyslot_new, new_passphrase,
					new_passphrase_size, vk, &amp;params);
		if (r &lt; 0)
			goto out;

		/* Swap old &amp; new so the final keyslot number remains */
		if (keyslot_swap &amp;&amp; keyslot_old != keyslot_new) {
			r = LUKS2_keyslot_swap(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_old, keyslot_new);
			if (r &lt; 0)
				goto out;

			/* Swap slot id */
			r = keyslot_old;
			keyslot_old = keyslot_new;
			keyslot_new = r;
		}
	} else
		r = -EINVAL;

	if (r &gt;= 0 &amp;&amp; keyslot_old != keyslot_new)
		r = crypt_keyslot_destroy(cd, keyslot_old);

	if (r &lt; 0)
		log_err(cd, _("Failed to swap new key slot."));
out:
	crypt_free_volume_key(vk);
	if (r &lt; 0) {
		_luks2_rollback(cd);
		return r;
	}
	return keyslot_new;
}

int crypt_keyslot_add_by_keyfile_device_offset(struct crypt_device *cd,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	uint64_t keyfile_offset,
	const char *new_keyfile,
	size_t new_keyfile_size,
	uint64_t new_keyfile_offset)
{
	int r;
	struct crypt_keyslot_context kc, new_kc;

	if (!keyfile || !new_keyfile)
		return -EINVAL;

	crypt_keyslot_unlock_by_keyfile_init_internal(&amp;kc, keyfile, keyfile_size, keyfile_offset);
	crypt_keyslot_unlock_by_keyfile_init_internal(&amp;new_kc, new_keyfile, new_keyfile_size, new_keyfile_offset);

	r = crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, &amp;kc, keyslot, &amp;new_kc, 0);

	crypt_keyslot_context_destroy_internal(&amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;new_kc);

	return r;
}

int crypt_keyslot_add_by_keyfile(struct crypt_device *cd,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	const char *new_keyfile,
	size_t new_keyfile_size)
{
	return crypt_keyslot_add_by_keyfile_device_offset(cd, keyslot,
				keyfile, keyfile_size, 0,
				new_keyfile, new_keyfile_size, 0);
}

int crypt_keyslot_add_by_keyfile_offset(struct crypt_device *cd,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	size_t keyfile_offset,
	const char *new_keyfile,
	size_t new_keyfile_size,
	size_t new_keyfile_offset)
{
	return crypt_keyslot_add_by_keyfile_device_offset(cd, keyslot,
				keyfile, keyfile_size, keyfile_offset,
				new_keyfile, new_keyfile_size, new_keyfile_offset);
}

int crypt_keyslot_add_by_volume_key(struct crypt_device *cd,
	int keyslot,
	const char *volume_key,
	size_t volume_key_size,
	const char *passphrase,
	size_t passphrase_size)
{
	int r;
	struct crypt_keyslot_context kc, new_kc;

	if (!passphrase)
		return -EINVAL;

	crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;new_kc, passphrase, passphrase_size);

	r = crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, &amp;kc, keyslot, &amp;new_kc, 0);

	crypt_keyslot_context_destroy_internal(&amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;new_kc);

	return r;
}

int crypt_keyslot_destroy(struct crypt_device *cd, int keyslot)
{
	crypt_keyslot_info ki;
	int r;

	log_dbg(cd, "Destroying keyslot %d.", keyslot);

	if ((r = onlyLUKSunrestricted(cd)))
		return r;

	ki = crypt_keyslot_status(cd, keyslot);
	if (ki == CRYPT_SLOT_INVALID) {
		log_err(cd, _("Key slot %d is invalid."), keyslot);
		return -EINVAL;
	}

	if (isLUKS1(cd-&gt;type)) {
		if (ki == CRYPT_SLOT_INACTIVE) {
			log_err(cd, _("Keyslot %d is not active."), keyslot);
			return -EINVAL;
		}
		return LUKS_del_key(keyslot, &amp;cd-&gt;u.luks1.hdr, cd);
	}

	return LUKS2_keyslot_wipe(cd, &amp;cd-&gt;u.luks2.hdr, keyslot);
}

static int _check_header_data_overlap(struct crypt_device *cd, const char *name)
{
	if (!name || !isLUKS(cd-&gt;type))
		return 0;

	if (device_is_identical(crypt_data_device(cd), crypt_metadata_device(cd)) &lt;= 0)
		return 0;

	/* FIXME: check real header size */
	if (crypt_get_data_offset(cd) == 0) {
		log_err(cd, _("Device header overlaps with data area."));
		return -EINVAL;
	}

	return 0;
}

static int check_devices(struct crypt_device *cd, const char *name, const char *iname, uint32_t *flags)
{
	int r;

	if (!flags || !name)
		return -EINVAL;

	if (iname) {
		r = dm_status_device(cd, iname);
		if (r &gt;= 0 &amp;&amp; !(*flags &amp; CRYPT_ACTIVATE_REFRESH))
			return -EBUSY;
		if (r &lt; 0 &amp;&amp; r != -ENODEV)
			return r;
		if (r == -ENODEV)
			*flags &amp;= ~CRYPT_ACTIVATE_REFRESH;
	}

	r = dm_status_device(cd, name);
	if (r &gt;= 0 &amp;&amp; !(*flags &amp; CRYPT_ACTIVATE_REFRESH))
		return -EBUSY;
	if (r &lt; 0 &amp;&amp; r != -ENODEV)
		return r;
	if (r == -ENODEV)
		*flags &amp;= ~CRYPT_ACTIVATE_REFRESH;

	return 0;
}

static int _create_device_with_integrity(struct crypt_device *cd,
	const char *type, const char *name, const char *iname,
	const char *ipath, struct crypt_dm_active_device *dmd,
	struct crypt_dm_active_device *dmdi)
{
	int r;
	enum devcheck device_check;
	struct dm_target *tgt;
	struct device *device = NULL;

	if (!single_segment(dmd))
		return -EINVAL;

	tgt = &amp;dmd-&gt;segment;
	if (tgt-&gt;type != DM_CRYPT)
		return -EINVAL;

	device_check = dmd-&gt;flags &amp; CRYPT_ACTIVATE_SHARED ? DEV_OK : DEV_EXCL;

	r = INTEGRITY_activate_dmd_device(cd, iname, CRYPT_INTEGRITY, dmdi, 0);
	if (r)
		return r;

	r = device_alloc(cd, &amp;device, ipath);
	if (r &lt; 0)
		goto out;
	tgt-&gt;data_device = device;

	r = device_block_adjust(cd, tgt-&gt;data_device, device_check,
				tgt-&gt;u.crypt.offset, &amp;dmd-&gt;size, &amp;dmd-&gt;flags);

	if (!r)
		r = dm_create_device(cd, name, type, dmd);
out:
	if (r &lt; 0)
		dm_remove_device(cd, iname, 0);

	device_free(cd, device);
	return r;
}

static int kernel_keyring_support(void)
{
	static unsigned _checked = 0;

	if (!_checked) {
		_kernel_keyring_supported = keyring_check();
		_checked = 1;
	}

	return _kernel_keyring_supported;
}

static int dmcrypt_keyring_bug(void)
{
	uint64_t kversion;

	if (kernel_version(&amp;kversion))
		return 1;
	return kversion &lt; compact_version(4,15,0,0);
}

int create_or_reload_device(struct crypt_device *cd, const char *name,
		     const char *type, struct crypt_dm_active_device *dmd)
{
	int r;
	enum devcheck device_check;
	struct dm_target *tgt;
	uint64_t offset;
	uint32_t dmflags = 0;

	if (!type || !name || !single_segment(dmd))
		return -EINVAL;

	tgt = &amp;dmd-&gt;segment;
	if (tgt-&gt;type != DM_CRYPT &amp;&amp; tgt-&gt;type != DM_INTEGRITY &amp;&amp; tgt-&gt;type != DM_LINEAR)
		return -EINVAL;

	/* drop CRYPT_ACTIVATE_REFRESH flag if any device is inactive */
	r = check_devices(cd, name, NULL, &amp;dmd-&gt;flags);
	if (r)
		return r;

	if (dmd-&gt;flags &amp; CRYPT_ACTIVATE_REFRESH) {
		/* Refresh and recalculate means increasing dm-integrity device */
		if (tgt-&gt;type == DM_INTEGRITY &amp;&amp; dmd-&gt;flags &amp; CRYPT_ACTIVATE_RECALCULATE)
			dmflags = DM_SUSPEND_SKIP_LOCKFS | DM_SUSPEND_NOFLUSH;;
		r = _reload_device(cd, name, dmd, dmflags);
	} else {
		if (tgt-&gt;type == DM_CRYPT || tgt-&gt;type == DM_LINEAR) {
			device_check = dmd-&gt;flags &amp; CRYPT_ACTIVATE_SHARED ? DEV_OK : DEV_EXCL;
			offset = tgt-&gt;type == DM_CRYPT ? tgt-&gt;u.crypt.offset : tgt-&gt;u.linear.offset;

			r = device_block_adjust(cd, tgt-&gt;data_device, device_check,
					offset, &amp;dmd-&gt;size, &amp;dmd-&gt;flags);
			if (!r) {
				tgt-&gt;size = dmd-&gt;size;
				r = dm_create_device(cd, name, type, dmd);
			}
		} else if (tgt-&gt;type == DM_INTEGRITY) {
			r = device_block_adjust(cd, tgt-&gt;data_device, DEV_EXCL,
					tgt-&gt;u.integrity.offset, NULL, &amp;dmd-&gt;flags);
			if (r)
				return r;

			if (tgt-&gt;u.integrity.meta_device) {
				r = device_block_adjust(cd, tgt-&gt;u.integrity.meta_device, DEV_EXCL, 0, NULL, NULL);
				if (r)
					return r;
			}

			r = dm_create_device(cd, name, type, dmd);
		}
	}

	return r;
}

int create_or_reload_device_with_integrity(struct crypt_device *cd, const char *name,
		     const char *type, struct crypt_dm_active_device *dmd,
		     struct crypt_dm_active_device *dmdi)
{
	int r;
	char *iname = NULL, *ipath = NULL;

	if (!type || !name || !dmd || !dmdi)
		return -EINVAL;

	r = dm_get_iname(name, &amp;iname, false);
	if (r)
		goto out;

	r = dm_get_iname(name, &amp;ipath, true);
	if (r)
		goto out;

	/* drop CRYPT_ACTIVATE_REFRESH flag if any device is inactive */
	r = check_devices(cd, name, iname, &amp;dmd-&gt;flags);
	if (r)
		goto out;

	if (dmd-&gt;flags &amp; CRYPT_ACTIVATE_REFRESH)
		r = _reload_device_with_integrity(cd, name, iname, ipath, dmd, dmdi);
	else
		r = _create_device_with_integrity(cd, type, name, iname, ipath, dmd, dmdi);
out:
	free(ipath);
	free(iname);

	return r;
}

static int _open_and_activate(struct crypt_device *cd,
	int keyslot,
	const char *name,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	bool use_keyring;
	int r;
	struct volume_key *p_crypt = NULL, *p_opal = NULL, *crypt_key = NULL, *opal_key = NULL, *vk = NULL;
	key_serial_t kid1 = 0, kid2 = 0;

	r = LUKS2_keyslot_open(cd, keyslot,
			       (flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY) ?
			       CRYPT_ANY_SEGMENT : CRYPT_DEFAULT_SEGMENT,
			       passphrase, passphrase_size, &amp;vk);
	if (r &lt; 0)
		return r;
	keyslot = r;

	/* split the key only if we do activation */
	if (name &amp;&amp; LUKS2_segment_is_hw_opal(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT)) {
		r = LUKS2_split_crypt_and_opal_keys(cd, &amp;cd-&gt;u.luks2.hdr,
						    vk, &amp;crypt_key,
						    &amp;opal_key);
		if (r &lt; 0)
			goto out;

		/* copy volume key digest id in crypt subkey */
		crypt_volume_key_set_id(crypt_key, crypt_volume_key_get_id(vk));

		p_crypt = crypt_key;
		p_opal = opal_key ?: vk;
	} else
		p_crypt = vk;

	if (!crypt_use_keyring_for_vk(cd))
		use_keyring = false;
	else
		use_keyring = ((name &amp;&amp; !crypt_is_cipher_null(crypt_get_cipher(cd))) ||
			       (flags &amp; CRYPT_ACTIVATE_KEYRING_KEY));

	if (use_keyring) {
		/* upload dm-crypt part of volume key in thread keyring if requested */
		if (p_crypt) {
			r = LUKS2_volume_key_load_in_keyring_by_digest(cd, p_crypt,
								       crypt_volume_key_get_id(p_crypt));
			if (r &lt; 0)
				goto out;
			flags |= CRYPT_ACTIVATE_KEYRING_KEY;
		}

		/* upload the volume key in custom user keyring if requested */
		if (cd-&gt;link_vk_to_keyring) {
			r = crypt_volume_key_load_in_user_keyring(cd, vk, &amp;kid1, &amp;kid2);
			if (r &lt; 0) {
				log_err(cd, _("Failed to link volume key in user defined keyring."));
				goto out;
			}
		}
	}

	if (name)
		r = LUKS2_activate(cd, name, p_crypt, p_opal, flags);
out:
	if (r &lt; 0) {
		crypt_drop_keyring_key(cd, p_crypt);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid1)
			crypt_unlink_key_from_custom_keyring(cd, kid1);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid2)
			crypt_unlink_key_from_custom_keyring(cd, kid2);
	}
	crypt_free_volume_key(vk);
	crypt_free_volume_key(crypt_key);
	crypt_free_volume_key(opal_key);

	return r &lt; 0 ? r : keyslot;
}

#if USE_LUKS2_REENCRYPTION
static int load_all_keys(struct crypt_device *cd, struct volume_key *vks)
{
	int r;
	struct volume_key *vk = vks;

	while (vk) {
		r = LUKS2_volume_key_load_in_keyring_by_digest(cd, vk, crypt_volume_key_get_id(vk));
		if (r &lt; 0)
			return r;
		vk = crypt_volume_key_next(vk);
	}

	return 0;
}

static int _open_all_keys(struct crypt_device *cd,
	struct luks2_hdr *hdr,
	int keyslot,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags,
	struct volume_key **vks)
{
	int r, segment;
	struct volume_key *_vks = NULL;
	crypt_reencrypt_info ri = LUKS2_reencrypt_status(hdr);

	segment = (flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY) ? CRYPT_ANY_SEGMENT : CRYPT_DEFAULT_SEGMENT;

	switch (ri) {
	case CRYPT_REENCRYPT_NONE:
		r = LUKS2_keyslot_open(cd, keyslot, segment, passphrase, passphrase_size, &amp;_vks);
		break;
	case CRYPT_REENCRYPT_CLEAN:
	case CRYPT_REENCRYPT_CRASH:
		if (segment == CRYPT_ANY_SEGMENT)
			r = LUKS2_keyslot_open(cd, keyslot, segment, passphrase,
					       passphrase_size, &amp;_vks);
		else
			r = LUKS2_keyslot_open_all_segments(cd, keyslot,
					keyslot, passphrase, passphrase_size,
					&amp;_vks);
		break;
	default:
		r = -EINVAL;
	}

	if (keyslot == CRYPT_ANY_SLOT)
		keyslot = r;

	if (r &gt;= 0 &amp;&amp; (flags &amp; CRYPT_ACTIVATE_KEYRING_KEY))
		r = load_all_keys(cd, _vks);

	if (r &gt;= 0 &amp;&amp; vks)
		MOVE_REF(*vks, _vks);

	if (r &lt; 0)
		crypt_drop_keyring_key(cd, _vks);
	crypt_free_volume_key(_vks);

	return r &lt; 0 ? r : keyslot;
}

static int _open_and_activate_reencrypt_device_by_vk(struct crypt_device *cd,
	struct luks2_hdr *hdr,
	const char *name,
	struct volume_key *vks,
	uint32_t flags)
{
	bool dynamic_size;
	crypt_reencrypt_info ri;
	uint64_t minimal_size, device_size;
	int r = 0;
	struct crypt_lock_handle *reencrypt_lock = NULL;
	key_serial_t kid1 = 0, kid2 = 0;
	struct volume_key *vk;

	if (!vks)
		return -EINVAL;

	if (crypt_use_keyring_for_vk(cd))
		flags |= CRYPT_ACTIVATE_KEYRING_KEY;

	r = LUKS2_reencrypt_lock(cd, &amp;reencrypt_lock);
	if (r) {
		if (r == -EBUSY)
			log_err(cd, _("Reencryption in-progress. Cannot activate device."));
		else
			log_err(cd, _("Failed to get reencryption lock."));
		return r;
	}

	if ((r = crypt_load(cd, CRYPT_LUKS2, NULL)))
		goto out;

	ri = LUKS2_reencrypt_status(hdr);

	if (ri == CRYPT_REENCRYPT_CRASH) {
		r = LUKS2_reencrypt_locked_recovery_by_vks(cd, vks);
		if (r &lt; 0) {
			log_err(cd, _("LUKS2 reencryption recovery using volume key(s) failed."));
			goto out;
		}

		ri = LUKS2_reencrypt_status(hdr);
	}
	/* recovery finished reencryption or it's already finished */
	if (ri == CRYPT_REENCRYPT_NONE) {
		vk = crypt_volume_key_by_id(vks, LUKS2_digest_by_segment(hdr, CRYPT_DEFAULT_SEGMENT));
		if (!vk) {
			r = -EPERM;
			goto out;
		}

		r = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, vk);
		if (r == -EPERM || r == -ENOENT)
			log_err(cd, _("Volume key does not match the volume."));
		if (r &gt;= 0 &amp;&amp; cd-&gt;link_vk_to_keyring) {
			kid1 = crypt_single_volume_key_load_in_user_keyring(cd, vk, cd-&gt;user_key_name1);
			if (kid1 &lt;= 0)
				r = -EINVAL;
		}
		if (r &gt;= 0)
			r = LUKS2_activate(cd, name, vk, NULL, flags);
		goto out;
	}
	if (ri &gt; CRYPT_REENCRYPT_CLEAN) {
		r = -EINVAL;
		goto out;
	}

	if ((flags &amp; CRYPT_ACTIVATE_KEYRING_KEY)) {
		r = load_all_keys(cd, vks);
		if (r &lt; 0)
			goto out;
	}

	if ((r = LUKS2_get_data_size(hdr, &amp;minimal_size, &amp;dynamic_size)))
		goto out;

	r = LUKS2_reencrypt_digest_verify(cd, hdr, vks);
	if (r &lt; 0)
		goto out;

	log_dbg(cd, "Entering clean reencryption state mode.");

	r = LUKS2_reencrypt_check_device_size(cd, hdr, minimal_size, &amp;device_size, true, dynamic_size);
	if (r &lt; 0)
		goto out;
	if (cd-&gt;link_vk_to_keyring) {
		r = crypt_volume_key_load_in_user_keyring(cd, vks, &amp;kid1, &amp;kid2);
		if (r &lt; 0) {
			log_err(cd, _("Failed to link volume keys in user defined keyring."));
			goto out;
		}
	}
	r = LUKS2_activate_multi(cd, name, vks, device_size &gt;&gt; SECTOR_SHIFT, flags);
out:
	LUKS2_reencrypt_unlock(cd, reencrypt_lock);
	crypt_drop_keyring_key(cd, vks);

	return r;
}

static int _open_and_activate_reencrypt_device(struct crypt_device *cd,
	struct luks2_hdr *hdr,
	int keyslot,
	const char *name,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	bool dynamic_size;
	crypt_reencrypt_info ri;
	uint64_t minimal_size, device_size;
	struct volume_key *vks = NULL;
	int r = 0;
	struct crypt_lock_handle *reencrypt_lock = NULL;
	key_serial_t kid1 = 0, kid2 = 0;

	if (crypt_use_keyring_for_vk(cd))
		flags |= CRYPT_ACTIVATE_KEYRING_KEY;

	r = LUKS2_reencrypt_lock(cd, &amp;reencrypt_lock);
	if (r) {
		if (r == -EBUSY)
			log_err(cd, _("Reencryption in-progress. Cannot activate device."));
		else
			log_err(cd, _("Failed to get reencryption lock."));
		return r;
	}

	if ((r = crypt_load(cd, CRYPT_LUKS2, NULL)))
		goto out;

	ri = LUKS2_reencrypt_status(hdr);

	if (ri == CRYPT_REENCRYPT_CRASH) {
		r = LUKS2_reencrypt_locked_recovery_by_passphrase(cd, keyslot,
				keyslot, passphrase, passphrase_size, &amp;vks);
		if (r &lt; 0) {
			log_err(cd, _("LUKS2 reencryption recovery failed."));
			goto out;
		}
		keyslot = r;

		ri = LUKS2_reencrypt_status(hdr);
	}

	/* recovery finished reencryption or it's already finished */
	if (ri == CRYPT_REENCRYPT_NONE) {
		crypt_drop_keyring_key(cd, vks);
		crypt_free_volume_key(vks);
		LUKS2_reencrypt_unlock(cd, reencrypt_lock);
		return _open_and_activate(cd, keyslot, name, passphrase, passphrase_size, flags);
	}

	if (ri &gt; CRYPT_REENCRYPT_CLEAN) {
		r = -EINVAL;
		goto out;
	}

	if (LUKS2_get_data_size(hdr, &amp;minimal_size, &amp;dynamic_size))
		goto out;

	if (!vks) {
		r = _open_all_keys(cd, hdr, keyslot, passphrase, passphrase_size, flags, &amp;vks);
		if (r &gt;= 0)
			keyslot = r;
	}

	if (r &gt;= 0) {
		r = LUKS2_reencrypt_digest_verify(cd, hdr, vks);
		if (r &lt; 0)
			goto out;
	}

	log_dbg(cd, "Entering clean reencryption state mode.");

	if (cd-&gt;link_vk_to_keyring) {
		r = crypt_volume_key_load_in_user_keyring(cd, vks, &amp;kid1, &amp;kid2);
		if (r &lt; 0) {
			log_err(cd, _("Failed to link volume keys in user defined keyring."));
			goto out;
		}
	}

	if (r &gt;= 0)
		r = LUKS2_reencrypt_check_device_size(cd, hdr, minimal_size, &amp;device_size,
						      !(flags &amp; CRYPT_ACTIVATE_SHARED),
						      dynamic_size);

	if (r &gt;= 0)
		r = LUKS2_activate_multi(cd, name, vks, device_size &gt;&gt; SECTOR_SHIFT, flags);
out:
	LUKS2_reencrypt_unlock(cd, reencrypt_lock);
	if (r &lt; 0) {
		crypt_drop_keyring_key(cd, vks);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid1)
			crypt_unlink_key_from_custom_keyring(cd, kid1);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid2)
			crypt_unlink_key_from_custom_keyring(cd, kid2);
	}

	crypt_free_volume_key(vks);

	return r &lt; 0 ? r : keyslot;
}

/*
 * Activation/deactivation of a device
 */
static int _open_and_activate_luks2(struct crypt_device *cd,
	int keyslot,
	const char *name,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	crypt_reencrypt_info ri;
	int r, rv;
	struct luks2_hdr *hdr = &amp;cd-&gt;u.luks2.hdr;
	struct volume_key *vks = NULL;

	ri = LUKS2_reencrypt_status(hdr);
	if (ri == CRYPT_REENCRYPT_INVALID)
		return -EINVAL;

	if (ri &gt; CRYPT_REENCRYPT_NONE) {
		if (name)
			r = _open_and_activate_reencrypt_device(cd, hdr, keyslot, name, passphrase,
					passphrase_size, flags);
		else {
			r = _open_all_keys(cd, hdr, keyslot, passphrase,
					   passphrase_size, flags, &amp;vks);
			if (r &lt; 0)
				return r;

			rv = LUKS2_reencrypt_digest_verify(cd, hdr, vks);
			crypt_free_volume_key(vks);
			if (rv &lt; 0)
				return rv;
		}
	} else
		r = _open_and_activate(cd, keyslot, name, passphrase,
				passphrase_size, flags);

	return r;
}

static int _activate_luks2_by_volume_key(struct crypt_device *cd,
	const char *name,
	struct volume_key *vk,
	struct volume_key *external_key,
	uint32_t flags)
{
	int r;
	crypt_reencrypt_info ri;
	int digest_new, digest_old;
	struct volume_key *vk_old = NULL, *vk_new = NULL;
	ri = LUKS2_reencrypt_status(&amp;cd-&gt;u.luks2.hdr);
	if (ri == CRYPT_REENCRYPT_INVALID)
		return -EINVAL;

	if (ri &gt; CRYPT_REENCRYPT_NONE) {
		digest_new = LUKS2_reencrypt_digest_new(&amp;cd-&gt;u.luks2.hdr);
		digest_old = LUKS2_reencrypt_digest_old(&amp;cd-&gt;u.luks2.hdr);

		if (digest_new &gt;= 0) {
			vk_new = crypt_volume_key_by_id(vk, digest_new);
			assert(vk_new);
			assert(crypt_volume_key_get_id(vk_new) == digest_new);
		}
		if (digest_old &gt;= 0) {
			vk_old = crypt_volume_key_by_id(vk, digest_old);
			assert(vk_old);
			assert(crypt_volume_key_get_id(vk_old) == digest_old);
		}
		r = _open_and_activate_reencrypt_device_by_vk(cd, &amp;cd-&gt;u.luks2.hdr, name, vk, flags);
	} else {
		/* hw-opal data segment type does not require volume key for activation */
		assert(!vk || crypt_volume_key_get_id(vk) == LUKS2_digest_by_segment(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT));
		r = LUKS2_activate(cd, name, vk, external_key, flags);
	}

	return r;
}
#else
static int _open_and_activate_luks2(struct crypt_device *cd,
	int keyslot,
	const char *name,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	crypt_reencrypt_info ri;

	ri = LUKS2_reencrypt_status(&amp;cd-&gt;u.luks2.hdr);
	if (ri == CRYPT_REENCRYPT_INVALID)
		return -EINVAL;

	if (ri &gt; CRYPT_REENCRYPT_NONE) {
		log_err(cd, _("This operation is not supported for this device type."));
		return -ENOTSUP;
	}

	return _open_and_activate(cd, keyslot, name, passphrase, passphrase_size, flags);
}

static int _activate_luks2_by_volume_key(struct crypt_device *cd,
	const char *name,
	struct volume_key *vk,
	struct volume_key *external_key,
	uint32_t flags)
{
	int r;
	crypt_reencrypt_info ri;
	ri = LUKS2_reencrypt_status(&amp;cd-&gt;u.luks2.hdr);
	if (ri == CRYPT_REENCRYPT_INVALID)
		return -EINVAL;

	if (ri &gt; CRYPT_REENCRYPT_NONE) {
		log_err(cd, _("This operation is not supported for this device type."));
		r = -ENOTSUP;
	} else {
		assert(crypt_volume_key_get_id(vk) == LUKS2_digest_by_segment(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT));
		r = LUKS2_activate(cd, name, vk, external_key, flags);
	}

	return r;
}
#endif

static int _activate_by_passphrase(struct crypt_device *cd,
	const char *name,
	int keyslot,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	int r;
	struct volume_key *vk = NULL;

	if ((flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) &amp;&amp; !crypt_use_keyring_for_vk(cd))
		return -EINVAL;

	if ((flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY) &amp;&amp; name)
		return -EINVAL;

	r = _check_header_data_overlap(cd, name);
	if (r &lt; 0)
		return r;

	if (flags &amp; CRYPT_ACTIVATE_SERIALIZE_MEMORY_HARD_PBKDF)
		cd-&gt;memory_hard_pbkdf_lock_enabled = true;

	/* plain, use hashed passphrase */
	if (isPLAIN(cd-&gt;type)) {
		r = -EINVAL;
		if (!name)
			goto out;

		r = process_key(cd, cd-&gt;u.plain.hdr.hash,
				cd-&gt;u.plain.key_size,
				passphrase, passphrase_size, &amp;vk);
		if (r &lt; 0)
			goto out;

		r = PLAIN_activate(cd, name, vk, cd-&gt;u.plain.hdr.size, flags);
		keyslot = 0;
	} else if (isLUKS1(cd-&gt;type)) {
		r = LUKS_open_key_with_hdr(keyslot, passphrase,
					   passphrase_size, &amp;cd-&gt;u.luks1.hdr, &amp;vk, cd);
		if (r &gt;= 0) {
			keyslot = r;
			if (name)
				r = LUKS1_activate(cd, name, vk, flags);
		}
	} else if (isLUKS2(cd-&gt;type)) {
		r = _open_and_activate_luks2(cd, keyslot, name, passphrase, passphrase_size, flags);
		keyslot = r;
	} else if (isBITLK(cd-&gt;type)) {
		r = BITLK_activate_by_passphrase(cd, name, passphrase, passphrase_size,
						 &amp;cd-&gt;u.bitlk.params, flags);
		keyslot = 0;
	} else if (isFVAULT2(cd-&gt;type)) {
		r = FVAULT2_activate_by_passphrase(cd, name, passphrase, passphrase_size,
			&amp;cd-&gt;u.fvault2.params, flags);
		keyslot = 0;
	} else {
		log_err(cd, _("Device type is not properly initialized."));
		r = -EINVAL;
	}
out:
	if (r &lt; 0)
		crypt_drop_keyring_key(cd, vk);
	crypt_free_volume_key(vk);

	cd-&gt;memory_hard_pbkdf_lock_enabled = false;

	return r &lt; 0 ? r : keyslot;
}

static int _activate_loopaes(struct crypt_device *cd,
	const char *name,
	const char *buffer,
	size_t buffer_size,
	uint32_t flags)
{
	int r;
	unsigned int key_count = 0;
	struct volume_key *vk = NULL;
	char *buffer_copy;

	buffer_copy = crypt_safe_alloc(buffer_size);
	if (!buffer_copy)
		return -ENOMEM;
	memcpy(buffer_copy, buffer, buffer_size);

	r = LOOPAES_parse_keyfile(cd, &amp;vk, cd-&gt;u.loopaes.hdr.hash, &amp;key_count,
				  buffer_copy, buffer_size);
	crypt_safe_free(buffer_copy);

	if (!r &amp;&amp; name)
		r = LOOPAES_activate(cd, name, cd-&gt;u.loopaes.cipher, key_count,
				     vk, flags);

	crypt_free_volume_key(vk);

	return r;
}

static int _activate_check_status(struct crypt_device *cd, const char *name, unsigned reload)
{
	int r;

	if (!name)
		return 0;

	r = dm_status_device(cd, name);

	if (r &gt;= 0 &amp;&amp; reload)
		return 0;

	if (r &gt;= 0 || r == -EEXIST) {
		log_err(cd, _("Device %s already exists."), name);
		return -EEXIST;
	}

	if (r == -ENODEV)
		return 0;

	log_err(cd, _("Cannot use device %s, name is invalid or still in use."), name);
	return r;
}

static int _verify_key(struct crypt_device *cd,
	int segment,
	struct volume_key *vk)
{
	int r = -EINVAL;
	crypt_reencrypt_info ri;
	struct luks2_hdr *hdr = &amp;cd-&gt;u.luks2.hdr;

	assert(cd);

	if (isPLAIN(cd-&gt;type)) {
		if (vk &amp;&amp; vk-&gt;keylength == cd-&gt;u.plain.key_size) {
			r = KEY_VERIFIED;
		} else
			log_err(cd, _("Incorrect volume key specified for plain device."));
	} else if (isLUKS1(cd-&gt;type)) {
		r = LUKS_verify_volume_key(&amp;cd-&gt;u.luks1.hdr, vk);
		if (r == -EPERM)
			log_err(cd, _("Volume key does not match the volume."));
	} else if (isLUKS2(cd-&gt;type)) {
		ri = LUKS2_reencrypt_status(hdr);
		if (ri == CRYPT_REENCRYPT_INVALID)
			return -EINVAL;

		if (ri &gt; CRYPT_REENCRYPT_NONE) {
			LUKS2_reencrypt_lookup_key_ids(cd, hdr, vk);
			r = LUKS2_reencrypt_digest_verify(cd, hdr, vk);
			if (r == -EPERM || r == -ENOENT || r == -EINVAL)
				log_err(cd, _("Reencryption volume keys do not match the volume."));
			return r;
		}

		if (segment == CRYPT_ANY_SEGMENT)
			r = LUKS2_digest_any_matching(cd, &amp;cd-&gt;u.luks2.hdr, vk);
		else {
			r = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, segment, vk);
			if (r == -EPERM || r == -ENOENT)
				log_err(cd, _("Volume key does not match the volume."));
		}
	} else if (isVERITY(cd-&gt;type))
		r = KEY_VERIFIED;
	else if (isTCRYPT(cd-&gt;type))
		r = KEY_VERIFIED;
	else if (isINTEGRITY(cd-&gt;type))
		r = KEY_VERIFIED;
	else if (isBITLK(cd-&gt;type))
		r = KEY_VERIFIED;
	else
		log_err(cd, _("Device type is not properly initialized."));

	if (r &gt;= KEY_VERIFIED)
		crypt_volume_key_set_id(vk, r);

	return r &gt; 0 ? 0 : r;
}

/* activation/deactivation of device mapping */
static int _activate_by_volume_key(struct crypt_device *cd,
	const char *name,
	struct volume_key *vk,
	struct volume_key *external_key,
	uint32_t flags)
{
	int r;

	assert(cd);
	assert(name);

	r = _check_header_data_overlap(cd, name);
	if (r &lt; 0)
		return r;

	/* use key directly, no hash */
	if (isPLAIN(cd-&gt;type)) {
		assert(!external_key);
		assert(crypt_volume_key_get_id(vk) == KEY_VERIFIED);

		r = PLAIN_activate(cd, name, vk, cd-&gt;u.plain.hdr.size, flags);
	} else if (isLUKS1(cd-&gt;type)) {
		assert(!external_key);
		assert(crypt_volume_key_get_id(vk) == KEY_VERIFIED);

		r = LUKS1_activate(cd, name, vk, flags);
	} else if (isLUKS2(cd-&gt;type)) {
		r = _activate_luks2_by_volume_key(cd, name, vk, external_key, flags);
	} else if (isVERITY(cd-&gt;type)) {
		assert(crypt_volume_key_get_id(vk) == KEY_VERIFIED);
		r = VERITY_activate(cd, name, vk, external_key, cd-&gt;u.verity.fec_device,
				    &amp;cd-&gt;u.verity.hdr, flags);
	} else if (isTCRYPT(cd-&gt;type)) {
		assert(!external_key);
		r = TCRYPT_activate(cd, name, &amp;cd-&gt;u.tcrypt.hdr,
				    &amp;cd-&gt;u.tcrypt.params, flags);
	} else if (isINTEGRITY(cd-&gt;type)) {
		assert(!external_key);
		assert(!vk || crypt_volume_key_get_id(vk) == KEY_VERIFIED);
		r = INTEGRITY_activate(cd, name, &amp;cd-&gt;u.integrity.params, vk,
				       cd-&gt;u.integrity.journal_crypt_key,
				       cd-&gt;u.integrity.journal_mac_key, flags,
				       cd-&gt;u.integrity.sb_flags);
	} else if (isBITLK(cd-&gt;type)) {
		assert(!external_key);
		r = BITLK_activate_by_volume_key(cd, name, vk-&gt;key, vk-&gt;keylength,
						 &amp;cd-&gt;u.bitlk.params, flags);
	} else {
		log_err(cd, _("Device type is not properly initialized."));
		r = -EINVAL;
	}

	return r;
}

int crypt_activate_by_keyslot_context(struct crypt_device *cd,
const char *name,
	int keyslot,
	struct crypt_keyslot_context *kc,
	int additional_keyslot,
	struct crypt_keyslot_context *additional_kc,
	uint32_t flags)
{
	bool use_keyring;
	struct volume_key *p_ext_key, *crypt_key = NULL, *opal_key = NULL, *vk = NULL,
		*vk_sign = NULL, *p_crypt = NULL;
	size_t passphrase_size;
	const char *passphrase = NULL;
	int unlocked_keyslot, required_keys, unlocked_keys = 0, r = -EINVAL;
	key_serial_t kid1 = 0, kid2 = 0;
	struct luks2_hdr *hdr = &amp;cd-&gt;u.luks2.hdr;

	if (!cd || !kc)
		return -EINVAL;

	log_dbg(cd, "%s volume %s [keyslot %d] using %s.",
		name ? "Activating" : "Checking", name ?: "passphrase", keyslot, keyslot_context_type_string(kc));
	if (!name &amp;&amp; (flags &amp; CRYPT_ACTIVATE_REFRESH))
		return -EINVAL;
	if ((flags &amp; CRYPT_ACTIVATE_KEYRING_KEY) &amp;&amp; !crypt_use_keyring_for_vk(cd))
		return -EINVAL;
	if ((flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY) &amp;&amp; name)
		return -EINVAL;
	if ((kc-&gt;type == CRYPT_KC_TYPE_KEYRING) &amp;&amp; !kernel_keyring_support()) {
		log_err(cd, _("Kernel keyring is not supported by the kernel."));
		return -EINVAL;
	}
	if ((kc-&gt;type == CRYPT_KC_TYPE_SIGNED_KEY) &amp;&amp; !kernel_keyring_support()) {
		log_err(cd, _("Kernel keyring missing: required for passing signature to kernel."));
		return -EINVAL;
	}
	r = _check_header_data_overlap(cd, name);
	if (r &lt; 0)
		return r;
	r = _activate_check_status(cd, name, flags &amp; CRYPT_ACTIVATE_REFRESH);
	if (r &lt; 0)
		return r;

	/* for TCRYPT and token skip passphrase activation */
	if (kc-&gt;get_passphrase &amp;&amp; kc-&gt;type != CRYPT_KC_TYPE_TOKEN &amp;&amp; !isTCRYPT(cd-&gt;type)) {
		r = kc-&gt;get_passphrase(cd, kc, &amp;passphrase, &amp;passphrase_size);
		if (r &lt; 0)
			return r;
		/* TODO: Only loopaes should by activated by passphrase method */
		if (passphrase) {
			if (isLOOPAES(cd-&gt;type))
				return _activate_loopaes(cd, name, passphrase, passphrase_size, flags);
			else
				return _activate_by_passphrase(cd, name, keyslot, passphrase, passphrase_size, flags);
		}
	}
	/* only passphrase unlock is supported with loopaes */
	if (isLOOPAES(cd-&gt;type))
		return -EINVAL;

	/* activate by volume key */
	r = -EINVAL;
	if (isLUKS1(cd-&gt;type)) {
		if (kc-&gt;get_luks1_volume_key)
			r = kc-&gt;get_luks1_volume_key(cd, kc, keyslot, &amp;vk);
	} else if (isLUKS2(cd-&gt;type)) {
		required_keys = LUKS2_reencrypt_vks_count(hdr);

		if (flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY &amp;&amp; kc-&gt;get_luks2_key)
			r = kc-&gt;get_luks2_key(cd, kc, keyslot, CRYPT_ANY_SEGMENT, &amp;vk);
		else if (kc-&gt;get_luks2_volume_key)
			r = kc-&gt;get_luks2_volume_key(cd, kc, keyslot, &amp;vk);
		if (r &gt;= 0) {
			unlocked_keys++;

			if (required_keys &gt; 1 &amp;&amp; vk &amp;&amp; additional_kc) {
				if (flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY &amp;&amp; additional_kc-&gt;get_luks2_key)
					r = additional_kc-&gt;get_luks2_key(cd, additional_kc, additional_keyslot, CRYPT_ANY_SEGMENT, &amp;vk-&gt;next);
				else if (additional_kc-&gt;get_luks2_volume_key)
					r = additional_kc-&gt;get_luks2_volume_key(cd, additional_kc, additional_keyslot, &amp;vk-&gt;next);
				if (r &gt;= 0)
					unlocked_keys++;
			}

			if (unlocked_keys &lt; required_keys)
				r = -ESRCH;
		}
	} else if (isTCRYPT(cd-&gt;type)) {
		r = 0;
	} else if (name &amp;&amp; isPLAIN(cd-&gt;type)) {
		if (kc-&gt;get_plain_volume_key)
			r = kc-&gt;get_plain_volume_key(cd, kc, &amp;vk);
	} else if (name &amp;&amp; isBITLK(cd-&gt;type)) {
		if (kc-&gt;get_bitlk_volume_key)
			r = kc-&gt;get_bitlk_volume_key(cd, kc, &amp;vk);
	} else if (isFVAULT2(cd-&gt;type)) {
		if (kc-&gt;get_fvault2_volume_key)
			r = kc-&gt;get_fvault2_volume_key(cd, kc, &amp;vk);
	} else if (isVERITY(cd-&gt;type) &amp;&amp; (name || kc-&gt;type != CRYPT_KC_TYPE_SIGNED_KEY)) {
		if (kc-&gt;get_verity_volume_key)
			r = kc-&gt;get_verity_volume_key(cd, kc, &amp;vk, &amp;vk_sign);
		if (r &gt;= 0)
			r = VERITY_verify_params(cd, &amp;cd-&gt;u.verity.hdr, vk_sign != NULL,
						 cd-&gt;u.verity.fec_device, vk);

		free(CONST_CAST(void*)cd-&gt;u.verity.root_hash);
		cd-&gt;u.verity.root_hash = NULL;
		flags |= CRYPT_ACTIVATE_READONLY;
	} else if (isINTEGRITY(cd-&gt;type)) {
		if (kc-&gt;get_integrity_volume_key)
			r = kc-&gt;get_integrity_volume_key(cd, kc, &amp;vk);
	}
	if (r &lt; 0 &amp;&amp; (r != -ENOENT || kc-&gt;type == CRYPT_KC_TYPE_TOKEN))
		goto out;
	unlocked_keyslot = r;

	if (r == -ENOENT &amp;&amp; isLUKS(cd-&gt;type) &amp;&amp; cd-&gt;volume_key) {
		vk = crypt_alloc_volume_key(cd-&gt;volume_key-&gt;keylength, cd-&gt;volume_key-&gt;key);
		r = vk ? 0 : -ENOMEM;
	}
	if (r == -ENOENT &amp;&amp; isINTEGRITY(cd-&gt;type))
		r = 0;

	if (r &lt; 0)
		goto out;

	r = _verify_key(cd,
			flags &amp; CRYPT_ACTIVATE_ALLOW_UNBOUND_KEY ? CRYPT_ANY_SEGMENT : CRYPT_DEFAULT_SEGMENT,
			vk);
	if (r &lt; 0)
		goto out;

	if (isLUKS2(cd-&gt;type)) {
		/* split the key only if we do activation */
		if (name &amp;&amp; LUKS2_segment_is_hw_opal(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT)) {
			r = LUKS2_split_crypt_and_opal_keys(cd, &amp;cd-&gt;u.luks2.hdr,
							    vk, &amp;crypt_key,
							    &amp;opal_key);
			if (r &lt; 0)
				goto out;

			/* copy volume key digest id in crypt subkey */
			crypt_volume_key_set_id(crypt_key, crypt_volume_key_get_id(vk));

			p_crypt = crypt_key;
			p_ext_key = opal_key ?: vk;
		} else {
			p_crypt = vk;
			p_ext_key = NULL;
		}

		if (!crypt_use_keyring_for_vk(cd))
			use_keyring = false;
		else
			use_keyring = (name &amp;&amp; !crypt_is_cipher_null(crypt_get_cipher(cd))) ||
				      (flags &amp; CRYPT_ACTIVATE_KEYRING_KEY);

		if (use_keyring) {
			/* upload dm-crypt part of volume key in thread keyring if requested */
			if (p_crypt) {
				r = LUKS2_volume_key_load_in_keyring_by_digest(cd, p_crypt, crypt_volume_key_get_id(p_crypt));
				if (r &lt; 0)
					goto out;
				flags |= CRYPT_ACTIVATE_KEYRING_KEY;
			}

			/* upload the volume key in custom user keyring if requested */
			if (cd-&gt;link_vk_to_keyring) {
				r = crypt_volume_key_load_in_user_keyring(cd, vk, &amp;kid1, &amp;kid2);
				if (r &lt; 0) {
					log_err(cd, _("Failed to link volume key in user defined keyring."));
					goto out;
				}
			}
		}
	} else {
		p_crypt = vk;
		p_ext_key = vk_sign;
	}

	if (name)
		r = _activate_by_volume_key(cd, name, p_crypt, p_ext_key, flags);

	if (r &gt;= 0 &amp;&amp; unlocked_keyslot &gt;= 0)
		r = unlocked_keyslot;
out:
	if (r &lt; 0) {
		crypt_drop_keyring_key(cd, vk);
		crypt_drop_keyring_key(cd, p_crypt);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid1)
			crypt_unlink_key_from_custom_keyring(cd, kid1);
		if (cd-&gt;link_vk_to_keyring &amp;&amp; kid2)
			crypt_unlink_key_from_custom_keyring(cd, kid2);
	}

	crypt_free_volume_key(vk);
	crypt_free_volume_key(crypt_key);
	crypt_free_volume_key(opal_key);
	crypt_free_volume_key(vk_sign);
	return r;
}

int crypt_activate_by_passphrase(struct crypt_device *cd,
	const char *name,
	int keyslot,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;kc, passphrase, passphrase_size);
	r = crypt_activate_by_keyslot_context(cd, name, keyslot, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_activate_by_keyfile_device_offset(struct crypt_device *cd,
	const char *name,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	uint64_t keyfile_offset,
	uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_keyfile_init_internal(&amp;kc, keyfile, keyfile_size, keyfile_offset);
	r = crypt_activate_by_keyslot_context(cd, name, keyslot, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_activate_by_keyfile(struct crypt_device *cd,
	const char *name,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	uint32_t flags)
{
	return crypt_activate_by_keyfile_device_offset(cd, name, keyslot, keyfile,
					keyfile_size, 0, flags);
}

int crypt_activate_by_keyfile_offset(struct crypt_device *cd,
	const char *name,
	int keyslot,
	const char *keyfile,
	size_t keyfile_size,
	size_t keyfile_offset,
	uint32_t flags)
{
	return crypt_activate_by_keyfile_device_offset(cd, name, keyslot, keyfile,
					keyfile_size, keyfile_offset, flags);
}

int crypt_activate_by_volume_key(struct crypt_device *cd,
	const char *name,
	const char *volume_key,
	size_t volume_key_size,
	uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
	r = crypt_activate_by_keyslot_context(cd, name, CRYPT_ANY_SLOT /* unused */, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_activate_by_signed_key(struct crypt_device *cd,
	const char *name,
	const char *volume_key,
	size_t volume_key_size,
	const char *signature,
	size_t signature_size,
	uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	if (!cd || !isVERITY(cd-&gt;type))
		return -EINVAL;

	if (!volume_key || !volume_key_size || (!name &amp;&amp; signature)) {
		log_err(cd, _("Incorrect root hash specified for verity device."));
		return -EINVAL;
	}

	if (signature)
		crypt_keyslot_unlock_by_signed_key_init_internal(&amp;kc, volume_key, volume_key_size,
			signature, signature_size);
	else
		crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
	r = crypt_activate_by_keyslot_context(cd, name, -2 /* unused */, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_deactivate_by_name(struct crypt_device *cd, const char *name, uint32_t flags)
{
	struct crypt_device *fake_cd = NULL;
	struct luks2_hdr *hdr2 = NULL;
	struct crypt_dm_active_device dmd = {};
	int r;
	uint32_t get_flags = DM_ACTIVE_DEVICE | DM_ACTIVE_UUID | DM_ACTIVE_HOLDERS;

	if (!name)
		return -EINVAL;

	if ((flags &amp; CRYPT_DEACTIVATE_DEFERRED) &amp;&amp; (flags &amp; CRYPT_DEACTIVATE_DEFERRED_CANCEL))
		return -EINVAL;

	log_dbg(cd, "Deactivating volume %s.", name);

	if (!cd) {
		r = crypt_init_by_name(&amp;fake_cd, name);
		if (r &lt; 0)
			return r;
		cd = fake_cd;
	}

	if (flags &amp; (CRYPT_DEACTIVATE_DEFERRED | CRYPT_DEACTIVATE_DEFERRED_CANCEL)) {
		struct luks2_hdr *hdr = crypt_get_hdr(cd, CRYPT_LUKS2);
		if (hdr) {
			json_object *jobj = json_segments_get_segment(LUKS2_get_segments_jobj(hdr), 0);
			if (jobj &amp;&amp; !strcmp(json_segment_type(jobj), "hw-opal")) {
				log_err(cd, _("OPAL does not support deferred deactivation."));
				return -EINVAL;
			}
		}
	}

	/* skip holders detection and early abort when some flags raised */
	if (flags &amp; (CRYPT_DEACTIVATE_FORCE | CRYPT_DEACTIVATE_DEFERRED | CRYPT_DEACTIVATE_DEFERRED_CANCEL))
		get_flags &amp;= ~DM_ACTIVE_HOLDERS;

	switch (crypt_status(cd, name)) {
		case CRYPT_ACTIVE:
		case CRYPT_BUSY:
			if (flags &amp; CRYPT_DEACTIVATE_DEFERRED_CANCEL) {
				r = dm_cancel_deferred_removal(name);
				if (r &lt; 0)
					log_err(cd, _("Could not cancel deferred remove from device %s."), name);
				break;
			}

			r = dm_query_device(cd, name, get_flags, &amp;dmd);
			if (r &gt;= 0) {
				if (dmd.holders) {
					log_err(cd, _("Device %s is still in use."), name);
					r = -EBUSY;
					break;
				}
			}

			if (isLUKS2(cd-&gt;type))
				hdr2 = crypt_get_hdr(cd, CRYPT_LUKS2);

			if ((dmd.uuid &amp;&amp; !strncmp(CRYPT_LUKS2, dmd.uuid, sizeof(CRYPT_LUKS2)-1)) || hdr2)
				r = LUKS2_deactivate(cd, name, hdr2, &amp;dmd, flags);
			else if (isTCRYPT(cd-&gt;type))
				r = TCRYPT_deactivate(cd, name, flags);
			else
				r = dm_remove_device(cd, name, flags);
			if (r &lt; 0 &amp;&amp; crypt_status(cd, name) == CRYPT_BUSY) {
				log_err(cd, _("Device %s is still in use."), name);
				r = -EBUSY;
			}
			break;
		case CRYPT_INACTIVE:
			log_err(cd, _("Device %s is not active."), name);
			r = -ENODEV;
			break;
		default:
			log_err(cd, _("Invalid device %s."), name);
			r = -EINVAL;
	}

	dm_targets_free(cd, &amp;dmd);
	free(CONST_CAST(void*)dmd.uuid);
	crypt_free(fake_cd);

	return r;
}

int crypt_deactivate(struct crypt_device *cd, const char *name)
{
	return crypt_deactivate_by_name(cd, name, 0);
}

int crypt_get_active_device(struct crypt_device *cd, const char *name,
			    struct crypt_active_device *cad)
{
	int r;
	struct crypt_dm_active_device dmd, dmdi = {};
	const char *namei = NULL;
	struct dm_target *tgt = &amp;dmd.segment;
	uint64_t min_offset = UINT64_MAX;

	if (!cd || !name || !cad)
		return -EINVAL;

	r = dm_query_device(cd, name, DM_ACTIVE_DEVICE, &amp;dmd);
	if (r &lt; 0)
		return r;

	/* For LUKS2 with integrity we need flags from underlying dm-integrity */
	if (isLUKS2(cd-&gt;type) &amp;&amp; crypt_get_integrity_tag_size(cd) &amp;&amp; single_segment(&amp;dmd)) {
		namei = device_dm_name(tgt-&gt;data_device);
		if (namei &amp;&amp; dm_query_device(cd, namei, 0, &amp;dmdi) &gt;= 0)
			dmd.flags |= dmdi.flags;
	}

	if (cd &amp;&amp; isTCRYPT(cd-&gt;type)) {
		cad-&gt;offset	= TCRYPT_get_data_offset(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);
		cad-&gt;iv_offset	= TCRYPT_get_iv_offset(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);
	} else {
		while (tgt) {
			if (tgt-&gt;type == DM_CRYPT &amp;&amp; (min_offset &gt; tgt-&gt;u.crypt.offset)) {
				min_offset = tgt-&gt;u.crypt.offset;
				cad-&gt;iv_offset = tgt-&gt;u.crypt.iv_offset;
			} else if (tgt-&gt;type == DM_INTEGRITY &amp;&amp; (min_offset &gt; tgt-&gt;u.integrity.offset)) {
				min_offset = tgt-&gt;u.integrity.offset;
				cad-&gt;iv_offset = 0;
			} else if (tgt-&gt;type == DM_LINEAR &amp;&amp; (min_offset &gt; tgt-&gt;u.linear.offset)) {
				min_offset = tgt-&gt;u.linear.offset;
				cad-&gt;iv_offset = 0;
			}
			tgt = tgt-&gt;next;
		}
	}

	if (min_offset != UINT64_MAX)
		cad-&gt;offset = min_offset;

	cad-&gt;size	= dmd.size;
	cad-&gt;flags	= dmd.flags;

	r = 0;
	dm_targets_free(cd, &amp;dmd);
	dm_targets_free(cd, &amp;dmdi);

	return r;
}

uint64_t crypt_get_active_integrity_failures(struct crypt_device *cd, const char *name)
{
	struct crypt_dm_active_device dmd;
	uint64_t failures = 0;

	if (!name)
		return 0;

	/* LUKS2 / dm-crypt does not provide this count. */
	if (dm_query_device(cd, name, 0, &amp;dmd) &lt; 0)
		return 0;

	if (single_segment(&amp;dmd) &amp;&amp; dmd.segment.type == DM_INTEGRITY)
		(void)dm_status_integrity_failures(cd, name, &amp;failures);

	dm_targets_free(cd, &amp;dmd);

	return failures;
}

/*
 * Volume key handling
 */
int crypt_volume_key_get(struct crypt_device *cd,
	int keyslot,
	char *volume_key,
	size_t *volume_key_size,
	const char *passphrase,
	size_t passphrase_size)
{
	int r;
	struct crypt_keyslot_context kc;

	if (!passphrase)
		return crypt_volume_key_get_by_keyslot_context(cd, keyslot, volume_key, volume_key_size, NULL);

	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;kc, passphrase, passphrase_size);

	r = crypt_volume_key_get_by_keyslot_context(cd, keyslot, volume_key, volume_key_size, &amp;kc);

	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_volume_key_get_by_keyslot_context(struct crypt_device *cd,
	int keyslot,
	char *volume_key,
	size_t *volume_key_size,
	struct crypt_keyslot_context *kc)
{
	size_t passphrase_size;
	int key_len, r;
	const char *passphrase = NULL;
	struct volume_key *vk = NULL;

	if (!cd || !volume_key || !volume_key_size ||
	    (!kc &amp;&amp; !isLUKS(cd-&gt;type) &amp;&amp; !isTCRYPT(cd-&gt;type) &amp;&amp; !isVERITY(cd-&gt;type)))
		return -EINVAL;

	if (isLUKS2(cd-&gt;type) &amp;&amp; keyslot != CRYPT_ANY_SLOT)
		key_len = LUKS2_get_keyslot_stored_key_size(&amp;cd-&gt;u.luks2.hdr, keyslot);
	else
		key_len = crypt_get_volume_key_size(cd);

	if (key_len &lt; 0)
		return -EINVAL;

	if (key_len &gt; (int)*volume_key_size) {
		log_err(cd, _("Volume key buffer too small."));
		return -ENOMEM;
	}

	if (kc &amp;&amp; (!kc-&gt;get_passphrase || kc-&gt;type == CRYPT_KC_TYPE_KEY))
		return -EINVAL;

	if (kc) {
		r = kc-&gt;get_passphrase(cd, kc, &amp;passphrase, &amp;passphrase_size);
		if (r &lt; 0)
			return r;
	}

	r = -EINVAL;

	if (isLUKS2(cd-&gt;type)) {
		if (kc &amp;&amp; !kc-&gt;get_luks2_key)
			log_err(cd, _("Cannot retrieve volume key for LUKS2 device."));
		else if (!kc)
			r = -ENOENT;
		else
			r = kc-&gt;get_luks2_key(cd, kc, keyslot,
					keyslot == CRYPT_ANY_SLOT ? CRYPT_DEFAULT_SEGMENT : CRYPT_ANY_SEGMENT,
					&amp;vk);
	} else if (isLUKS1(cd-&gt;type)) {
		if (kc &amp;&amp; !kc-&gt;get_luks1_volume_key)
			log_err(cd, _("Cannot retrieve volume key for LUKS1 device."));
		else if (!kc)
			r = -ENOENT;
		else
			r = kc-&gt;get_luks1_volume_key(cd, kc, keyslot, &amp;vk);
	} else if (isPLAIN(cd-&gt;type)) {
		if (passphrase &amp;&amp; cd-&gt;u.plain.hdr.hash)
			r = process_key(cd, cd-&gt;u.plain.hdr.hash, key_len,
					passphrase, passphrase_size, &amp;vk);
		if (r &lt; 0)
			log_err(cd, _("Cannot retrieve volume key for plain device."));
	} else if (isVERITY(cd-&gt;type)) {
		/* volume_key == root hash */
		if (cd-&gt;u.verity.root_hash) {
			memcpy(volume_key, cd-&gt;u.verity.root_hash, cd-&gt;u.verity.root_hash_size);
			*volume_key_size = cd-&gt;u.verity.root_hash_size;
			r = 0;
		} else
			log_err(cd, _("Cannot retrieve root hash for verity device."));
	} else if (isTCRYPT(cd-&gt;type)) {
		r = TCRYPT_get_volume_key(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params, &amp;vk);
	} else if (isBITLK(cd-&gt;type)) {
		if (passphrase)
			r = BITLK_get_volume_key(cd, passphrase, passphrase_size, &amp;cd-&gt;u.bitlk.params, &amp;vk);
		if (r &lt; 0)
			log_err(cd, _("Cannot retrieve volume key for BITLK device."));
	} else if (isFVAULT2(cd-&gt;type)) {
		if (passphrase)
			r = FVAULT2_get_volume_key(cd, passphrase, passphrase_size, &amp;cd-&gt;u.fvault2.params, &amp;vk);
		if (r &lt; 0)
			log_err(cd, _("Cannot retrieve volume key for FVAULT2 device."));
	} else
		log_err(cd, _("This operation is not supported for %s crypt device."), cd-&gt;type ?: "(none)");

	if (r == -ENOENT &amp;&amp; isLUKS(cd-&gt;type) &amp;&amp; cd-&gt;volume_key) {
		vk = crypt_alloc_volume_key(cd-&gt;volume_key-&gt;keylength, cd-&gt;volume_key-&gt;key);
		r = vk ? 0 : -ENOMEM;
	}

	if (r &gt;= 0 &amp;&amp; vk) {
		memcpy(volume_key, vk-&gt;key, vk-&gt;keylength);
		*volume_key_size = vk-&gt;keylength;
	}

	crypt_free_volume_key(vk);
	return r;
}

int crypt_volume_key_verify(struct crypt_device *cd,
	const char *volume_key,
	size_t volume_key_size)
{
	struct volume_key *vk;
	int r;

	if ((r = onlyLUKSunrestricted(cd)))
		return r;

	vk = crypt_alloc_volume_key(volume_key_size, volume_key);
	if (!vk)
		return -ENOMEM;

	if (isLUKS1(cd-&gt;type))
		r = LUKS_verify_volume_key(&amp;cd-&gt;u.luks1.hdr, vk);
	else if (isLUKS2(cd-&gt;type))
		r = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, vk);
	else
		r = -EINVAL;

	crypt_free_volume_key(vk);

	return r &gt;= 0 ? 0 : r;
}

/*
 * RNG and memory locking
 */
void crypt_set_rng_type(struct crypt_device *cd, int rng_type)
{
	if (!cd)
		return;

	switch (rng_type) {
	case CRYPT_RNG_URANDOM:
	case CRYPT_RNG_RANDOM:
		log_dbg(cd, "RNG set to %d (%s).", rng_type, rng_type ? "random" : "urandom");
		cd-&gt;rng_type = rng_type;
	}
}

int crypt_get_rng_type(struct crypt_device *cd)
{
	if (!cd)
		return -EINVAL;

	return cd-&gt;rng_type;
}

int crypt_memory_lock(struct crypt_device *cd, int lock)
{
	UNUSED(cd);
	UNUSED(lock);

	return 0;
}

void crypt_set_compatibility(struct crypt_device *cd, uint32_t flags)
{
	if (cd)
		cd-&gt;compatibility = flags;
}

uint32_t crypt_get_compatibility(struct crypt_device *cd)
{
	if (cd)
		return cd-&gt;compatibility;

	return 0;
}

/*
 * Reporting
 */
crypt_status_info crypt_status(struct crypt_device *cd, const char *name)
{
	int r;

	if (!name)
		return CRYPT_INVALID;

	if (!cd)
		dm_backend_init(cd);

	r = dm_status_device(cd, name);

	if (!cd)
		dm_backend_exit(cd);

	if (r &lt; 0 &amp;&amp; r != -ENODEV)
		return CRYPT_INVALID;

	if (r == 0)
		return CRYPT_ACTIVE;

	if (r &gt; 0)
		return CRYPT_BUSY;

	return CRYPT_INACTIVE;
}

static int _luks_dump(struct crypt_device *cd)
{
	int i;

	log_std(cd, "LUKS header information for %s\n\n", mdata_device_path(cd));
	log_std(cd, "Version:       \t%" PRIu16 "\n", cd-&gt;u.luks1.hdr.version);
	log_std(cd, "Cipher name:   \t%s\n", cd-&gt;u.luks1.hdr.cipherName);
	log_std(cd, "Cipher mode:   \t%s\n", cd-&gt;u.luks1.hdr.cipherMode);
	log_std(cd, "Hash spec:     \t%s\n", cd-&gt;u.luks1.hdr.hashSpec);
	log_std(cd, "Payload offset:\t%" PRIu32 "\n", cd-&gt;u.luks1.hdr.payloadOffset);
	log_std(cd, "MK bits:       \t%" PRIu32 "\n", cd-&gt;u.luks1.hdr.keyBytes * 8);
	log_std(cd, "MK digest:     \t");
	crypt_log_hex(cd, cd-&gt;u.luks1.hdr.mkDigest, LUKS_DIGESTSIZE, " ", 0, NULL);
	log_std(cd, "\n");
	log_std(cd, "MK salt:       \t");
	crypt_log_hex(cd, cd-&gt;u.luks1.hdr.mkDigestSalt, LUKS_SALTSIZE/2, " ", 0, NULL);
	log_std(cd, "\n               \t");
	crypt_log_hex(cd, cd-&gt;u.luks1.hdr.mkDigestSalt+LUKS_SALTSIZE/2, LUKS_SALTSIZE/2, " ", 0, NULL);
	log_std(cd, "\n");
	log_std(cd, "MK iterations: \t%" PRIu32 "\n", cd-&gt;u.luks1.hdr.mkDigestIterations);
	log_std(cd, "UUID:          \t%s\n\n", cd-&gt;u.luks1.hdr.uuid);
	for(i = 0; i &lt; LUKS_NUMKEYS; i++) {
		if(cd-&gt;u.luks1.hdr.keyblock[i].active == LUKS_KEY_ENABLED) {
			log_std(cd, "Key Slot %d: ENABLED\n",i);
			log_std(cd, "\tIterations:         \t%" PRIu32 "\n",
				cd-&gt;u.luks1.hdr.keyblock[i].passwordIterations);
			log_std(cd, "\tSalt:               \t");
			crypt_log_hex(cd, cd-&gt;u.luks1.hdr.keyblock[i].passwordSalt,
				 LUKS_SALTSIZE/2, " ", 0, NULL);
			log_std(cd, "\n\t                      \t");
			crypt_log_hex(cd, cd-&gt;u.luks1.hdr.keyblock[i].passwordSalt +
				 LUKS_SALTSIZE/2, LUKS_SALTSIZE/2, " ", 0, NULL);
			log_std(cd, "\n");

			log_std(cd, "\tKey material offset:\t%" PRIu32 "\n",
				cd-&gt;u.luks1.hdr.keyblock[i].keyMaterialOffset);
			log_std(cd, "\tAF stripes:            \t%" PRIu32 "\n",
				cd-&gt;u.luks1.hdr.keyblock[i].stripes);
		}
		else
			log_std(cd, "Key Slot %d: DISABLED\n", i);
	}
	return 0;
}

int crypt_dump(struct crypt_device *cd)
{
	if (!cd)
		return -EINVAL;
	if (isLUKS1(cd-&gt;type))
		return _luks_dump(cd);
	else if (isLUKS2(cd-&gt;type))
		return LUKS2_hdr_dump(cd, &amp;cd-&gt;u.luks2.hdr);
	else if (isVERITY(cd-&gt;type))
		return VERITY_dump(cd, &amp;cd-&gt;u.verity.hdr,
				   cd-&gt;u.verity.root_hash, cd-&gt;u.verity.root_hash_size,
				   cd-&gt;u.verity.fec_device);
	else if (isTCRYPT(cd-&gt;type))
		return TCRYPT_dump(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);
	else if (isINTEGRITY(cd-&gt;type))
		return INTEGRITY_dump(cd, crypt_data_device(cd), 0);
	else if (isBITLK(cd-&gt;type))
		return BITLK_dump(cd, crypt_data_device(cd), &amp;cd-&gt;u.bitlk.params);
	else if (isFVAULT2(cd-&gt;type))
		return FVAULT2_dump(cd, crypt_data_device(cd), &amp;cd-&gt;u.fvault2.params);

	log_err(cd, _("Dump operation is not supported for this device type."));
	return -EINVAL;
}

int crypt_dump_json(struct crypt_device *cd, const char **json, uint32_t flags)
{
	if (!cd || flags)
		return -EINVAL;
	if (isLUKS2(cd-&gt;type))
		return LUKS2_hdr_dump_json(cd, &amp;cd-&gt;u.luks2.hdr, json);

	log_err(cd, _("Dump operation is not supported for this device type."));
	return -EINVAL;
}

/* internal only */
const char *crypt_get_cipher_spec(struct crypt_device *cd)
{
	if (!cd)
		return NULL;
	else if (isLUKS2(cd-&gt;type))
		return LUKS2_get_cipher(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);
	else if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.cipher_spec;
	else if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.cipher_spec;
	else if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.cipher_spec;
	else if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.cipher_spec;
	else if (!cd-&gt;type &amp;&amp; !_init_by_name_crypt_none(cd))
		return cd-&gt;u.none.cipher_spec;

	return NULL;
}

const char *crypt_get_cipher(struct crypt_device *cd)
{
	if (!cd)
		return NULL;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.cipher;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.cipherName;

	if (isLUKS2(cd-&gt;type)) {
		if (crypt_parse_name_and_mode(LUKS2_get_cipher(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT),
					      cd-&gt;u.luks2.cipher, NULL, cd-&gt;u.luks2.cipher_mode))
			return NULL;
		return cd-&gt;u.luks2.cipher;
	}

	if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.cipher;

	if (isTCRYPT(cd-&gt;type))
		return cd-&gt;u.tcrypt.params.cipher;

	if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.params.cipher;

	if (isFVAULT2(cd-&gt;type))
		return cd-&gt;u.fvault2.params.cipher;

	if (!cd-&gt;type &amp;&amp; !_init_by_name_crypt_none(cd))
		return cd-&gt;u.none.cipher;

	return NULL;
}

const char *crypt_get_cipher_mode(struct crypt_device *cd)
{
	if (!cd)
		return NULL;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.cipher_mode;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.cipherMode;

	if (isLUKS2(cd-&gt;type)) {
		if (crypt_parse_name_and_mode(LUKS2_get_cipher(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT),
					      cd-&gt;u.luks2.cipher, NULL, cd-&gt;u.luks2.cipher_mode))
			return NULL;
		return cd-&gt;u.luks2.cipher_mode;
	}

	if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.cipher_mode;

	if (isTCRYPT(cd-&gt;type))
		return cd-&gt;u.tcrypt.params.mode;

	if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.params.cipher_mode;

	if (isFVAULT2(cd-&gt;type))
		return cd-&gt;u.fvault2.params.cipher_mode;

	if (!cd-&gt;type &amp;&amp; !_init_by_name_crypt_none(cd))
		return cd-&gt;u.none.cipher_mode;

	return NULL;
}

/* INTERNAL only */
const char *crypt_get_integrity(struct crypt_device *cd)
{
	if (!cd)
		return NULL;

	if (isINTEGRITY(cd-&gt;type))
		return cd-&gt;u.integrity.params.integrity;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_get_integrity(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);

	if (!cd-&gt;type &amp;&amp; *cd-&gt;u.none.integrity_spec)
		return cd-&gt;u.none.integrity_spec;

	return NULL;
}

/* INTERNAL only */
int crypt_get_integrity_key_size(struct crypt_device *cd)
{
	int key_size = 0;

	if (isINTEGRITY(cd-&gt;type) || isLUKS2(cd-&gt;type) || !cd-&gt;type)
		key_size = INTEGRITY_key_size(crypt_get_integrity(cd));

	return key_size &gt; 0 ? key_size : 0;
}

/* INTERNAL only */
int crypt_get_integrity_tag_size(struct crypt_device *cd)
{
	if (isINTEGRITY(cd-&gt;type))
		return cd-&gt;u.integrity.params.tag_size;

	if (isLUKS2(cd-&gt;type) || !cd-&gt;type)
		return INTEGRITY_tag_size(crypt_get_integrity(cd),
					  crypt_get_cipher(cd),
					  crypt_get_cipher_mode(cd));
	return 0;
}

int crypt_get_sector_size(struct crypt_device *cd)
{
	if (!cd)
		return SECTOR_SIZE;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.hdr.sector_size;

	if (isINTEGRITY(cd-&gt;type))
		return cd-&gt;u.integrity.params.sector_size;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_get_sector_size(&amp;cd-&gt;u.luks2.hdr);

	if (!cd-&gt;type &amp;&amp; cd-&gt;u.none.sector_size)
		return cd-&gt;u.none.sector_size;

	return SECTOR_SIZE;
}

const char *crypt_get_uuid(struct crypt_device *cd)
{
	if (!cd)
		return NULL;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.uuid;

	if (isLUKS2(cd-&gt;type))
		return cd-&gt;u.luks2.hdr.uuid;

	if (isVERITY(cd-&gt;type))
		return cd-&gt;u.verity.uuid;

	if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.params.guid;

	if (isFVAULT2(cd-&gt;type))
		return cd-&gt;u.fvault2.params.family_uuid;

	return NULL;
}

const char *crypt_get_device_name(struct crypt_device *cd)
{
	const char *path;

	if (!cd)
		return NULL;

	path = device_block_path(cd-&gt;device);
	if (!path)
		path = device_path(cd-&gt;device);

	return path;
}

const char *crypt_get_metadata_device_name(struct crypt_device *cd)
{
	const char *path;

	if (!cd || !cd-&gt;metadata_device)
		return NULL;

	path = device_block_path(cd-&gt;metadata_device);
	if (!path)
		path = device_path(cd-&gt;metadata_device);

	return path;
}

int crypt_get_volume_key_size(struct crypt_device *cd)
{
	int r;

	if (!cd)
		return 0;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.key_size;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.keyBytes;

	if (isLUKS2(cd-&gt;type)) {
		r = LUKS2_get_volume_key_size(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);
		if (r &lt; 0 &amp;&amp; cd-&gt;volume_key)
			r = cd-&gt;volume_key-&gt;keylength;
		return r &lt; 0 ? 0 : r;
	}

	if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.key_size;

	if (isVERITY(cd-&gt;type))
		return cd-&gt;u.verity.root_hash_size;

	if (isTCRYPT(cd-&gt;type))
		return cd-&gt;u.tcrypt.params.key_size;

	if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.params.key_size / 8;

	if (isFVAULT2(cd-&gt;type))
		return cd-&gt;u.fvault2.params.key_size;

	if (!cd-&gt;type &amp;&amp; !_init_by_name_crypt_none(cd))
		return cd-&gt;u.none.key_size;

	return 0;
}

int crypt_get_hw_encryption_key_size(struct crypt_device *cd)
{
	if (!cd || !isLUKS2(cd-&gt;type))
		return 0;

	return LUKS2_get_opal_key_size(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);
}

int crypt_keyslot_get_key_size(struct crypt_device *cd, int keyslot)
{
	if (!cd || !isLUKS(cd-&gt;type))
		return -EINVAL;

	if (keyslot &lt; 0 || keyslot &gt;= crypt_keyslot_max(cd-&gt;type))
		return -EINVAL;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.keyBytes;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_get_keyslot_stored_key_size(&amp;cd-&gt;u.luks2.hdr, keyslot);

	return -EINVAL;
}

int crypt_keyslot_set_encryption(struct crypt_device *cd,
	const char *cipher,
	size_t key_size)
{
	char *tmp;

	if (!cd || !cipher || !key_size || !isLUKS2(cd-&gt;type))
		return -EINVAL;

	if (LUKS2_keyslot_cipher_incompatible(cd, cipher))
		return -EINVAL;

	if (!(tmp = strdup(cipher)))
		return -ENOMEM;

	free(cd-&gt;u.luks2.keyslot_cipher);
	cd-&gt;u.luks2.keyslot_cipher = tmp;
	cd-&gt;u.luks2.keyslot_key_size = key_size;

	return 0;
}

const char *crypt_keyslot_get_encryption(struct crypt_device *cd, int keyslot, size_t *key_size)
{
	const char *cipher;

	if (!cd || !isLUKS(cd-&gt;type) || !key_size)
		return NULL;

	if (isLUKS1(cd-&gt;type)) {
		if (keyslot != CRYPT_ANY_SLOT &amp;&amp;
		    LUKS_keyslot_info(&amp;cd-&gt;u.luks1.hdr, keyslot) &lt; CRYPT_SLOT_ACTIVE)
			return NULL;
		*key_size = crypt_get_volume_key_size(cd);
		return cd-&gt;u.luks1.cipher_spec;
	}

	if (keyslot != CRYPT_ANY_SLOT)
		return LUKS2_get_keyslot_cipher(&amp;cd-&gt;u.luks2.hdr, keyslot, key_size);

	/* Keyslot encryption was set through crypt_keyslot_set_encryption() */
	if (cd-&gt;u.luks2.keyslot_cipher) {
		*key_size = cd-&gt;u.luks2.keyslot_key_size;
		return cd-&gt;u.luks2.keyslot_cipher;
	}

	if (LUKS2_segment_is_hw_opal(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT)) {
		/* Fallback to default LUKS2 keyslot encryption */
		*key_size = DEFAULT_LUKS2_KEYSLOT_KEYBITS / 8;
		return DEFAULT_LUKS2_KEYSLOT_CIPHER;
	}

	/* Try to reuse volume encryption parameters */
	cipher =  LUKS2_get_cipher(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);
	if (!LUKS2_keyslot_cipher_incompatible(cd, cipher)) {
		*key_size = crypt_get_volume_key_size(cd);
		if (*key_size)
			return cipher;
	}

	/* Fallback to default LUKS2 keyslot encryption */
	*key_size = DEFAULT_LUKS2_KEYSLOT_KEYBITS / 8;
	return DEFAULT_LUKS2_KEYSLOT_CIPHER;
}

int crypt_keyslot_get_pbkdf(struct crypt_device *cd, int keyslot, struct crypt_pbkdf_type *pbkdf)
{
	if (!cd || !pbkdf || keyslot == CRYPT_ANY_SLOT)
		return -EINVAL;

	if (isLUKS1(cd-&gt;type))
		return LUKS_keyslot_pbkdf(&amp;cd-&gt;u.luks1.hdr, keyslot, pbkdf);
	else if (isLUKS2(cd-&gt;type))
		return LUKS2_keyslot_pbkdf(&amp;cd-&gt;u.luks2.hdr, keyslot, pbkdf);

	return -EINVAL;
}

int crypt_set_data_offset(struct crypt_device *cd, uint64_t data_offset)
{
	if (!cd)
		return -EINVAL;
	if (data_offset % (MAX_SECTOR_SIZE &gt;&gt; SECTOR_SHIFT)) {
		log_err(cd, _("Data offset is not multiple of %u bytes."), MAX_SECTOR_SIZE);
		return -EINVAL;
	}

	cd-&gt;data_offset = data_offset;
	log_dbg(cd, "Data offset set to %" PRIu64 " (512-byte) sectors.", data_offset);

	return 0;
}

int crypt_set_metadata_size(struct crypt_device *cd,
	uint64_t metadata_size,
	uint64_t keyslots_size)
{
	if (!cd)
		return -EINVAL;

	if (cd-&gt;type &amp;&amp; !isLUKS2(cd-&gt;type))
		return -EINVAL;

	if (metadata_size &amp;&amp; LUKS2_check_metadata_area_size(metadata_size))
		return -EINVAL;

	if (keyslots_size &amp;&amp; LUKS2_check_keyslots_area_size(keyslots_size))
		return -EINVAL;

	cd-&gt;metadata_size = metadata_size;
	cd-&gt;keyslots_size = keyslots_size;

	return 0;
}

int crypt_get_metadata_size(struct crypt_device *cd,
	uint64_t *metadata_size,
	uint64_t *keyslots_size)
{
	uint64_t msize, ksize;

	if (!cd)
		return -EINVAL;

	if (!cd-&gt;type) {
		msize = cd-&gt;metadata_size;
		ksize = cd-&gt;keyslots_size;
	} else if (isLUKS1(cd-&gt;type)) {
		msize = LUKS_ALIGN_KEYSLOTS;
		ksize = LUKS_device_sectors(&amp;cd-&gt;u.luks1.hdr) * SECTOR_SIZE - msize;
	} else if (isLUKS2(cd-&gt;type)) {
		msize = LUKS2_metadata_size(&amp;cd-&gt;u.luks2.hdr);
		ksize = LUKS2_keyslots_size(&amp;cd-&gt;u.luks2.hdr);
	} else
		return -EINVAL;

	if (metadata_size)
		*metadata_size = msize;
	if (keyslots_size)
		*keyslots_size = ksize;

	return 0;
}

uint64_t crypt_get_data_offset(struct crypt_device *cd)
{
	if (!cd)
		return 0;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.hdr.offset;

	if (isLUKS1(cd-&gt;type))
		return cd-&gt;u.luks1.hdr.payloadOffset;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_get_data_offset(&amp;cd-&gt;u.luks2.hdr);

	if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.hdr.offset;

	if (isTCRYPT(cd-&gt;type))
		return TCRYPT_get_data_offset(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);

	if (isBITLK(cd-&gt;type))
		return cd-&gt;u.bitlk.params.volume_header_size / SECTOR_SIZE;

	if (isFVAULT2(cd-&gt;type))
		return cd-&gt;u.fvault2.params.log_vol_off / SECTOR_SIZE;

	return cd-&gt;data_offset;
}

uint64_t crypt_get_iv_offset(struct crypt_device *cd)
{
	if (!cd)
		return 0;

	if (isPLAIN(cd-&gt;type))
		return cd-&gt;u.plain.hdr.skip;

	if (isLOOPAES(cd-&gt;type))
		return cd-&gt;u.loopaes.hdr.skip;

	if (isTCRYPT(cd-&gt;type))
		return TCRYPT_get_iv_offset(cd, &amp;cd-&gt;u.tcrypt.hdr, &amp;cd-&gt;u.tcrypt.params);

	return 0;
}

crypt_keyslot_info crypt_keyslot_status(struct crypt_device *cd, int keyslot)
{
	if (_onlyLUKS(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0) &lt; 0)
		return CRYPT_SLOT_INVALID;

	if (isLUKS1(cd-&gt;type))
		return LUKS_keyslot_info(&amp;cd-&gt;u.luks1.hdr, keyslot);
	else if(isLUKS2(cd-&gt;type))
		return LUKS2_keyslot_info(&amp;cd-&gt;u.luks2.hdr, keyslot);

	return CRYPT_SLOT_INVALID;
}

int crypt_keyslot_max(const char *type)
{
	if (isLUKS1(type))
		return LUKS_NUMKEYS;

	if (isLUKS2(type))
		return LUKS2_KEYSLOTS_MAX;

	return -EINVAL;
}

int crypt_keyslot_area(struct crypt_device *cd,
	int keyslot,
	uint64_t *offset,
	uint64_t *length)
{
	if (_onlyLUKS(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0) || !offset || !length)
		return -EINVAL;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_keyslot_area(&amp;cd-&gt;u.luks2.hdr, keyslot, offset, length);

	return LUKS_keyslot_area(&amp;cd-&gt;u.luks1.hdr, keyslot, offset, length);
}

crypt_keyslot_priority crypt_keyslot_get_priority(struct crypt_device *cd, int keyslot)
{
	if (_onlyLUKS(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0))
		return CRYPT_SLOT_PRIORITY_INVALID;

	if (keyslot &lt; 0 || keyslot &gt;= crypt_keyslot_max(cd-&gt;type))
		return CRYPT_SLOT_PRIORITY_INVALID;

	if (isLUKS2(cd-&gt;type))
		return LUKS2_keyslot_priority_get(&amp;cd-&gt;u.luks2.hdr, keyslot);

	return CRYPT_SLOT_PRIORITY_NORMAL;
}

int crypt_keyslot_set_priority(struct crypt_device *cd, int keyslot, crypt_keyslot_priority priority)
{
	int r;

	log_dbg(cd, "Setting keyslot %d to priority %d.", keyslot, priority);

	if (priority == CRYPT_SLOT_PRIORITY_INVALID)
		return -EINVAL;

	if (keyslot &lt; 0 || keyslot &gt;= crypt_keyslot_max(cd-&gt;type))
		return -EINVAL;

	if ((r = onlyLUKS2(cd)))
		return r;

	return LUKS2_keyslot_priority_set(cd, &amp;cd-&gt;u.luks2.hdr, keyslot, priority, 1);
}

const char *crypt_get_type(struct crypt_device *cd)
{
	return cd ? cd-&gt;type : NULL;
}

const char *crypt_get_default_type(void)
{
	return DEFAULT_LUKS_FORMAT;
}

int crypt_get_hw_encryption_type(struct crypt_device *cd)
{
	if (!cd)
		return -EINVAL;

	if (isLUKS2(cd-&gt;type)) {
		if (LUKS2_segment_is_hw_opal_crypt(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT))
			return CRYPT_SW_AND_OPAL_HW;
		else if (LUKS2_segment_is_hw_opal_only(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT))
			return CRYPT_OPAL_HW_ONLY;
	}

	return CRYPT_SW_ONLY;
}

int crypt_get_verity_info(struct crypt_device *cd,
	struct crypt_params_verity *vp)
{
	if (!cd || !isVERITY(cd-&gt;type) || !vp)
		return -EINVAL;

	vp-&gt;data_device = device_path(cd-&gt;device);
	vp-&gt;hash_device = mdata_device_path(cd);
	vp-&gt;fec_device  = device_path(cd-&gt;u.verity.fec_device);
	vp-&gt;fec_area_offset = cd-&gt;u.verity.hdr.fec_area_offset;
	vp-&gt;fec_roots = cd-&gt;u.verity.hdr.fec_roots;
	vp-&gt;hash_name = cd-&gt;u.verity.hdr.hash_name;
	vp-&gt;salt = cd-&gt;u.verity.hdr.salt;
	vp-&gt;salt_size = cd-&gt;u.verity.hdr.salt_size;
	vp-&gt;data_block_size = cd-&gt;u.verity.hdr.data_block_size;
	vp-&gt;hash_block_size = cd-&gt;u.verity.hdr.hash_block_size;
	vp-&gt;data_size = cd-&gt;u.verity.hdr.data_size;
	vp-&gt;hash_area_offset = cd-&gt;u.verity.hdr.hash_area_offset;
	vp-&gt;hash_type = cd-&gt;u.verity.hdr.hash_type;
	vp-&gt;flags = cd-&gt;u.verity.hdr.flags &amp; (CRYPT_VERITY_NO_HEADER | CRYPT_VERITY_ROOT_HASH_SIGNATURE);
	return 0;
}

int crypt_get_integrity_info(struct crypt_device *cd,
	struct crypt_params_integrity *ip)
{
	if (!cd || !ip)
		return -EINVAL;

	if (isINTEGRITY(cd-&gt;type)) {
		ip-&gt;journal_size = cd-&gt;u.integrity.params.journal_size;
		ip-&gt;journal_watermark = cd-&gt;u.integrity.params.journal_watermark;
		ip-&gt;journal_commit_time = cd-&gt;u.integrity.params.journal_commit_time;
		ip-&gt;interleave_sectors = cd-&gt;u.integrity.params.interleave_sectors;
		ip-&gt;tag_size = cd-&gt;u.integrity.params.tag_size;
		ip-&gt;sector_size = cd-&gt;u.integrity.params.sector_size;
		ip-&gt;buffer_sectors = cd-&gt;u.integrity.params.buffer_sectors;

		ip-&gt;integrity = cd-&gt;u.integrity.params.integrity;
		ip-&gt;integrity_key_size = crypt_get_integrity_key_size(cd);

		ip-&gt;journal_integrity = cd-&gt;u.integrity.params.journal_integrity;
		ip-&gt;journal_integrity_key_size = cd-&gt;u.integrity.params.journal_integrity_key_size;
		ip-&gt;journal_integrity_key = NULL;

		ip-&gt;journal_crypt = cd-&gt;u.integrity.params.journal_crypt;
		ip-&gt;journal_crypt_key_size = cd-&gt;u.integrity.params.journal_crypt_key_size;
		ip-&gt;journal_crypt_key = NULL;
		return 0;
	} else if (isLUKS2(cd-&gt;type)) {
		ip-&gt;journal_size = 0; // FIXME
		ip-&gt;journal_watermark = 0; // FIXME
		ip-&gt;journal_commit_time = 0; // FIXME
		ip-&gt;interleave_sectors = 0; // FIXME
		ip-&gt;sector_size = crypt_get_sector_size(cd);
		ip-&gt;buffer_sectors = 0; // FIXME

		ip-&gt;integrity = LUKS2_get_integrity(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);
		ip-&gt;integrity_key_size = crypt_get_integrity_key_size(cd);
		ip-&gt;tag_size = INTEGRITY_tag_size(ip-&gt;integrity, crypt_get_cipher(cd), crypt_get_cipher_mode(cd));

		ip-&gt;journal_integrity = NULL;
		ip-&gt;journal_integrity_key_size = 0;
		ip-&gt;journal_integrity_key = NULL;

		ip-&gt;journal_crypt = NULL;
		ip-&gt;journal_crypt_key_size = 0;
		ip-&gt;journal_crypt_key = NULL;
		return 0;
	} else if (!cd-&gt;type) {
		memset(ip, 0, sizeof(*ip));
		ip-&gt;integrity = crypt_get_integrity(cd);
		ip-&gt;integrity_key_size = crypt_get_integrity_key_size(cd);
		ip-&gt;tag_size = crypt_get_integrity_tag_size(cd);
	}

	return -ENOTSUP;
}

int crypt_convert(struct crypt_device *cd,
		  const char *type,
		  void *params)
{
	struct luks_phdr hdr1;
	struct luks2_hdr hdr2;
	int r;

	if (!type)
		return -EINVAL;

	log_dbg(cd, "Converting LUKS device to type %s", type);

	if ((r = onlyLUKSnoRequirements(cd)))
		return r;

	if (isLUKS1(cd-&gt;type) &amp;&amp; isLUKS2(type))
		r = LUKS2_luks1_to_luks2(cd, &amp;cd-&gt;u.luks1.hdr, &amp;hdr2);
	else if (isLUKS2(cd-&gt;type) &amp;&amp; isLUKS1(type))
		r = LUKS2_luks2_to_luks1(cd, &amp;cd-&gt;u.luks2.hdr, &amp;hdr1);
	else
		return -EINVAL;

	if (r &lt; 0) {
		/* in-memory header may be invalid after failed conversion */
		_luks2_rollback(cd);
		if (r == -EBUSY)
			log_err(cd, _("Cannot convert device %s which is still in use."), mdata_device_path(cd));
		return r;
	}

	crypt_free_type(cd, NULL);

	return crypt_load(cd, type, params);
}

/* Internal access function to header pointer */
void *crypt_get_hdr(struct crypt_device *cd, const char *type)
{
	/* One type can be OPAL */
	if (isLUKS2(type) &amp;&amp; isLUKS2(cd-&gt;type))
		return &amp;cd-&gt;u.luks2.hdr;

	/* If requested type differs, ignore it */
	if (strcmp(cd-&gt;type, type))
		return NULL;

	if (isPLAIN(cd-&gt;type))
		return &amp;cd-&gt;u.plain;

	if (isLUKS1(cd-&gt;type))
		return &amp;cd-&gt;u.luks1.hdr;

	if (isLOOPAES(cd-&gt;type))
		return &amp;cd-&gt;u.loopaes;

	if (isVERITY(cd-&gt;type))
		return &amp;cd-&gt;u.verity;

	if (isTCRYPT(cd-&gt;type))
		return &amp;cd-&gt;u.tcrypt;

	return NULL;
}

/* internal only */
struct luks2_reencrypt *crypt_get_luks2_reencrypt(struct crypt_device *cd)
{
	return cd-&gt;u.luks2.rh;
}

/* internal only */
void crypt_set_luks2_reencrypt(struct crypt_device *cd, struct luks2_reencrypt *rh)
{
	cd-&gt;u.luks2.rh = rh;
}

/*
 * Token handling
 */
int crypt_activate_by_token_pin(struct crypt_device *cd, const char *name,
	const char *type, int token, const char *pin, size_t pin_size,
	void *usrptr, uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	crypt_keyslot_unlock_by_token_init_internal(&amp;kc, token, type, pin, pin_size, usrptr);
	r = crypt_activate_by_keyslot_context(cd, name, CRYPT_ANY_SLOT, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

int crypt_activate_by_token(struct crypt_device *cd,
	const char *name, int token, void *usrptr, uint32_t flags)
{
	return crypt_activate_by_token_pin(cd, name, NULL, token, NULL, 0, usrptr, flags);
}

int crypt_token_json_get(struct crypt_device *cd, int token, const char **json)
{
	int r;

	if (!json)
		return -EINVAL;

	log_dbg(cd, "Requesting JSON for token %d.", token);

	if ((r = onlyLUKS2unrestricted(cd)))
		return r;

	return LUKS2_token_json_get(&amp;cd-&gt;u.luks2.hdr, token, json) ?: token;
}

int crypt_token_json_set(struct crypt_device *cd, int token, const char *json)
{
	int r;

	log_dbg(cd, "Updating JSON for token %d.", token);

	if ((r = onlyLUKS2(cd)))
		return r;

	return LUKS2_token_create(cd, &amp;cd-&gt;u.luks2.hdr, token, json, 1);
}

crypt_token_info crypt_token_status(struct crypt_device *cd, int token, const char **type)
{
	if (_onlyLUKS2(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0))
		return CRYPT_TOKEN_INVALID;

	return LUKS2_token_status(cd, &amp;cd-&gt;u.luks2.hdr, token, type);
}

int crypt_token_max(const char *type)
{
	if (isLUKS2(type))
		return LUKS2_TOKENS_MAX;

	return -EINVAL;
}

int crypt_token_luks2_keyring_get(struct crypt_device *cd,
	int token,
	struct crypt_token_params_luks2_keyring *params)
{
	crypt_token_info token_info;
	const char *type;
	int r;

	if (!params)
		return -EINVAL;

	log_dbg(cd, "Requesting LUKS2 keyring token %d.", token);

	if ((r = onlyLUKS2unrestricted(cd)))
		return r;

	token_info = LUKS2_token_status(cd, &amp;cd-&gt;u.luks2.hdr, token, &amp;type);
	switch (token_info) {
	case CRYPT_TOKEN_INVALID:
		log_dbg(cd, "Token %d is invalid.", token);
		return -EINVAL;
	case CRYPT_TOKEN_INACTIVE:
		log_dbg(cd, "Token %d is inactive.", token);
		return -EINVAL;
	case CRYPT_TOKEN_INTERNAL:
		if (!strcmp(type, LUKS2_TOKEN_KEYRING))
			break;
		/* Fall through */
	case CRYPT_TOKEN_INTERNAL_UNKNOWN:
	case CRYPT_TOKEN_EXTERNAL:
	case CRYPT_TOKEN_EXTERNAL_UNKNOWN:
		log_dbg(cd, "Token %d has unexpected type %s.", token, type);
		return -EINVAL;
	}

	return LUKS2_token_keyring_get(&amp;cd-&gt;u.luks2.hdr, token, params);
}

int crypt_token_luks2_keyring_set(struct crypt_device *cd,
	int token,
	const struct crypt_token_params_luks2_keyring *params)
{
	int r;
	char json[4096];

	if (!params || !params-&gt;key_description)
		return -EINVAL;

	log_dbg(cd, "Creating new LUKS2 keyring token (%d).", token);

	if ((r = onlyLUKS2(cd)))
		return r;

	r = LUKS2_token_keyring_json(json, sizeof(json), params);
	if (r &lt; 0)
		return r;

	return LUKS2_token_create(cd, &amp;cd-&gt;u.luks2.hdr, token, json, 1);
}

int crypt_token_assign_keyslot(struct crypt_device *cd, int token, int keyslot)
{
	int r;

	if ((r = onlyLUKS2(cd)))
		return r;

	return LUKS2_token_assign(cd, &amp;cd-&gt;u.luks2.hdr, keyslot, token, 1, 1);
}

int crypt_token_unassign_keyslot(struct crypt_device *cd, int token, int keyslot)
{
	int r;

	if ((r = onlyLUKS2(cd)))
		return r;

	return LUKS2_token_assign(cd, &amp;cd-&gt;u.luks2.hdr, keyslot, token, 0, 1);
}

int crypt_token_is_assigned(struct crypt_device *cd, int token, int keyslot)
{
	int r;

	if ((r = _onlyLUKS2(cd, CRYPT_CD_QUIET | CRYPT_CD_UNRESTRICTED, 0)))
		return r;

	return LUKS2_token_is_assigned(&amp;cd-&gt;u.luks2.hdr, keyslot, token);
}

/* Internal only */
int crypt_metadata_locking_enabled(void)
{
	return _metadata_locking;
}

int crypt_metadata_locking(struct crypt_device *cd __attribute__((unused)), int enable)
{
	if (enable &amp;&amp; !_metadata_locking)
		return -EPERM;

	_metadata_locking = enable ? 1 : 0;
	return 0;
}

int crypt_persistent_flags_set(struct crypt_device *cd, crypt_flags_type type, uint32_t flags)
{
	int r;

	if ((r = onlyLUKS2(cd)))
		return r;

	if (type == CRYPT_FLAGS_ACTIVATION)
		return LUKS2_config_set_flags(cd, &amp;cd-&gt;u.luks2.hdr, flags);

	if (type == CRYPT_FLAGS_REQUIREMENTS)
		return LUKS2_config_set_requirements(cd, &amp;cd-&gt;u.luks2.hdr, flags, true);

	return -EINVAL;
}

int crypt_persistent_flags_get(struct crypt_device *cd, crypt_flags_type type, uint32_t *flags)
{
	int r;

	if (!flags)
		return -EINVAL;

	if ((r = onlyLUKS2unrestricted(cd)))
		return r;

	if (type == CRYPT_FLAGS_ACTIVATION)
		return LUKS2_config_get_flags(cd, &amp;cd-&gt;u.luks2.hdr, flags);

	if (type == CRYPT_FLAGS_REQUIREMENTS)
		return LUKS2_config_get_requirements(cd, &amp;cd-&gt;u.luks2.hdr, flags);

	return -EINVAL;
}

static int update_volume_key_segment_digest(struct crypt_device *cd, struct luks2_hdr *hdr, int digest, int commit)
{
	int r;

	/* Remove any assignments in memory */
	r = LUKS2_digest_segment_assign(cd, hdr, CRYPT_DEFAULT_SEGMENT, CRYPT_ANY_DIGEST, 0, 0);
	if (r)
		return r;

	/* Assign it to the specific digest */
	return LUKS2_digest_segment_assign(cd, hdr, CRYPT_DEFAULT_SEGMENT, digest, 1, commit);
}

static int verify_and_update_segment_digest(struct crypt_device *cd,
		struct luks2_hdr *hdr, int keyslot, struct crypt_keyslot_context *kc)
{
	int digest, r;
	struct volume_key *vk = NULL;

	assert(kc);
	assert(kc-&gt;get_luks2_key);
	assert(keyslot &gt;= 0);

	r = kc-&gt;get_luks2_key(cd, kc, keyslot, CRYPT_ANY_SEGMENT, &amp;vk);
	if (r &lt; 0)
		return r;

	/* check volume_key (param) digest matches keyslot digest */
	r = LUKS2_digest_verify(cd, hdr, vk, keyslot);
	if (r &lt; 0)
		goto out;
	digest = r;

	/* nothing to do, volume key in keyslot is already assigned to default segment */
	r = LUKS2_digest_verify_by_segment(cd, hdr, CRYPT_DEFAULT_SEGMENT, vk);
	if (r &gt;= 0)
		goto out;

	/* FIXME: check new volume key is usable with current default segment */

	r = update_volume_key_segment_digest(cd, &amp;cd-&gt;u.luks2.hdr, digest, 1);
	if (r)
		log_err(cd, _("Failed to assign keyslot %u as the new volume key."), keyslot);
out:
	crypt_free_volume_key(vk);

	return r &lt; 0 ? r : keyslot;
}

static int luks2_keyslot_add_by_verified_volume_key(struct crypt_device *cd,
	int keyslot_new,
	const char *new_passphrase,
	size_t new_passphrase_size,
	struct volume_key *vk)
{
	int r;
	struct luks2_keyslot_params params;

	assert(cd);
	assert(keyslot_new &gt;= 0);
	assert(new_passphrase);
	assert(vk);
	assert(crypt_volume_key_get_id(vk) &gt;= 0);

	r = LUKS2_keyslot_params_default(cd, &amp;cd-&gt;u.luks2.hdr, &amp;params);
	if (r &lt; 0) {
		log_err(cd, _("Failed to initialize default LUKS2 keyslot parameters."));
		return r;
	}

	r = LUKS2_digest_assign(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_new, crypt_volume_key_get_id(vk), 1, 0);
	if (r &lt; 0) {
		log_err(cd, _("Failed to assign keyslot %d to digest."), keyslot_new);
		return r;
	}

	r = LUKS2_keyslot_store(cd,  &amp;cd-&gt;u.luks2.hdr, keyslot_new,
				CONST_CAST(char*)new_passphrase,
				new_passphrase_size, vk, &amp;params);

	return r &lt; 0 ? r : keyslot_new;
}

static int luks2_keyslot_add_by_volume_key(struct crypt_device *cd,
	int keyslot_new,
	const char *new_passphrase,
	size_t new_passphrase_size,
	struct volume_key *vk)
{
	int r;

	assert(cd);
	assert(keyslot_new &gt;= 0);
	assert(new_passphrase);
	assert(vk);

	r = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, vk);
	if (r &gt;= 0)
		crypt_volume_key_set_id(vk, r);

	if (r &lt; 0) {
		log_err(cd, _("Volume key does not match the volume."));
		return r;
	}

	return luks2_keyslot_add_by_verified_volume_key(cd, keyslot_new, new_passphrase, new_passphrase_size, vk);
}

static int luks1_keyslot_add_by_volume_key(struct crypt_device *cd,
	int keyslot_new,
	const char *new_passphrase,
	size_t new_passphrase_size,
	struct volume_key *vk)
{
	int r;

	assert(cd);
	assert(keyslot_new &gt;= 0);
	assert(new_passphrase);
	assert(vk);

	r = LUKS_verify_volume_key(&amp;cd-&gt;u.luks1.hdr, vk);
	if (r &lt; 0) {
		log_err(cd, _("Volume key does not match the volume."));
		return r;
	}

	r = LUKS_set_key(keyslot_new, CONST_CAST(char*)new_passphrase,
			 new_passphrase_size, &amp;cd-&gt;u.luks1.hdr, vk, cd);

	return r &lt; 0 ? r : keyslot_new;
}

static int keyslot_add_by_key(struct crypt_device *cd,
	bool is_luks1,
	int keyslot_new,
	const char *new_passphrase,
	size_t new_passphrase_size,
	struct volume_key *vk,
	uint32_t flags)
{
	int r, digest;

	assert(cd);
	assert(keyslot_new &gt;= 0);
	assert(new_passphrase);
	assert(vk);

	if (!flags)
		return is_luks1 ? luks1_keyslot_add_by_volume_key(cd, keyslot_new, new_passphrase, new_passphrase_size, vk) :
				  luks2_keyslot_add_by_volume_key(cd, keyslot_new, new_passphrase, new_passphrase_size, vk);

	if (is_luks1)
		return -EINVAL;

	digest = LUKS2_digest_verify_by_segment(cd, &amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT, vk);
	if (digest &gt;= 0) /* if key matches volume key digest tear down new vk flag */
		flags &amp;= ~CRYPT_VOLUME_KEY_SET;
	else {
		/* if key matches any existing digest, do not create new digest */
		if ((flags &amp; CRYPT_VOLUME_KEY_DIGEST_REUSE))
			digest = LUKS2_digest_any_matching(cd, &amp;cd-&gt;u.luks2.hdr, vk);

		/* no segment flag or new vk flag requires new key digest */
		if (flags &amp; (CRYPT_VOLUME_KEY_NO_SEGMENT | CRYPT_VOLUME_KEY_SET)) {
			if (digest &lt; 0 || !(flags &amp; CRYPT_VOLUME_KEY_DIGEST_REUSE))
				digest = LUKS2_digest_create(cd, "pbkdf2", &amp;cd-&gt;u.luks2.hdr, vk);
		}
	}

	r = digest;
	if (r &lt; 0) {
		log_err(cd, _("Volume key does not match the volume."));
		return r;
	}

	crypt_volume_key_set_id(vk, digest);

	if (flags &amp; CRYPT_VOLUME_KEY_SET) {
		r = update_volume_key_segment_digest(cd, &amp;cd-&gt;u.luks2.hdr, digest, 0);
		if (r &lt; 0)
			log_err(cd, _("Failed to assign keyslot %u as the new volume key."), keyslot_new);
	}

	if (r &gt;= 0)
		r = luks2_keyslot_add_by_verified_volume_key(cd, keyslot_new, new_passphrase, new_passphrase_size, vk);

	return r &lt; 0 ? r : keyslot_new;
}

int crypt_keyslot_add_by_key(struct crypt_device *cd,
	int keyslot,
	const char *volume_key,
	size_t volume_key_size,
	const char *passphrase,
	size_t passphrase_size,
	uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc, new_kc;

	if (!passphrase || ((flags &amp; CRYPT_VOLUME_KEY_NO_SEGMENT) &amp;&amp;
			    (flags &amp; CRYPT_VOLUME_KEY_SET)))
		return -EINVAL;

	if ((r = onlyLUKS(cd)) &lt; 0)
		return r;

	if ((flags &amp; CRYPT_VOLUME_KEY_SET) &amp;&amp; crypt_keyslot_status(cd, keyslot) &gt; CRYPT_SLOT_INACTIVE &amp;&amp;
	    isLUKS2(cd-&gt;type)) {
		if (volume_key)
			crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
		else
			crypt_keyslot_unlock_by_passphrase_init_internal(&amp;kc, passphrase, passphrase_size);

		r = verify_and_update_segment_digest(cd, &amp;cd-&gt;u.luks2.hdr, keyslot, &amp;kc);

		crypt_keyslot_context_destroy_internal(&amp;kc);

		return r;
	}

	crypt_keyslot_unlock_by_key_init_internal(&amp;kc, volume_key, volume_key_size);
	crypt_keyslot_unlock_by_passphrase_init_internal(&amp;new_kc, passphrase, passphrase_size);

	r = crypt_keyslot_add_by_keyslot_context(cd, CRYPT_ANY_SLOT, &amp;kc, keyslot, &amp;new_kc, flags);

	crypt_keyslot_context_destroy_internal(&amp;kc);
	crypt_keyslot_context_destroy_internal(&amp;new_kc);

	return r;
}

int crypt_keyslot_add_by_keyslot_context(struct crypt_device *cd,
	int keyslot_existing,
	struct crypt_keyslot_context *kc,
	int keyslot_new,
	struct crypt_keyslot_context *new_kc,
	uint32_t flags)
{
	bool is_luks1;
	int active_slots, r;
	const char *new_passphrase;
	size_t new_passphrase_size;
	struct volume_key *vk = NULL;

	if (!kc || ((flags &amp; CRYPT_VOLUME_KEY_NO_SEGMENT) &amp;&amp;
		    (flags &amp; CRYPT_VOLUME_KEY_SET)))
		return -EINVAL;

	r = flags ? onlyLUKS2(cd) : onlyLUKS(cd);
	if (r)
		return r;

	if ((flags &amp; CRYPT_VOLUME_KEY_SET) &amp;&amp; crypt_keyslot_status(cd, keyslot_existing) &gt; CRYPT_SLOT_INACTIVE)
		return verify_and_update_segment_digest(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_existing, kc);

	if (!new_kc || !new_kc-&gt;get_passphrase)
		return -EINVAL;

	log_dbg(cd, "Adding new keyslot %d by %s%s, volume key provided by %s (%d).",
		keyslot_new, keyslot_context_type_string(new_kc),
		(flags &amp; CRYPT_VOLUME_KEY_NO_SEGMENT) ? " unassigned to a crypt segment" : "",
		keyslot_context_type_string(kc), keyslot_existing);

	r = keyslot_verify_or_find_empty(cd, &amp;keyslot_new);
	if (r &lt; 0)
		return r;

	is_luks1 = isLUKS1(cd-&gt;type);
	if (is_luks1)
		active_slots = LUKS_keyslot_active_count(&amp;cd-&gt;u.luks1.hdr);
	else
		active_slots = LUKS2_keyslot_active_count(&amp;cd-&gt;u.luks2.hdr, CRYPT_DEFAULT_SEGMENT);

	if (active_slots &lt; 0)
		return -EINVAL;

	if (active_slots == 0 &amp;&amp; kc-&gt;type != CRYPT_KC_TYPE_KEY)
		r = -ENOENT;
	else if (is_luks1 &amp;&amp; kc-&gt;get_luks1_volume_key)
		r = kc-&gt;get_luks1_volume_key(cd, kc, keyslot_existing, &amp;vk);
	else if (!is_luks1 &amp;&amp; kc-&gt;get_luks2_volume_key)
		r = kc-&gt;get_luks2_volume_key(cd, kc, keyslot_existing, &amp;vk);
	else
		return -EINVAL;

	if (r == -ENOENT) {
		if ((flags &amp; CRYPT_VOLUME_KEY_NO_SEGMENT) &amp;&amp; kc-&gt;type == CRYPT_KC_TYPE_KEY) {
			if (!(vk = crypt_generate_volume_key(cd, kc-&gt;u.k.volume_key_size)))
				return -ENOMEM;
			r = 0;
		} else if (cd-&gt;volume_key) {
			if (!(vk = crypt_alloc_volume_key(cd-&gt;volume_key-&gt;keylength, cd-&gt;volume_key-&gt;key)))
				return -ENOMEM;
			r = 0;
		} else if (active_slots == 0) {
			log_err(cd, _("Cannot add key slot, all slots disabled and no volume key provided."));
			r = -EINVAL;
		}
	}

	if (r &lt; 0)
		return r;

	r = new_kc-&gt;get_passphrase(cd, new_kc, &amp;new_passphrase, &amp;new_passphrase_size);
	/* If new keyslot context is token just assign it to new keyslot */
	if (r &gt;= 0 &amp;&amp; new_kc-&gt;type == CRYPT_KC_TYPE_TOKEN &amp;&amp; !is_luks1)
		r = LUKS2_token_assign(cd, &amp;cd-&gt;u.luks2.hdr, keyslot_new, new_kc-&gt;u.t.id, 1, 0);
	if (r &gt;= 0)
		r = keyslot_add_by_key(cd, is_luks1, keyslot_new, new_passphrase, new_passphrase_size, vk, flags);

	crypt_free_volume_key(vk);

	if (r &lt; 0) {
		_luks2_rollback(cd);
		return r;
	}

	return keyslot_new;
}

/*
 * Keyring handling
 */
int crypt_use_keyring_for_vk(struct crypt_device *cd)
{
	uint32_t dmc_flags;

	/* dm backend must be initialized */
	if (!cd || !isLUKS2(cd-&gt;type))
		return 0;

	if (!_vk_via_keyring || !kernel_keyring_support())
		return 0;

	if (dm_flags(cd, DM_CRYPT, &amp;dmc_flags))
		return dmcrypt_keyring_bug() ? 0 : 1;

	return (dmc_flags &amp; DM_KERNEL_KEYRING_SUPPORTED);
}

int crypt_volume_key_keyring(struct crypt_device *cd __attribute__((unused)), int enable)
{
	_vk_via_keyring = enable ? 1 : 0;
	return 0;
}

/* internal only */
int crypt_volume_key_load_in_keyring(struct crypt_device *cd, struct volume_key *vk)
{
	key_serial_t kid;

	if (!vk || !cd)
		return -EINVAL;

	if (!vk-&gt;key_description) {
		log_dbg(cd, "Invalid key description");
		return -EINVAL;
	}

	log_dbg(cd, "Loading key (type logon, name %s) in thread keyring.", vk-&gt;key_description);

	kid = keyring_add_key_in_thread_keyring(LOGON_KEY, vk-&gt;key_description, vk-&gt;key, vk-&gt;keylength);
	if (kid &lt; 0) {
		log_dbg(cd, "keyring_add_key_in_thread_keyring failed (error %d)", errno);
		log_err(cd, _("Failed to load key in kernel keyring."));
	} else
		crypt_set_key_in_keyring(cd, 1);

	return kid &lt; 0 ? -EINVAL : 0;
}

/* internal only */
int crypt_keyring_get_user_key(struct crypt_device *cd,
		const char *key_description,
		char **key,
		size_t *key_size)
{
	int r;
	key_serial_t kid;

	if (!key_description || !key || !key_size)
		return -EINVAL;

	log_dbg(cd, "Requesting key %s (user type)", key_description);

	kid = keyring_request_key_id(USER_KEY, key_description);
	if (kid == -ENOTSUP) {
		log_dbg(cd, "Kernel keyring features disabled.");
		return -ENOTSUP;
	} else if (kid &lt; 0) {
		log_dbg(cd, "keyring_request_key_id failed with errno %d.", errno);
		return -EINVAL;
	}

	log_dbg(cd, "Reading content of kernel key (id %" PRIi32 ").", kid);

	r = keyring_read_key(kid, key, key_size);
	if (r &lt; 0)
		log_dbg(cd, "keyring_read_key failed with errno %d.", errno);

	return r;
}

/* internal only */
int crypt_keyring_get_key_by_name(struct crypt_device *cd,
		const char *key_description,
		char **key,
		size_t *key_size)
{
	int r;
	key_serial_t kid;

	if (!key_description || !key || !key_size)
		return -EINVAL;

	log_dbg(cd, "Searching for key by name %s.", key_description);

	kid = keyring_find_key_id_by_name(key_description);
	if (kid == -ENOTSUP) {
		log_dbg(cd, "Kernel keyring features disabled.");
		return -ENOTSUP;
	} else if (kid &lt; 0) {
		log_dbg(cd, "keyring_find_key_id_by_name failed with errno %d.", errno);
		return -EINVAL;
	}
	else if (kid == 0) {
		log_dbg(cd, "keyring_find_key_id_by_name failed with errno %d.", ENOENT);
		return -ENOENT;
	}

	log_dbg(cd, "Reading content of kernel key (id %" PRIi32 ").", kid);

	r = keyring_read_key(kid, key, key_size);
	if (r &lt; 0)
		log_dbg(cd, "keyring_read_key failed with errno %d.", errno);

	return r;
}

/* internal only */
int crypt_key_in_keyring(struct crypt_device *cd)
{
	return cd ? cd-&gt;key_in_keyring : 0;
}

/* internal only */
void crypt_set_key_in_keyring(struct crypt_device *cd, unsigned key_in_keyring)
{
	if (!cd)
		return;

	cd-&gt;key_in_keyring = key_in_keyring;
}

/* internal only */
void crypt_drop_keyring_key_by_description(struct crypt_device *cd, const char *key_description, key_type_t ktype)
{
	key_serial_t kid;
	const char *type_name = key_type_name(ktype);

	if (!key_description || !type_name)
		return;

	log_dbg(cd, "Requesting kernel key %s (type %s) for unlink from thread keyring.", key_description, type_name);

	crypt_set_key_in_keyring(cd, 0);

	kid = keyring_request_key_id(ktype, key_description);
	if (kid == -ENOTSUP) {
		log_dbg(cd, "Kernel keyring features disabled.");
		return;
	} else if (kid &lt; 0) {
		log_dbg(cd, "keyring_request_key_id failed with errno %d.", errno);
		return;
	}

	log_dbg(cd, "Unlinking volume key (id: %" PRIi32 ") from thread keyring.", kid);

	if (!keyring_unlink_key_from_thread_keyring(kid))
		return;

	log_dbg(cd, "keyring_unlink_key_from_thread_keyring failed with errno %d.", errno);
	log_err(cd, _("Failed to unlink volume key from thread keyring."));

}

int crypt_set_keyring_to_link(struct crypt_device *cd, const char *key_description,
			      const char *old_key_description,
			      const char *key_type_desc, const char *keyring_to_link_vk)
{
	key_type_t key_type = USER_KEY;
	const char *name1 = NULL, *name2 = NULL;
	int32_t id = 0;
	int r, ri;
	struct luks2_hdr *hdr;
	unsigned user_descriptions_count, vks_count = 1;

	if (!cd || ((!key_description &amp;&amp; !old_key_description) &amp;&amp; (keyring_to_link_vk || key_type_desc)) ||
	    ((key_description || old_key_description) &amp;&amp; !keyring_to_link_vk))
		return -EINVAL;

	hdr = crypt_get_hdr(cd, CRYPT_LUKS2);

	/* if only one key description is supplied, force it to be the first one */
	if (!key_description &amp;&amp; old_key_description)
		return -EINVAL;

	if ((r = _onlyLUKS2(cd, 0, CRYPT_REQUIREMENT_OPAL | CRYPT_REQUIREMENT_ONLINE_REENCRYPT)))
		return r;

	if (key_type_desc)
		key_type = key_type_by_name(key_type_desc);
	if (key_type != LOGON_KEY &amp;&amp; key_type != USER_KEY)
		return -EINVAL;

	ri = crypt_reencrypt_status(cd, NULL);
	if (ri &gt; CRYPT_REENCRYPT_NONE &amp;&amp; ri &lt; CRYPT_REENCRYPT_INVALID)
		vks_count = LUKS2_reencrypt_vks_count(hdr);

	user_descriptions_count = (key_description ? 1 : 0) + (old_key_description ? 1 : 0);
	if (user_descriptions_count != 0 &amp;&amp; vks_count &gt; user_descriptions_count)
		return -ESRCH;

	if (keyring_to_link_vk) {
		id = keyring_find_keyring_id_by_name(keyring_to_link_vk);
		if (id == 0) {
			log_err(cd, _("Could not find keyring described by \"%s\"."), keyring_to_link_vk);
			return -EINVAL;
		}
		if (key_description &amp;&amp; !(name1 = strdup(key_description)))
			return -ENOMEM;
		if (old_key_description &amp;&amp; !(name2 = strdup(old_key_description))) {
			free(CONST_CAST(void*)name1);
			return -ENOMEM;
		}
	}

	cd-&gt;keyring_key_type = key_type;

	free(CONST_CAST(void*)cd-&gt;user_key_name1);
	free(CONST_CAST(void*)cd-&gt;user_key_name2);
	cd-&gt;user_key_name1 = name1;
	cd-&gt;user_key_name2 = name2;
	cd-&gt;keyring_to_link_vk = id;
	cd-&gt;link_vk_to_keyring = id != 0;

	return 0;
}

/* internal only */
void crypt_drop_keyring_key(struct crypt_device *cd, struct volume_key *vks)
{
	struct volume_key *vk = vks;

	while (vk) {
		crypt_drop_keyring_key_by_description(cd, vk-&gt;key_description, LOGON_KEY);
		vk = crypt_volume_key_next(vk);
	}
}

int crypt_activate_by_keyring(struct crypt_device *cd,
			      const char *name,
			      const char *key_description,
			      int keyslot,
			      uint32_t flags)
{
	int r;
	struct crypt_keyslot_context kc;

	if (!cd || !key_description)
		return -EINVAL;

	crypt_keyslot_unlock_by_keyring_internal(&amp;kc, key_description);
	r = crypt_activate_by_keyslot_context(cd, name, keyslot, &amp;kc, CRYPT_ANY_SLOT, NULL, flags);
	crypt_keyslot_context_destroy_internal(&amp;kc);

	return r;
}

/*
 * Workaround for serialization of parallel activation and memory-hard PBKDF
 * In specific situation (systemd activation) this causes OOM killer activation.
 * For now, let's provide this ugly way to serialize unlocking of devices.
 */
int crypt_serialize_lock(struct crypt_device *cd)
{
	if (!cd-&gt;memory_hard_pbkdf_lock_enabled)
		return 0;

	log_dbg(cd, "Taking global memory-hard access serialization lock.");
	if (crypt_write_lock(cd, "memory-hard-access", true, &amp;cd-&gt;pbkdf_memory_hard_lock)) {
		log_err(cd, _("Failed to acquire global memory-hard access serialization lock."));
		cd-&gt;pbkdf_memory_hard_lock = NULL;
		return -EINVAL;
	}

	return 0;
}

void crypt_serialize_unlock(struct crypt_device *cd)
{
	if (!cd-&gt;memory_hard_pbkdf_lock_enabled)
		return;

	crypt_unlock_internal(cd, cd-&gt;pbkdf_memory_hard_lock);
	cd-&gt;pbkdf_memory_hard_lock = NULL;
}

crypt_reencrypt_info crypt_reencrypt_status(struct crypt_device *cd,
		struct crypt_params_reencrypt *params)
{
	if (params)
		memset(params, 0, sizeof(*params));

	if (!cd || !isLUKS(cd-&gt;type))
		return CRYPT_REENCRYPT_INVALID;

	if (isLUKS1(cd-&gt;type))
		return CRYPT_REENCRYPT_NONE;

	if (_onlyLUKS2(cd, CRYPT_CD_QUIET, CRYPT_REQUIREMENT_ONLINE_REENCRYPT))
		return CRYPT_REENCRYPT_INVALID;

	return LUKS2_reencrypt_get_params(&amp;cd-&gt;u.luks2.hdr, params);
}

static void __attribute__((destructor)) libcryptsetup_exit(void)
{
	crypt_token_unload_external_all(NULL);

	crypt_backend_destroy();
	crypt_random_exit();
}
</file>
  <file fpath="/out/src/cryptsetup/lib/utils.c">/*
 * utils - miscellaneous device utilities for cryptsetup
 *
 * Copyright (C) 2004 Jana Saout &lt;jana@saout.de&gt;
 * Copyright (C) 2004-2007 Clemens Fruhwirth &lt;clemens@endorphin.org&gt;
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;stdio.h&gt;
#include &lt;errno.h&gt;
#include &lt;sys/mman.h&gt;
#include &lt;sys/resource.h&gt;
#include &lt;sys/stat.h&gt;
#include &lt;sys/utsname.h&gt;

#include "internal.h"

size_t crypt_getpagesize(void)
{
	long r = sysconf(_SC_PAGESIZE);
	return r &lt;= 0 ? DEFAULT_MEM_ALIGNMENT : (size_t)r;
}

unsigned crypt_cpusonline(void)
{
	long r = sysconf(_SC_NPROCESSORS_ONLN);
	return r &lt; 0 ? 1 : r;
}

uint64_t crypt_getphysmemory_kb(void)
{
	long pagesize, phys_pages;
	uint64_t phys_memory_kb, page_size_kb;

	pagesize = sysconf(_SC_PAGESIZE);
	phys_pages = sysconf(_SC_PHYS_PAGES);

	if (pagesize &lt;= 0 || phys_pages &lt;= 0)
		return 0;

	page_size_kb = pagesize / 1024;
	phys_memory_kb = page_size_kb * phys_pages;

	/* sanity check for overflow */
	if (phys_memory_kb / phys_pages != page_size_kb)
		return 0;

	/* coverity[return_overflow:FALSE] */
	return phys_memory_kb;
}

uint64_t crypt_getphysmemoryfree_kb(void)
{
	long pagesize, phys_pages;
	uint64_t phys_memoryfree_kb, page_size_kb;

	pagesize = sysconf(_SC_PAGESIZE);
	phys_pages = sysconf(_SC_AVPHYS_PAGES);

	if (pagesize &lt;= 0 || phys_pages &lt;= 0)
		return 0;

	page_size_kb = pagesize / 1024;
	phys_memoryfree_kb = page_size_kb * phys_pages;

	/* sanity check for overflow */
	if (phys_memoryfree_kb / phys_pages != page_size_kb)
		return 0;

	/* coverity[return_overflow:FALSE] */
	return phys_memoryfree_kb;
}

bool crypt_swapavailable(void)
{
	int fd;
	ssize_t size;
	char buf[4096], *p;
	uint64_t total;

	if ((fd = open("/proc/meminfo", O_RDONLY)) &lt; 0)
		return true;

	size = read(fd, buf, sizeof(buf));
	close(fd);
	if (size &lt; 1)
		return true;

	if (size &lt; (ssize_t)sizeof(buf))
		buf[size] = 0;
	else
		buf[sizeof(buf) - 1] = 0;

	p = strstr(buf, "SwapTotal:");
	if (!p)
		return true;

	if (sscanf(p, "SwapTotal: %" PRIu64 " kB", &amp;total) != 1)
		return true;

	return total &gt; 0;
}

void crypt_process_priority(struct crypt_device *cd, int *priority, bool raise)
{
	int _priority, new_priority;

	if (raise) {
		_priority = getpriority(PRIO_PROCESS, 0);
		if (_priority &lt; 0)
			_priority = 0;
		if (priority)
			*priority = _priority;

		/*
		 * Do not bother checking CAP_SYS_NICE as device activation
		 * requires CAP_SYSADMIN later anyway.
		 */
		if (getuid() || geteuid())
			new_priority = 0;
		else
			new_priority = -18;

		if (setpriority(PRIO_PROCESS, 0, new_priority))
			log_dbg(cd, "Cannot raise process priority.");
	} else {
		_priority = priority ? *priority : 0;
		if (setpriority(PRIO_PROCESS, 0, _priority))
			log_dbg(cd, "Cannot reset process priority.");
	}
}

/* Keyfile processing */

/*
 * A simple call to lseek(3) might not be possible for some inputs (e.g.
 * reading from a pipe), so this function instead reads of up to BUFSIZ bytes
 * at a time until the specified number of bytes. It returns -1 on read error
 * or when it reaches EOF before the requested number of bytes have been
 * discarded.
 */
static int keyfile_seek(int fd, uint64_t bytes)
{
	char tmp[BUFSIZ];
	size_t next_read;
	ssize_t bytes_r;
	off_t r;

	r = lseek(fd, bytes, SEEK_CUR);
	if (r &gt; 0)
		return 0;
	if (r &lt; 0 &amp;&amp; errno != ESPIPE)
		return -1;

	while (bytes &gt; 0) {
		/* figure out how much to read */
		next_read = bytes &gt; sizeof(tmp) ? sizeof(tmp) : (size_t)bytes;

		bytes_r = read(fd, tmp, next_read);
		if (bytes_r &lt; 0) {
			if (errno == EINTR)
				continue;

			crypt_safe_memzero(tmp, sizeof(tmp));
			/* read error */
			return -1;
		}

		if (bytes_r == 0)
			/* EOF */
			break;

		bytes -= bytes_r;
	}

	crypt_safe_memzero(tmp, sizeof(tmp));
	return bytes == 0 ? 0 : -1;
}

int crypt_keyfile_device_read(struct crypt_device *cd,  const char *keyfile,
			      char **key, size_t *key_size_read,
			      uint64_t keyfile_offset, size_t key_size,
			      uint32_t flags)
{
	int fd, regular_file, char_to_read = 0, char_read = 0, unlimited_read = 0;
	int r = -EINVAL, newline;
	char *pass = NULL;
	size_t buflen, i;
	uint64_t file_read_size;
	struct stat st;

	if (!key || !key_size_read)
		return -EINVAL;

	*key = NULL;
	*key_size_read = 0;

	fd = keyfile ? open(keyfile, O_RDONLY) : STDIN_FILENO;
	if (fd &lt; 0) {
		log_err(cd, _("Failed to open key file."));
		return -EINVAL;
	}

	if (isatty(fd)) {
		log_err(cd, _("Cannot read keyfile from a terminal."));
		goto out;
	}

	/* If not requested otherwise, we limit input to prevent memory exhaustion */
	if (key_size == 0) {
		key_size = DEFAULT_KEYFILE_SIZE_MAXKB * 1024 + 1;
		unlimited_read = 1;
		/* use 4k for buffer (page divisor but avoid huge pages) */
		buflen = 4096 - 16; /* sizeof(struct safe_allocation); */
	} else
		buflen = key_size;

	regular_file = 0;
	if (keyfile) {
		if (stat(keyfile, &amp;st) &lt; 0) {
			log_err(cd, _("Failed to stat key file."));
			goto out;
		}
		if (S_ISREG(st.st_mode)) {
			regular_file = 1;
			file_read_size = (uint64_t)st.st_size;

			if (keyfile_offset &gt; file_read_size) {
				log_err(cd, _("Cannot seek to requested keyfile offset."));
				goto out;
			}
			file_read_size -= keyfile_offset;

			/* known keyfile size, alloc it in one step */
			if (file_read_size &gt;= (uint64_t)key_size)
				buflen = key_size;
			else if (file_read_size)
				buflen = file_read_size;
		}
	}

	pass = crypt_safe_alloc(buflen);
	if (!pass) {
		log_err(cd, _("Out of memory while reading passphrase."));
		goto out;
	}

	/* Discard keyfile_offset bytes on input */
	if (keyfile_offset &amp;&amp; keyfile_seek(fd, keyfile_offset) &lt; 0) {
		log_err(cd, _("Cannot seek to requested keyfile offset."));
		goto out;
	}

	for (i = 0, newline = 0; i &lt; key_size; i += char_read) {
		if (i == buflen) {
			buflen += 4096;
			pass = crypt_safe_realloc(pass, buflen);
			if (!pass) {
				log_err(cd, _("Out of memory while reading passphrase."));
				r = -ENOMEM;
				goto out;
			}
		}

		if (flags &amp; CRYPT_KEYFILE_STOP_EOL) {
			/* If we should stop on newline, we must read the input
			 * one character at the time. Otherwise we might end up
			 * having read some bytes after the newline, which we
			 * promised not to do.
			 */
			char_to_read = 1;
		} else {
			/* char_to_read = min(key_size - i, buflen - i) */
			char_to_read = key_size &lt; buflen ?
				key_size - i : buflen - i;
		}
		char_read = read_buffer(fd, &amp;pass[i], char_to_read);
		if (char_read &lt; 0) {
			log_err(cd, _("Error reading passphrase."));
			r = -EPIPE;
			goto out;
		}

		if (char_read == 0)
			break;
		/* Stop on newline only if not requested read from keyfile */
		if ((flags &amp; CRYPT_KEYFILE_STOP_EOL) &amp;&amp; pass[i] == '\n') {
			newline = 1;
			pass[i] = '\0';
			break;
		}
	}

	/* Fail if piped input dies reading nothing */
	if (!i &amp;&amp; !regular_file &amp;&amp; !newline) {
		log_err(cd, _("Nothing to read on input."));
		r = -EPIPE;
		goto out;
	}

	/* Fail if we exceeded internal default (no specified size) */
	if (unlimited_read &amp;&amp; i == key_size) {
		log_err(cd, _("Maximum keyfile size exceeded."));
		goto out;
	}

	if (!unlimited_read &amp;&amp; i != key_size) {
		log_err(cd, _("Cannot read requested amount of data."));
		goto out;
	}

	*key = pass;
	*key_size_read = i;
	r = 0;
out:
	if (fd != STDIN_FILENO)
		close(fd);

	if (r)
		crypt_safe_free(pass);
	return r;
}

int crypt_keyfile_read(struct crypt_device *cd,  const char *keyfile,
		       char **key, size_t *key_size_read,
		       size_t keyfile_offset, size_t keyfile_size_max,
		       uint32_t flags)
{
	return crypt_keyfile_device_read(cd, keyfile, key, key_size_read,
					 keyfile_offset, keyfile_size_max, flags);
}

int kernel_version(uint64_t *kversion)
{
	struct utsname uts;
	uint16_t maj, min, patch, rel;
	int r = -EINVAL;

	if (uname(&amp;uts) &lt; 0)
		return r;

	if (sscanf(uts.release, "%" SCNu16  ".%" SCNu16 ".%" SCNu16 "-%" SCNu16,
		   &amp;maj, &amp;min, &amp;patch, &amp;rel) == 4)
		r = 0;
	else if (sscanf(uts.release,  "%" SCNu16 ".%" SCNu16 ".%" SCNu16,
			&amp;maj, &amp;min, &amp;patch) == 3) {
		rel = 0;
		r = 0;
	}

	if (!r)
		*kversion = compact_version(maj, min, patch, rel);

	return r;
}

bool crypt_string_in(const char *str, char **list, size_t list_size)
{
	size_t i;

	for (i = 0; *list &amp;&amp; i &lt; list_size; i++, list++)
		if (!strcmp(str, *list))
			return true;

	return false;
}

/* compare two strings (allows NULL values) */
int crypt_strcmp(const char *a, const char *b)
{
	if (!a &amp;&amp; !b)
		return 0;
	else if (!a || !b)
		return 1;
	return strcmp(a, b);
}
</file>
  <file fpath="/out/src/cryptsetup/lib/utils_device.c">/*
 * device backend utilities
 *
 * Copyright (C) 2004 Jana Saout &lt;jana@saout.de&gt;
 * Copyright (C) 2004-2007 Clemens Fruhwirth &lt;clemens@endorphin.org&gt;
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;string.h&gt;
#include &lt;stdlib.h&gt;
#include &lt;errno.h&gt;
#include &lt;sys/types.h&gt;
#include &lt;sys/stat.h&gt;
#include &lt;sys/ioctl.h&gt;
#include &lt;linux/fs.h&gt;
#include &lt;unistd.h&gt;
#ifdef HAVE_SYS_SYSMACROS_H
# include &lt;sys/sysmacros.h&gt;     /* for major, minor */
#endif
#ifdef HAVE_SYS_STATVFS_H
# include &lt;sys/statvfs.h&gt;
#endif
#include "internal.h"
#include "utils_device_locking.h"

struct device {
	char *path;

	char *file_path;
	int loop_fd;

	int ro_dev_fd;
	int dev_fd;
	int dev_fd_excl;

	struct crypt_lock_handle *lh;

	unsigned int o_direct:1;
	unsigned int init_done:1; /* path is bdev or loop already initialized */

	/* cached values */
	size_t alignment;
	size_t block_size;
	size_t loop_block_size;
};

static size_t device_fs_block_size_fd(int fd)
{
	size_t page_size = crypt_getpagesize();

#ifdef HAVE_SYS_STATVFS_H
	struct statvfs buf;

	/*
	 * NOTE: some filesystems (NFS) returns bogus blocksize (1MB).
	 * Page-size io should always work and avoids increasing IO beyond aligned LUKS header.
	 */
	if (!fstatvfs(fd, &amp;buf) &amp;&amp; buf.f_bsize &amp;&amp; buf.f_bsize &lt;= page_size)
		return (size_t)buf.f_bsize;
#endif
	return page_size;
}

static size_t device_block_size_fd(int fd, size_t *min_size)
{
	struct stat st;
	size_t bsize;
	int arg;

	if (fstat(fd, &amp;st) &lt; 0)
		return 0;

	if (S_ISREG(st.st_mode))
		bsize = device_fs_block_size_fd(fd);
	else {
		if (ioctl(fd, BLKSSZGET, &amp;arg) &lt; 0)
			bsize = crypt_getpagesize();
		else
			bsize = (size_t)arg;
	}

	if (!min_size)
		return bsize;

	if (S_ISREG(st.st_mode)) {
		/* file can be empty as well */
		if (st.st_size &gt; (ssize_t)bsize)
			*min_size = bsize;
		else
			*min_size = st.st_size;
	} else {
		/* block device must have at least one block */
		*min_size = bsize;
	}

	return bsize;
}

static size_t device_block_phys_size_fd(int fd)
{
	struct stat st;
	int arg;
	size_t bsize = SECTOR_SIZE;

	if (fstat(fd, &amp;st) &lt; 0)
		return bsize;

	if (S_ISREG(st.st_mode))
		bsize = MAX_SECTOR_SIZE;
	else if (ioctl(fd, BLKPBSZGET, &amp;arg) &gt;= 0)
		bsize = (size_t)arg;

	return bsize;
}

static size_t device_alignment_fd(int devfd)
{
	long alignment = DEFAULT_MEM_ALIGNMENT;

#ifdef _PC_REC_XFER_ALIGN
	alignment = fpathconf(devfd, _PC_REC_XFER_ALIGN);
	if (alignment &lt; 0)
		alignment = DEFAULT_MEM_ALIGNMENT;
#endif
	return (size_t)alignment;
}

static int device_read_test(int devfd)
{
	char buffer[512];
	int r = -EIO;
	size_t minsize = 0, blocksize, alignment;

	blocksize = device_block_size_fd(devfd, &amp;minsize);
	alignment = device_alignment_fd(devfd);

	if (!blocksize || !alignment)
		return -EINVAL;

	if (minsize == 0)
		return 0;

	if (minsize &gt; sizeof(buffer))
		minsize = sizeof(buffer);

	if (read_blockwise(devfd, blocksize, alignment, buffer, minsize) == (ssize_t)minsize)
		r = 0;

	crypt_safe_memzero(buffer, sizeof(buffer));
	return r;
}

/*
 * The direct-io is always preferred. The header is usually mapped to the same
 * device and can be accessed when the rest of device is mapped to data device.
 * Using direct-io ensures that we do not mess with data in cache.
 * (But proper alignment should prevent this in the first place.)
 * The read test is needed to detect broken configurations (seen with remote
 * block devices) that allow open with direct-io but then fails on read.
 */
static int device_ready(struct crypt_device *cd, struct device *device)
{
	int devfd = -1, r = 0;
	struct stat st;
	size_t tmp_size;
	const char *dm_name;

	if (!device)
		return -EINVAL;

	if (device-&gt;o_direct) {
		log_dbg(cd, "Trying to open and read device %s with direct-io.",
			device_path(device));
		device-&gt;o_direct = 0;
		devfd = open(device_path(device), O_RDONLY | O_DIRECT);
		if (devfd &gt;= 0) {
			/* skip check for suspended DM devices */
			dm_name = device_dm_name(device);
			if (dm_name &amp;&amp; dm_status_suspended(cd, dm_name)) {
				close(devfd);
				devfd = -1;
			} else if (device_read_test(devfd) == 0) {
				device-&gt;o_direct = 1;
			} else {
				close(devfd);
				devfd = -1;
			}
		}
	}

	if (devfd &lt; 0) {
		log_dbg(cd, "Trying to open device %s without direct-io.",
			device_path(device));
		devfd = open(device_path(device), O_RDONLY);
	}

	if (devfd &lt; 0) {
		log_err(cd, _("Device %s does not exist or access denied."),
			device_path(device));
		return -EINVAL;
	}

	if (fstat(devfd, &amp;st) &lt; 0)
		r = -EINVAL;
	else if (!S_ISBLK(st.st_mode))
		r = S_ISREG(st.st_mode) ? -ENOTBLK : -EINVAL;
	if (r == -EINVAL) {
		log_err(cd, _("Device %s is not compatible."),
			device_path(device));
		close(devfd);
		return r;
	}

	/* Allow only increase (loop device) */
	tmp_size = device_alignment_fd(devfd);
	if (tmp_size &gt; device-&gt;alignment)
		device-&gt;alignment = tmp_size;

	tmp_size = device_block_size_fd(devfd, NULL);
	if (tmp_size &gt; device-&gt;block_size)
		device-&gt;block_size = tmp_size;

	close(devfd);
	return r;
}

static int _open_locked(struct crypt_device *cd, struct device *device, int flags)
{
	int fd;

	if (!device)
		return -EINVAL;

	log_dbg(cd, "Opening locked device %s", device_path(device));

	if ((flags &amp; O_ACCMODE) != O_RDONLY &amp;&amp; device_locked_readonly(device-&gt;lh)) {
		log_dbg(cd, "Cannot open locked device %s in write mode. Read lock held.", device_path(device));
		return -EAGAIN;
	}

	fd = open(device_path(device), flags);
	if (fd &lt; 0)
		return -errno;

	if (device_locked_verify(cd, fd, device-&gt;lh)) {
		/* fd doesn't correspond to a locked resource */
		close(fd);
		log_dbg(cd, "Failed to verify lock resource for device %s.", device_path(device));
		return -EINVAL;
	}

	return fd;
}

/*
 * Common wrapper for device sync.
 */
void device_sync(struct crypt_device *cd, struct device *device)
{
	if (!device || device-&gt;dev_fd &lt; 0)
		return;

	if (fsync(device-&gt;dev_fd) == -1)
		log_dbg(cd, "Cannot sync device %s.", device_path(device));
}

/*
 * in non-locked mode returns always fd or -1
 *
 * in locked mode:
 * 	opened fd or one of:
 * 	-EAGAIN : requested write mode while device being locked in via shared lock
 * 	-EINVAL : invalid lock fd state
 * 	-1	: all other errors
 */
static int device_open_internal(struct crypt_device *cd, struct device *device, int flags)
{
	int access, devfd;

	if (device-&gt;o_direct)
		flags |= O_DIRECT;

	access = flags &amp; O_ACCMODE;
	if (access == O_WRONLY)
		access = O_RDWR;

	if (access == O_RDONLY &amp;&amp; device-&gt;ro_dev_fd &gt;= 0) {
		log_dbg(cd, "Reusing open r%c fd on device %s", 'o', device_path(device));
		return device-&gt;ro_dev_fd;
	} else if (access == O_RDWR &amp;&amp; device-&gt;dev_fd &gt;= 0) {
		log_dbg(cd, "Reusing open r%c fd on device %s", 'w', device_path(device));
		return device-&gt;dev_fd;
	}

	if (device_locked(device-&gt;lh))
		devfd = _open_locked(cd, device, flags);
	else
		devfd = open(device_path(device), flags);

	if (devfd &lt; 0) {
		log_dbg(cd, "Cannot open device %s%s.",
			device_path(device),
			access != O_RDONLY ? " for write" : "");
		return devfd;
	}

	if (access == O_RDONLY)
		device-&gt;ro_dev_fd = devfd;
	else
		device-&gt;dev_fd = devfd;

	return devfd;
}

int device_open(struct crypt_device *cd, struct device *device, int flags)
{
	if (!device)
		return -EINVAL;

	assert(!device_locked(device-&gt;lh));
	return device_open_internal(cd, device, flags);
}

int device_open_excl(struct crypt_device *cd, struct device *device, int flags)
{
	const char *path;
	struct stat st;

	if (!device)
		return -EINVAL;

	assert(!device_locked(device-&gt;lh));

	if (device-&gt;dev_fd_excl &lt; 0) {
		path = device_path(device);
		if (stat(path, &amp;st))
			return -EINVAL;
		if (!S_ISBLK(st.st_mode))
			log_dbg(cd, "%s is not a block device. Can't open in exclusive mode.",
				path);
		else {
			/* open(2) with O_EXCL (w/o O_CREAT) on regular file is undefined behaviour according to man page */
			/* coverity[toctou] */
			device-&gt;dev_fd_excl = open(path, O_RDONLY | O_EXCL); /* lgtm[cpp/toctou-race-condition] */
			if (device-&gt;dev_fd_excl &lt; 0)
				return errno == EBUSY ? -EBUSY : device-&gt;dev_fd_excl;
			if (fstat(device-&gt;dev_fd_excl, &amp;st) || !S_ISBLK(st.st_mode)) {
				log_dbg(cd, "%s is not a block device. Can't open in exclusive mode.",
					path);
				close(device-&gt;dev_fd_excl);
				device-&gt;dev_fd_excl = -1;
			} else
				log_dbg(cd, "Device %s is blocked for exclusive open.", path);
		}
	}

	return device_open_internal(cd, device, flags);
}

void device_release_excl(struct crypt_device *cd, struct device *device)
{
	if (device &amp;&amp; device-&gt;dev_fd_excl &gt;= 0) {
		if (close(device-&gt;dev_fd_excl))
			log_dbg(cd, "Failed to release exclusive handle on device %s.",
				device_path(device));
		else
			log_dbg(cd, "Closed exclusive fd for %s.", device_path(device));
		device-&gt;dev_fd_excl = -1;
	}
}

int device_open_locked(struct crypt_device *cd, struct device *device, int flags)
{
	if (!device)
		return -EINVAL;

	assert(!crypt_metadata_locking_enabled() || device_locked(device-&gt;lh));
	return device_open_internal(cd, device, flags);
}

/* Avoid any read from device, expects direct-io to work. */
int device_alloc_no_check(struct device **device, const char *path)
{
	struct device *dev;

	if (!path) {
		*device = NULL;
		return 0;
	}

	dev = malloc(sizeof(struct device));
	if (!dev)
		return -ENOMEM;

	memset(dev, 0, sizeof(struct device));
	dev-&gt;path = strdup(path);
	if (!dev-&gt;path) {
		free(dev);
		return -ENOMEM;
	}
	dev-&gt;loop_fd = -1;
	dev-&gt;ro_dev_fd = -1;
	dev-&gt;dev_fd = -1;
	dev-&gt;dev_fd_excl = -1;
	dev-&gt;o_direct = 1;

	*device = dev;
	return 0;
}

int device_alloc(struct crypt_device *cd, struct device **device, const char *path)
{
	struct device *dev;
	int r;

	r = device_alloc_no_check(&amp;dev, path);
	if (r &lt; 0)
		return r;

	if (dev) {
		r = device_ready(cd, dev);
		if (!r) {
			dev-&gt;init_done = 1;
		} else if (r == -ENOTBLK) {
			/* alloc loop later */
		} else if (r &lt; 0) {
			free(dev-&gt;path);
			free(dev);
			return -ENOTBLK;
		}
	}

	*device = dev;
	return 0;
}

void device_free(struct crypt_device *cd, struct device *device)
{
	if (!device)
		return;

	device_close(cd, device);

	if (device-&gt;dev_fd_excl != -1) {
		log_dbg(cd, "Closed exclusive fd for %s.", device_path(device));
		close(device-&gt;dev_fd_excl);
	}

	if (device-&gt;loop_fd != -1) {
		log_dbg(cd, "Closed loop %s (%s).", device-&gt;path, device-&gt;file_path);
		close(device-&gt;loop_fd);
	}

	assert(!device_locked(device-&gt;lh));

	free(device-&gt;file_path);
	free(device-&gt;path);
	free(device);
}

/* Get block device path */
const char *device_block_path(const struct device *device)
{
	if (!device)
		return NULL;

	return device-&gt;path;
}

/* Get device-mapper name of device (if possible) */
const char *device_dm_name(const struct device *device)
{
	const char *dmdir = dm_get_dir();
	size_t dmdir_len = strlen(dmdir);

	if (!device)
		return NULL;

	if (strncmp(device-&gt;path, dmdir, dmdir_len))
		return NULL;

	return &amp;device-&gt;path[dmdir_len+1];
}

/* Get path to device / file */
const char *device_path(const struct device *device)
{
	if (!device)
		return NULL;

	if (device-&gt;file_path)
		return device-&gt;file_path;

	return device-&gt;path;
}

/* block device topology ioctls, introduced in 2.6.32 */
#ifndef BLKIOMIN
#define BLKIOMIN    _IO(0x12,120)
#define BLKIOOPT    _IO(0x12,121)
#define BLKALIGNOFF _IO(0x12,122)
#endif

void device_topology_alignment(struct crypt_device *cd,
			       struct device *device,
			       unsigned long *required_alignment, /* bytes */
			       unsigned long *alignment_offset,   /* bytes */
			       unsigned long default_alignment)
{
	int dev_alignment_offset = 0;
	unsigned int min_io_size = 0, opt_io_size = 0;
	unsigned long temp_alignment = 0;
	int fd;

	*required_alignment = default_alignment;
	*alignment_offset = 0;

	if (!device || !device-&gt;path) //FIXME
		return;

	fd = open(device-&gt;path, O_RDONLY);
	if (fd == -1)
		return;

	/* minimum io size */
	if (ioctl(fd, BLKIOMIN, &amp;min_io_size) == -1) {
		log_dbg(cd, "Topology info for %s not supported, using default offset %lu bytes.",
			device-&gt;path, default_alignment);
		goto out;
	}

	/* optimal io size */
	if (ioctl(fd, BLKIOOPT, &amp;opt_io_size) == -1)
		opt_io_size = min_io_size;

	/* alignment offset, bogus -1 means misaligned/unknown */
	if (ioctl(fd, BLKALIGNOFF, &amp;dev_alignment_offset) == -1 || dev_alignment_offset &lt; 0)
		dev_alignment_offset = 0;
	*alignment_offset = (unsigned long)dev_alignment_offset;

	temp_alignment = (unsigned long)min_io_size;

	/*
	 * Ignore bogus opt-io that could break alignment.
	 * Also real opt_io_size should be aligned to minimal page size (4k).
	 * Some bogus USB enclosures reports wrong data here.
	 */
	if ((temp_alignment &lt; (unsigned long)opt_io_size) &amp;&amp;
	    !((unsigned long)opt_io_size % temp_alignment) &amp;&amp; !MISALIGNED_4K(opt_io_size))
		temp_alignment = (unsigned long)opt_io_size;
	else if (opt_io_size &amp;&amp; (opt_io_size != min_io_size))
		log_err(cd, _("Ignoring bogus optimal-io size for data device (%u bytes)."), opt_io_size);

	/* If calculated alignment is multiple of default, keep default */
	if (temp_alignment &amp;&amp; (default_alignment % temp_alignment))
		*required_alignment = temp_alignment;

	log_dbg(cd, "Topology: IO (%u/%u), offset = %lu; Required alignment is %lu bytes.",
		min_io_size, opt_io_size, *alignment_offset, *required_alignment);
out:
	(void)close(fd);
}

size_t device_block_size(struct crypt_device *cd, struct device *device)
{
	int fd;

	if (!device)
		return 0;

	if (device-&gt;block_size)
		return device-&gt;block_size;

	fd = open(device-&gt;file_path ?: device-&gt;path, O_RDONLY);
	if (fd &gt;= 0) {
		device-&gt;block_size = device_block_size_fd(fd, NULL);
		close(fd);
	}

	if (!device-&gt;block_size)
		log_dbg(cd, "Cannot get block size for device %s.", device_path(device));

	return device-&gt;block_size;
}

size_t device_optimal_encryption_sector_size(struct crypt_device *cd, struct device *device)
{
	int fd;
	size_t phys_block_size;

	if (!device)
		return SECTOR_SIZE;

	fd = open(device-&gt;file_path ?: device-&gt;path, O_RDONLY);
	if (fd &lt; 0) {
		log_dbg(cd, "Cannot get optimal encryption sector size for device %s.", device_path(device));
		return SECTOR_SIZE;
	}

	/* cache device block size */
	device-&gt;block_size = device_block_size_fd(fd, NULL);
	if (!device-&gt;block_size) {
		close(fd);
		log_dbg(cd, "Cannot get block size for device %s.", device_path(device));
		return SECTOR_SIZE;
	}

	if (device-&gt;block_size &gt;= MAX_SECTOR_SIZE) {
		close(fd);
		return MISALIGNED(device-&gt;block_size, MAX_SECTOR_SIZE) ? SECTOR_SIZE : MAX_SECTOR_SIZE;
	}

	phys_block_size = device_block_phys_size_fd(fd);
	close(fd);

	if (device-&gt;block_size &gt;= phys_block_size ||
	    phys_block_size &lt;= SECTOR_SIZE ||
	    phys_block_size &gt; MAX_SECTOR_SIZE ||
	    MISALIGNED(phys_block_size, device-&gt;block_size))
		return device-&gt;block_size;

	return phys_block_size;
}

int device_read_ahead(struct device *device, uint32_t *read_ahead)
{
	int fd, r = 0;
	long read_ahead_long;

	if (!device)
		return 0;

	if ((fd = open(device-&gt;path, O_RDONLY)) &lt; 0)
		return 0;

	r = ioctl(fd, BLKRAGET, &amp;read_ahead_long) ? 0 : 1;
	close(fd);

	if (r)
		*read_ahead = (uint32_t) read_ahead_long;

	return r;
}

/* Get data size in bytes */
int device_size(struct device *device, uint64_t *size)
{
	struct stat st;
	int devfd, r = -EINVAL;

	if (!device)
		return -EINVAL;

	devfd = open(device-&gt;path, O_RDONLY);
	if (devfd == -1)
		return -EINVAL;

	if (fstat(devfd, &amp;st) &lt; 0)
		goto out;

	if (S_ISREG(st.st_mode)) {
		*size = (uint64_t)st.st_size;
		r = 0;
	} else if (ioctl(devfd, BLKGETSIZE64, size) &gt;= 0)
		r = 0;
out:
	close(devfd);
	return r;
}

/* For a file, allocate the required space */
int device_fallocate(struct device *device, uint64_t size)
{
	struct stat st;
	int devfd, r = -EINVAL;

	if (!device)
		return -EINVAL;

	devfd = open(device_path(device), O_RDWR);
	if (devfd == -1)
		return -EINVAL;

	if (!fstat(devfd, &amp;st) &amp;&amp; S_ISREG(st.st_mode) &amp;&amp;
	    ((uint64_t)st.st_size &gt;= size || !posix_fallocate(devfd, 0, size))) {
		r = 0;
		if (device-&gt;file_path &amp;&amp; crypt_loop_resize(device-&gt;path))
			r = -EINVAL;
	}

	close(devfd);
	return r;
}

int device_check_size(struct crypt_device *cd,
		      struct device *device,
		      uint64_t req_offset, int falloc)
{
	uint64_t dev_size;

	if (device_size(device, &amp;dev_size)) {
		log_dbg(cd, "Cannot get device size for device %s.", device_path(device));
		return -EIO;
	}

	log_dbg(cd, "Device size %" PRIu64 ", offset %" PRIu64 ".", dev_size, req_offset);

	if (req_offset &gt; dev_size) {
		/* If it is header file, increase its size */
		if (falloc &amp;&amp; !device_fallocate(device, req_offset))
			return 0;

		log_err(cd, _("Device %s is too small. Need at least %" PRIu64 " bytes."),
			device_path(device), req_offset);
		return -EINVAL;
	}

	return 0;
}

static int device_info(struct crypt_device *cd,
		       struct device *device,
		       enum devcheck device_check,
		       int *readonly, uint64_t *size)
{
	struct stat st;
	int fd = -1, r, flags = 0, real_readonly;
	uint64_t real_size;

	if (!device)
		return -ENOTBLK;

	real_readonly = 0;
	real_size = 0;

	if (stat(device-&gt;path, &amp;st) &lt; 0) {
		r = -EINVAL;
		goto out;
	}

	/* never wipe header on mounted device */
	if (device_check == DEV_EXCL &amp;&amp; S_ISBLK(st.st_mode))
		flags |= O_EXCL;

	/* Try to open read-write to check whether it is a read-only device */
	/* coverity[toctou] */
	fd = open(device-&gt;path, O_RDWR | flags);
	if (fd == -1 &amp;&amp; errno == EROFS) {
		real_readonly = 1;
		fd = open(device-&gt;path, O_RDONLY | flags);
	}

	if (fd == -1 &amp;&amp; device_check == DEV_EXCL &amp;&amp; errno == EBUSY) {
		r = -EBUSY;
		goto out;
	}

	if (fd == -1) {
		r = errno ? -errno : -EINVAL;
		goto out;
	}

	r = 0;
	if (S_ISREG(st.st_mode)) {
		//FIXME: add readonly check
		real_size = (uint64_t)st.st_size;
		real_size &gt;&gt;= SECTOR_SHIFT;
	} else {
		/* If the device can be opened read-write, i.e. readonly is still 0, then
		 * check whether BKROGET says that it is read-only. E.g. read-only loop
		 * devices may be opened read-write but are read-only according to BLKROGET
		 */
		if (real_readonly == 0 &amp;&amp; (r = ioctl(fd, BLKROGET, &amp;real_readonly)) &lt; 0)
			goto out;

		r = ioctl(fd, BLKGETSIZE64, &amp;real_size);
		if (r &gt;= 0) {
			real_size &gt;&gt;= SECTOR_SHIFT;
			goto out;
		}
	}
out:
	if (fd != -1)
		close(fd);

	switch (r) {
	case 0:
		if (readonly)
			*readonly = real_readonly;
		if (size)
			*size = real_size;
		break;
	case -EBUSY:
		log_err(cd, _("Cannot use device %s which is in use "
			      "(already mapped or mounted)."), device_path(device));
		break;
	case -EACCES:
		log_err(cd, _("Cannot use device %s, permission denied."), device_path(device));
		break;
	default:
		log_err(cd, _("Cannot get info about device %s."), device_path(device));
		r = -EINVAL;
	}

	return r;
}

int device_check_access(struct crypt_device *cd,
			struct device *device,
			enum devcheck device_check)
{
	return device_info(cd, device, device_check, NULL, NULL);
}

static int device_internal_prepare(struct crypt_device *cd, struct device *device)
{
	char *loop_device = NULL, *file_path = NULL;
	int r, loop_fd, readonly = 0;

	if (device-&gt;init_done)
		return 0;

	if (getuid() || geteuid()) {
		log_err(cd, _("Cannot use a loopback device, "
			      "running as non-root user."));
		return -ENOTSUP;
	}

	log_dbg(cd, "Allocating a free loop device (block size: %zu).",
		device-&gt;loop_block_size ?: SECTOR_SIZE);

	/* Keep the loop open, detached on last close. */
	loop_fd = crypt_loop_attach(&amp;loop_device, device-&gt;path, 0, 1, &amp;readonly, device-&gt;loop_block_size);
	if (loop_fd == -1) {
		log_err(cd, _("Attaching loopback device failed "
			"(loop device with autoclear flag is required)."));
		free(loop_device);
		return -EINVAL;
	}

	file_path = device-&gt;path;
	device-&gt;path = loop_device;

	r = device_ready(cd, device);
	if (r &lt; 0) {
		device-&gt;path = file_path;
		crypt_loop_detach(loop_device);
		free(loop_device);
		return r;
	}

	log_dbg(cd, "Attached loop device block size is %zu bytes.", device_block_size_fd(loop_fd, NULL));

	device-&gt;loop_fd = loop_fd;
	device-&gt;file_path = file_path;
	device-&gt;init_done = 1;

	return 0;
}

int device_block_adjust(struct crypt_device *cd,
			struct device *device,
			enum devcheck device_check,
			uint64_t device_offset,
			uint64_t *size,
			uint32_t *flags)
{
	int r, real_readonly;
	uint64_t real_size;

	if (!device)
		return -ENOTBLK;

	r = device_internal_prepare(cd, device);
	if (r)
		return r;

	r = device_info(cd, device, device_check, &amp;real_readonly, &amp;real_size);
	if (r)
		return r;

	if (device_offset &gt;= real_size) {
		log_err(cd, _("Requested offset is beyond real size of device %s."),
			device_path(device));
		return -EINVAL;
	}

	if (size &amp;&amp; !*size) {
		*size = real_size;
		if (!*size) {
			log_err(cd, _("Device %s has zero size."), device_path(device));
			return -ENOTBLK;
		}
		*size -= device_offset;
	}

	/* in case of size is set by parameter */
	if (size &amp;&amp; ((real_size - device_offset) &lt; *size)) {
		log_dbg(cd, "Device %s: offset = %" PRIu64 " requested size = %" PRIu64
			", backing device size = %" PRIu64,
			device-&gt;path, device_offset, *size, real_size);
		log_err(cd, _("Device %s is too small."), device_path(device));
		return -EINVAL;
	}

	if (flags &amp;&amp; real_readonly)
		*flags |= CRYPT_ACTIVATE_READONLY;

	if (size)
		log_dbg(cd, "Calculated device size is %" PRIu64" sectors (%s), offset %" PRIu64 ".",
		*size, real_readonly ? "RO" : "RW", device_offset);
	return 0;
}

size_t size_round_up(size_t size, size_t block)
{
	size_t s = (size + (block - 1)) / block;
	return s * block;
}

void device_disable_direct_io(struct device *device)
{
	if (device)
		device-&gt;o_direct = 0;
}

int device_direct_io(const struct device *device)
{
	return device ? device-&gt;o_direct : 0;
}

static int device_compare_path(const char *path1, const char *path2)
{
	struct stat st_path1, st_path2;

	if (stat(path1, &amp;st_path1 ) &lt; 0 || stat(path2, &amp;st_path2 ) &lt; 0)
		return -EINVAL;

	if (S_ISBLK(st_path1.st_mode) &amp;&amp; S_ISBLK(st_path2.st_mode))
		return (st_path1.st_rdev == st_path2.st_rdev) ? 1 : 0;

	if (S_ISREG(st_path1.st_mode) &amp;&amp; S_ISREG(st_path2.st_mode))
		return (st_path1.st_ino == st_path2.st_ino &amp;&amp;
			st_path1.st_dev == st_path2.st_dev) ? 1 : 0;

	return 0;
}

int device_is_identical(struct device *device1, struct device *device2)
{
	if (!device1 || !device2)
		return 0;

	if (device1 == device2)
		return 1;

	if (!strcmp(device_path(device1), device_path(device2)))
		return 1;

	return device_compare_path(device_path(device1), device_path(device2));
}

int device_is_rotational(struct device *device)
{
	struct stat st;

	if (!device)
		return -EINVAL;

	if (stat(device_path(device), &amp;st) &lt; 0)
		return -EINVAL;

	if (!S_ISBLK(st.st_mode))
		return 0;

	return crypt_dev_is_rotational(major(st.st_rdev), minor(st.st_rdev));
}

int device_is_dax(struct device *device)
{
	struct stat st;

	if (!device)
		return -EINVAL;

	if (stat(device_path(device), &amp;st) &lt; 0)
		return -EINVAL;

	if (!S_ISBLK(st.st_mode))
		return 0;

	return crypt_dev_is_dax(major(st.st_rdev), minor(st.st_rdev));
}

size_t device_alignment(struct device *device)
{
	int devfd;

	if (!device)
		return -EINVAL;

	if (!device-&gt;alignment) {
		devfd = open(device_path(device), O_RDONLY);
		if (devfd != -1) {
			device-&gt;alignment = device_alignment_fd(devfd);
			close(devfd);
		}
	}

	return device-&gt;alignment;
}

void device_set_lock_handle(struct device *device, struct crypt_lock_handle *h)
{
	if (device)
		device-&gt;lh = h;
}

struct crypt_lock_handle *device_get_lock_handle(struct device *device)
{
	return device ? device-&gt;lh : NULL;
}

int device_read_lock(struct crypt_device *cd, struct device *device)
{
	if (!device || !crypt_metadata_locking_enabled())
		return 0;

	if (device_read_lock_internal(cd, device))
		return -EBUSY;

	return 0;
}

int device_write_lock(struct crypt_device *cd, struct device *device)
{
	if (!device || !crypt_metadata_locking_enabled())
		return 0;

	assert(!device_locked(device-&gt;lh) || !device_locked_readonly(device-&gt;lh));

	return device_write_lock_internal(cd, device);
}

void device_read_unlock(struct crypt_device *cd, struct device *device)
{
	if (!device || !crypt_metadata_locking_enabled())
		return;

	assert(device_locked(device-&gt;lh));

	device_unlock_internal(cd, device);
}

void device_write_unlock(struct crypt_device *cd, struct device *device)
{
	if (!device || !crypt_metadata_locking_enabled())
		return;

	assert(device_locked(device-&gt;lh) &amp;&amp; !device_locked_readonly(device-&gt;lh));

	device_unlock_internal(cd, device);
}

bool device_is_locked(struct device *device)
{
	return device ? device_locked(device-&gt;lh) : 0;
}

void device_close(struct crypt_device *cd, struct device *device)
{
	if (!device)
		return;

	if (device-&gt;ro_dev_fd != -1) {
		log_dbg(cd, "Closing read only fd for %s.", device_path(device));
		if (close(device-&gt;ro_dev_fd))
			log_dbg(cd, "Failed to close read only fd for %s.", device_path(device));
		device-&gt;ro_dev_fd = -1;
	}

	if (device-&gt;dev_fd != -1) {
		log_dbg(cd, "Closing read write fd for %s.", device_path(device));
		if (close(device-&gt;dev_fd))
			log_dbg(cd, "Failed to close read write fd for %s.", device_path(device));
		device-&gt;dev_fd = -1;
	}
}

void device_set_block_size(struct device *device, size_t size)
{
	if (!device)
		return;

	device-&gt;loop_block_size = size;
}
</file>
  <file fpath="/out/src/cryptsetup/lib/utils_io.c">/*
 * utils - miscellaneous I/O utilities for cryptsetup
 *
 * Copyright (C) 2004 Jana Saout &lt;jana@saout.de&gt;
 * Copyright (C) 2004-2007 Clemens Fruhwirth &lt;clemens@endorphin.org&gt;
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;errno.h&gt;
#include &lt;string.h&gt;
#include &lt;stdlib.h&gt;
#include &lt;stdint.h&gt;
#include &lt;unistd.h&gt;

#include "utils_io.h"

/* coverity[ -taint_source : arg-1 ] */
static ssize_t _read_buffer(int fd, void *buf, size_t length, volatile int *quit)
{
	size_t read_size = 0;
	ssize_t r;

	if (fd &lt; 0 || !buf)
		return -EINVAL;

	do {
		r = read(fd, buf, length - read_size);
		if (r == -1 &amp;&amp; errno != EINTR)
			return r;
		if (r &gt; 0) {
			read_size += (size_t)r;
			buf = (uint8_t*)buf + r;
		}
		if (r == 0 || (quit &amp;&amp; *quit))
			return (ssize_t)read_size;
	} while (read_size != length);

	return (ssize_t)length;
}

ssize_t read_buffer(int fd, void *buf, size_t length)
{
	return _read_buffer(fd, buf, length, NULL);
}

ssize_t read_buffer_intr(int fd, void *buf, size_t length, volatile int *quit)
{
	return _read_buffer(fd, buf, length, quit);
}

static ssize_t _write_buffer(int fd, const void *buf, size_t length, volatile int *quit)
{
	size_t write_size = 0;
	ssize_t w;

	if (fd &lt; 0 || !buf || !length)
		return -EINVAL;

	do {
		w = write(fd, buf, length - write_size);
		if (w &lt; 0 &amp;&amp; errno != EINTR)
			return w;
		if (w &gt; 0) {
			write_size += (size_t) w;
			buf = (const uint8_t*)buf + w;
		}
		if (w == 0 || (quit &amp;&amp; *quit))
			return (ssize_t)write_size;
	} while (write_size != length);

	return (ssize_t)write_size;
}

ssize_t write_buffer(int fd, const void *buf, size_t length)
{
	return _write_buffer(fd, buf, length, NULL);
}

ssize_t write_buffer_intr(int fd, const void *buf, size_t length, volatile int *quit)
{
	return _write_buffer(fd, buf, length, quit);
}

ssize_t write_blockwise(int fd, size_t bsize, size_t alignment,
			void *orig_buf, size_t length)
{
	void *hangover_buf = NULL, *buf = NULL;
	size_t hangover, solid;
	ssize_t r, ret = -1;

	if (fd == -1 || !orig_buf || !bsize || !alignment)
		return -1;

	hangover = length % bsize;
	solid = length - hangover;

	if ((size_t)orig_buf &amp; (alignment - 1)) {
		if (posix_memalign(&amp;buf, alignment, length))
			return -1;
		memcpy(buf, orig_buf, length);
	} else
		buf = orig_buf;

	if (solid) {
		r = write_buffer(fd, buf, solid);
		if (r &lt; 0 || r != (ssize_t)solid)
			goto out;
	}

	if (hangover) {
		if (posix_memalign(&amp;hangover_buf, alignment, bsize))
			goto out;
		memset(hangover_buf, 0, bsize);

		r = read_buffer(fd, hangover_buf, bsize);
		if (r &lt; 0)
			goto out;

		if (lseek(fd, -(off_t)r, SEEK_CUR) &lt; 0)
			goto out;

		memcpy(hangover_buf, (char*)buf + solid, hangover);

		r = write_buffer(fd, hangover_buf, bsize);
		if (r &lt; 0 || r &lt; (ssize_t)hangover)
			goto out;
	}
	ret = length;
out:
	free(hangover_buf);
	if (buf != orig_buf)
		free(buf);
	return ret;
}

ssize_t read_blockwise(int fd, size_t bsize, size_t alignment,
		       void *orig_buf, size_t length)
{
	void *hangover_buf = NULL, *buf = NULL;
	size_t hangover, solid;
	ssize_t r, ret = -1;

	if (fd == -1 || !orig_buf || !bsize || !alignment)
		return -1;

	hangover = length % bsize;
	solid = length - hangover;

	if ((size_t)orig_buf &amp; (alignment - 1)) {
		if (posix_memalign(&amp;buf, alignment, length))
			return -1;
	} else
		buf = orig_buf;

	r = read_buffer(fd, buf, solid);
	if (r &lt; 0 || r != (ssize_t)solid)
		goto out;

	if (hangover) {
		if (posix_memalign(&amp;hangover_buf, alignment, bsize))
			goto out;
		r = read_buffer(fd, hangover_buf, bsize);
		if (r &lt;  0 || r &lt; (ssize_t)hangover)
			goto out;

		memcpy((char *)buf + solid, hangover_buf, hangover);
	}
	ret = length;
out:
	free(hangover_buf);
	if (buf != orig_buf) {
		if (ret != -1)
			memcpy(orig_buf, buf, length);
		free(buf);
	}
	return ret;
}

/*
 * Combines llseek with blockwise write. write_blockwise can already deal with short writes
 * but we also need a function to deal with short writes at the start. But this information
 * is implicitly included in the read/write offset, which can not be set to non-aligned
 * boundaries. Hence, we combine llseek with write.
 */
ssize_t write_lseek_blockwise(int fd, size_t bsize, size_t alignment,
			      void *buf, size_t length, off_t offset)
{
	void *frontPadBuf = NULL;
	size_t frontHang, innerCount = 0;
	ssize_t r, ret = -1;

	if (fd == -1 || !buf || !bsize || !alignment)
		return -1;

	if (offset &lt; 0)
		offset = lseek(fd, offset, SEEK_END);

	if (offset &lt; 0)
		return -1;

	frontHang = offset % bsize;

	if (lseek(fd, offset - frontHang, SEEK_SET) &lt; 0)
		return -1;

	if (frontHang &amp;&amp; length) {
		if (posix_memalign(&amp;frontPadBuf, alignment, bsize))
			return -1;

		innerCount = bsize - frontHang;
		if (innerCount &gt; length)
			innerCount = length;

		r = read_buffer(fd, frontPadBuf, bsize);
		if (r &lt; 0 || r &lt; (ssize_t)(frontHang + innerCount))
			goto out;

		memcpy((char*)frontPadBuf + frontHang, buf, innerCount);

		if (lseek(fd, offset - frontHang, SEEK_SET) &lt; 0)
			goto out;

		r = write_buffer(fd, frontPadBuf, bsize);
		if (r &lt; 0 || r != (ssize_t)bsize)
			goto out;

		buf = (char*)buf + innerCount;
		length -= innerCount;
	}

	ret = length ? write_blockwise(fd, bsize, alignment, buf, length) : 0;
	if (ret &gt;= 0)
		ret += innerCount;
out:
	free(frontPadBuf);
	return ret;
}

ssize_t read_lseek_blockwise(int fd, size_t bsize, size_t alignment,
			     void *buf, size_t length, off_t offset)
{
	void *frontPadBuf = NULL;
	size_t frontHang, innerCount = 0;
	ssize_t r, ret = -1;

	if (fd == -1 || !buf || bsize &lt;= 0)
		return -1;

	if (offset &lt; 0)
		offset = lseek(fd, offset, SEEK_END);

	if (offset &lt; 0)
		return -1;

	frontHang = offset % bsize;

	if (lseek(fd, offset - frontHang, SEEK_SET) &lt; 0)
		return -1;

	if (frontHang &amp;&amp; length) {
		if (posix_memalign(&amp;frontPadBuf, alignment, bsize))
			return -1;

		innerCount = bsize - frontHang;
		if (innerCount &gt; length)
			innerCount = length;

		r = read_buffer(fd, frontPadBuf, bsize);
		if (r &lt; 0 || r &lt; (ssize_t)(frontHang + innerCount))
			goto out;

		memcpy(buf, (char*)frontPadBuf + frontHang, innerCount);

		buf = (char*)buf + innerCount;
		length -= innerCount;
	}

	ret = read_blockwise(fd, bsize, alignment, buf, length);
	if (ret &gt;= 0)
		ret += innerCount;
out:
	free(frontPadBuf);
	return ret;
}
</file>
  <file fpath="/out/src/cryptsetup/lib/utils_safe_memory.c">/*
 * utils_safe_memory - safe memory helpers
 *
 * Copyright (C) 2009-2024 Red Hat, Inc. All rights reserved.
 * Copyright (C) 2009-2024 Milan Broz
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

#include &lt;stdlib.h&gt;
#include &lt;stdbool.h&gt;
#include &lt;string.h&gt;
#include &lt;sys/mman.h&gt;
#include "libcryptsetup.h"

struct safe_allocation {
	size_t size;
	bool locked;
	char data[0] __attribute__((aligned(8)));
};
#define OVERHEAD offsetof(struct safe_allocation, data)

/*
 * Replacement for memset(s, 0, n) on stack that can be optimized out
 * Also used in safe allocations for explicit memory wipe.
 */
void crypt_safe_memzero(void *data, size_t size)
{
	if (!data)
		return;

#ifdef HAVE_EXPLICIT_BZERO
	explicit_bzero(data, size);
#else
	volatile uint8_t *p = (volatile uint8_t *)data;

	while(size--)
		*p++ = 0;
#endif
}

/* safe allocations */
void *crypt_safe_alloc(size_t size)
{
	struct safe_allocation *alloc;

	if (!size || size &gt; (SIZE_MAX - OVERHEAD))
		return NULL;

	alloc = malloc(size + OVERHEAD);
	if (!alloc)
		return NULL;

	crypt_safe_memzero(alloc, size + OVERHEAD);
	alloc-&gt;size = size;

	/* Ignore failure if it is over limit. */
	if (!mlock(alloc, size + OVERHEAD))
		alloc-&gt;locked = true;

	/* coverity[leaked_storage] */
	return &amp;alloc-&gt;data;
}

void crypt_safe_free(void *data)
{
	struct safe_allocation *alloc;
	volatile size_t *s;
	void *p;

	if (!data)
		return;

	p = (char *)data - OVERHEAD;
	alloc = (struct safe_allocation *)p;

	crypt_safe_memzero(data, alloc-&gt;size);

	if (alloc-&gt;locked) {
		munlock(alloc, alloc-&gt;size + OVERHEAD);
		alloc-&gt;locked = false;
	}

	s = (volatile size_t *)&amp;alloc-&gt;size;
	*s = 0x55aa55aa;
	free(alloc);
}

void *crypt_safe_realloc(void *data, size_t size)
{
	struct safe_allocation *alloc;
	void *new_data;
	void *p;

	new_data = crypt_safe_alloc(size);

	if (new_data &amp;&amp; data) {

		p = (char *)data - OVERHEAD;
		alloc = (struct safe_allocation *)p;

		if (size &gt; alloc-&gt;size)
			size = alloc-&gt;size;

		memcpy(new_data, data, size);
	}

	crypt_safe_free(data);
	return new_data;
}
</file>
  <file fpath="/out/src/cryptsetup/tests/fuzz/crypt2_load_fuzz.cc">/*
 * cryptsetup LUKS2 fuzz target
 *
 * Copyright (C) 2022-2024 Daniel Zatovic &lt;daniel.zatovic@gmail.com&gt;
 * Copyright (C) 2022-2024 Red Hat, Inc. All rights reserved.
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
 */

extern "C" {
#define FILESIZE (16777216)
#include "src/cryptsetup.h"
#include "luks2/luks2.h"
#include "crypto_backend/crypto_backend.h"
#include "FuzzerInterface.h"

#define CHKSUM_ALG "sha256"
#define CHKSUM_SIZE 32

static bool fix_checksum_hdr(struct luks2_hdr_disk *hdr, const char *data, size_t len)
{
	char *csum = (char *)&amp;hdr-&gt;csum;
	struct crypt_hash *hd = NULL;
	bool r = false;

	if (crypt_hash_init(&amp;hd, CHKSUM_ALG))
		return false;

	memset(csum, 0, LUKS2_CHECKSUM_L);

	if (!crypt_hash_write(hd, data, len) &amp;&amp;
	    !crypt_hash_final(hd, csum, CHKSUM_SIZE))
		r = true;

	crypt_hash_destroy(hd);
	return r;
}

static bool calculate_checksum(const char *data, size_t size, struct luks2_hdr_disk *hdr_rw)
{
	uint64_t hdr_size;

	/* Primary header cannot fit in data */
	if (sizeof(*hdr_rw) &gt; size)
		return false;

	hdr_size = be64_to_cpu(((struct luks2_hdr_disk *)data)-&gt;hdr_size);
	if (hdr_size &gt; size || hdr_size &lt;= sizeof(*hdr_rw))
		return false;

	/* Calculate checksum for primary header */
	memcpy(hdr_rw, data, sizeof(*hdr_rw));
	return fix_checksum_hdr(hdr_rw, data, (size_t)hdr_size);
}

int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
{
	int fd, r = EXIT_FAILURE;
	struct crypt_device *cd = NULL;
	char name[] = "/tmp/test-script-fuzz.XXXXXX";
	struct luks2_hdr_disk hdr_rw;
	size_t modified_data_size;

	/* if csum calculation fails, keep fuzzer running on original input */
	if (size &gt;= sizeof(hdr_rw) &amp;&amp; calculate_checksum((const char *)data, size, &amp;hdr_rw))
		modified_data_size = sizeof(hdr_rw);
	else
		modified_data_size = 0;

	/* create file with LUKS header for libcryptsetup */
	fd = mkostemp(name, O_RDWR|O_CREAT|O_EXCL|O_CLOEXEC);
	if (fd == -1)
		return r;

	/* enlarge header */
	if (ftruncate(fd, FILESIZE) == -1)
		goto out;

	if (modified_data_size &amp;&amp;
	    write_buffer(fd, &amp;hdr_rw, modified_data_size) != (ssize_t)modified_data_size)
		goto out;

	if (write_buffer(fd, data + modified_data_size, size - modified_data_size) != (ssize_t)size)
		goto out;

	/* Actual fuzzing */
	if (crypt_init(&amp;cd, name) == 0)
		(void)crypt_load(cd, CRYPT_LUKS2, NULL);
	crypt_free(cd);
	r = 0;
out:
	close(fd);
	unlink(name);

	return r;
}
}
</file>
  <file fpath="/out/src/lvm2/libdm/libdm-common.c">/*
 * Copyright (C) 2001-2004 Sistina Software, Inc. All rights reserved.
 * Copyright (C) 2004-2012 Red Hat, Inc. All rights reserved.
 *
 * This file is part of the device-mapper userspace tools.
 *
 * This copyrighted material is made available to anyone wishing to use,
 * modify, copy, or redistribute it subject to the terms and conditions
 * of the GNU Lesser General Public License v.2.1.
 *
 * You should have received a copy of the GNU Lesser General Public License
 * along with this program; if not, write to the Free Software Foundation,
 * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
 */

#include "libdm/misc/dmlib.h"
#include "libdm-targets.h"
#include "libdm-common.h"
#include "libdm/misc/kdev_t.h"
#include "libdm/misc/dm-ioctl.h"

#include &lt;stdarg.h&gt;
#include &lt;sys/param.h&gt;
#include &lt;sys/ioctl.h&gt;
#include &lt;fcntl.h&gt;
#include &lt;dirent.h&gt;

#ifdef UDEV_SYNC_SUPPORT
#  include &lt;sys/types.h&gt;
#  include &lt;sys/ipc.h&gt;
#  include &lt;sys/sem.h&gt;
#  include &lt;libudev.h&gt;
#endif

#ifdef __linux__
#  include &lt;linux/fs.h&gt;
#endif

#ifdef HAVE_SELINUX
#  include &lt;selinux/selinux.h&gt;
#endif
#ifdef HAVE_SELINUX_LABEL_H
#  include &lt;selinux/label.h&gt;
#endif

#define DM_DEFAULT_NAME_MANGLING_MODE_ENV_VAR_NAME "DM_DEFAULT_NAME_MANGLING_MODE"

#define DEV_DIR "/dev/"

#ifdef UDEV_SYNC_SUPPORT
#ifdef _SEM_SEMUN_UNDEFINED
union semun
{
	int val;			/* value for SETVAL */
	struct semid_ds *buf;		/* buffer for IPC_STAT &amp; IPC_SET */
	unsigned short int *array;	/* array for GETALL &amp; SETALL */
	struct seminfo *__buf;		/* buffer for IPC_INFO */
};
#endif
#endif

static char _dm_dir[PATH_MAX] = DEV_DIR DM_DIR;
static char _sysfs_dir[PATH_MAX] = "/sys/";
static char _path0[PATH_MAX];           /* path buffer, safe 4kB on stack */
static const char _mountinfo[] = "/proc/self/mountinfo";

#define DM_MAX_UUID_PREFIX_LEN	15
static char _default_uuid_prefix[DM_MAX_UUID_PREFIX_LEN + 1] = "LVM-";

static int _verbose = 0;
static int _suspended_dev_counter = 0;
static dm_string_mangling_t _name_mangling_mode = DEFAULT_DM_NAME_MANGLING;

#ifdef HAVE_SELINUX_LABEL_H
static struct selabel_handle *_selabel_handle = NULL;
#endif

static int _udev_disabled = 0;

#ifdef UDEV_SYNC_SUPPORT
static int _semaphore_supported = -1;
static int _udev_running = -1;
static int _sync_with_udev = 1;
static int _udev_checking = 1;
#endif

void dm_lib_init(void)
{
	const char *env;

	if (getenv("DM_DISABLE_UDEV"))
		_udev_disabled = 1;

	_name_mangling_mode = DEFAULT_DM_NAME_MANGLING;
	if ((env = getenv(DM_DEFAULT_NAME_MANGLING_MODE_ENV_VAR_NAME))) {
		if (!strcasecmp(env, "none"))
			_name_mangling_mode = DM_STRING_MANGLING_NONE;
		else if (!strcasecmp(env, "auto"))
			_name_mangling_mode = DM_STRING_MANGLING_AUTO;
		else if (!strcasecmp(env, "hex"))
			_name_mangling_mode = DM_STRING_MANGLING_HEX;
	}
}

/*
 * Library users can provide their own logging
 * function.
 */

__attribute__((format(printf, 5, 0)))
static void _default_log_line(int level, const char *file,
			      int line, int dm_errno_or_class,
			      const char *f, va_list ap)
{
	static int _abort_on_internal_errors = -1;
	static int _debug_with_line_numbers = -1;
	FILE *out = log_stderr(level) ? stderr : stdout;

	level = log_level(level);

	if (level &lt;= _LOG_WARN || _verbose) {
		if (level &lt; _LOG_WARN)
			out = stderr;

		if (_debug_with_line_numbers &lt; 0)
			/* Set when env DM_DEBUG_WITH_LINE_NUMBERS is not "0" */
			_debug_with_line_numbers =
				strcmp(getenv("DM_DEBUG_WITH_LINE_NUMBERS") ? : "0", "0");

		if (_debug_with_line_numbers)
			fprintf(out, "%s:%d     ", file, line);

		vfprintf(out, f, ap);
		fputc('\n', out);
	}

	if (_abort_on_internal_errors &lt; 0)
		/* Set when env DM_ABORT_ON_INTERNAL_ERRORS is not "0" */
		_abort_on_internal_errors =
			strcmp(getenv("DM_ABORT_ON_INTERNAL_ERRORS") ? : "0", "0");

	if (_abort_on_internal_errors &amp;&amp;
	    !strncmp(f, INTERNAL_ERROR, sizeof(INTERNAL_ERROR) - 1))
		abort();
}

__attribute__((format(printf, 5, 6)))
static void _default_log_with_errno(int level,
	    const char *file, int line, int dm_errno_or_class,
	    const char *f, ...)
{
	va_list ap;

	va_start(ap, f);
	_default_log_line(level, file, line, dm_errno_or_class, f, ap);
	va_end(ap);
}

__attribute__((format(printf, 4, 5)))
static void _default_log(int level, const char *file,
			 int line, const char *f, ...)
{
	va_list ap;

	va_start(ap, f);
	_default_log_line(level, file, line, 0, f, ap);
	va_end(ap);
}

dm_log_fn dm_log = _default_log;
dm_log_with_errno_fn dm_log_with_errno = _default_log_with_errno;

/*
 * Wrapper function to reformat new messages to and
 * old style logging which had not used errno parameter
 *
 * As we cannot simply pass '...' to old function we
 * need to process arg list locally and just pass '%s' + buffer
 */
__attribute__((format(printf, 5, 6)))
static void _log_to_default_log(int level,
	    const char *file, int line, int dm_errno_or_class,
	    const char *f, ...)
{
	int n;
	va_list ap;
	char buf[2 * PATH_MAX + 256]; /* big enough for most messages */

	va_start(ap, f);
	n = vsnprintf(buf, sizeof(buf), f, ap);
	va_end(ap);

	if (n &gt; 0) /* Could be truncated */
		dm_log(level, file, line, "%s", buf);
}

/*
 * Wrapper function take 'old' style message without errno
 * and log it via new logging function with errno arg
 *
 * This minor case may happen if new libdm is used with old
 * recompiled tool that would decided to use new logging,
 * but still would like to use old binary plugins.
 */
__attribute__((format(printf, 4, 5)))
static void _log_to_default_log_with_errno(int level,
	    const char *file, int line, const char *f, ...)
{
	int n;
	va_list ap;
	char buf[2 * PATH_MAX + 256]; /* big enough for most messages */

	va_start(ap, f);
	n = vsnprintf(buf, sizeof(buf), f, ap);
	va_end(ap);

	if (n &gt; 0) /* Could be truncated */
		dm_log_with_errno(level, file, line, 0, "%s", buf);
}

void dm_log_init(dm_log_fn fn)
{
	if (fn)  {
		dm_log = fn;
		dm_log_with_errno = _log_to_default_log;
	} else {
		dm_log = _default_log;
		dm_log_with_errno = _default_log_with_errno;
	}
}

int dm_log_is_non_default(void)
{
	return (dm_log == _default_log &amp;&amp; dm_log_with_errno == _default_log_with_errno) ? 0 : 1;
}

void dm_log_with_errno_init(dm_log_with_errno_fn fn)
{
	if (fn) {
		dm_log = _log_to_default_log_with_errno;
		dm_log_with_errno = fn;
	} else {
		dm_log = _default_log;
		dm_log_with_errno = _default_log_with_errno;
	}
}

void dm_log_init_verbose(int level)
{
	_verbose = level;
}

static int _build_dev_path(char *buffer, size_t len, const char *dev_name)
{
	int r;

	/* If there's a /, assume caller knows what they're doing */
	if (strchr(dev_name, '/'))
		r = dm_strncpy(buffer, dev_name, len);
	else
		r = (dm_snprintf(buffer, len, "%s/%s",
				 _dm_dir, dev_name) &lt; 0) ? 0 : 1;
	if (!r)
		log_error("Failed to build dev path for \"%s\".", dev_name);

	return r;
}

int dm_get_library_version(char *version, size_t size)
{
	return dm_strncpy(version, DM_LIB_VERSION, size);
}

void inc_suspended(void)
{
	_suspended_dev_counter++;
	log_debug_activation("Suspended device counter increased to %d", _suspended_dev_counter);
}

void dec_suspended(void)
{
	if (!_suspended_dev_counter) {
		log_error("Attempted to decrement suspended device counter below zero.");
		return;
	}

	_suspended_dev_counter--;
	log_debug_activation("Suspended device counter reduced to %d", _suspended_dev_counter);
}

int dm_get_suspended_counter(void)
{
	return _suspended_dev_counter;
}

int dm_set_name_mangling_mode(dm_string_mangling_t name_mangling_mode)
{
	_name_mangling_mode = name_mangling_mode;

	return 1;
}

dm_string_mangling_t dm_get_name_mangling_mode(void)
{
	return _name_mangling_mode;
}

struct dm_task *dm_task_create(int type)
{
	struct dm_task *dmt = dm_zalloc(sizeof(*dmt));

	if (!dmt) {
		log_error("dm_task_create: malloc(%" PRIsize_t ") failed",
			  sizeof(*dmt));
		return NULL;
	}

	if (!dm_check_version()) {
		dm_free(dmt);
		return_NULL;
	}

	dmt-&gt;type = type;
	dmt-&gt;minor = -1;
	dmt-&gt;major = -1;
	dmt-&gt;allow_default_major_fallback = 1;
	dmt-&gt;uid = DM_DEVICE_UID;
	dmt-&gt;gid = DM_DEVICE_GID;
	dmt-&gt;mode = DM_DEVICE_MODE;
	dmt-&gt;no_open_count = 0;
	dmt-&gt;read_ahead = DM_READ_AHEAD_AUTO;
	dmt-&gt;read_ahead_flags = 0;
	dmt-&gt;event_nr = 0;
	dmt-&gt;cookie_set = 0;
	dmt-&gt;query_inactive_table = 0;
	dmt-&gt;new_uuid = 0;
	dmt-&gt;secure_data = 0;
	dmt-&gt;record_timestamp = 0;
	dmt-&gt;ima_measurement = 0;

	return dmt;
}

/*
 * Find the name associated with a given device number by scanning _dm_dir.
 */
static int _find_dm_name_of_device(dev_t st_rdev, char *buf, size_t buf_len)
{
	const char *name;
	char path[PATH_MAX];
	struct dirent *dirent;
	DIR *d;
	struct stat st;
	int r = 0;

	if (!(d = opendir(_dm_dir))) {
		log_sys_error("opendir", _dm_dir);
		return 0;
	}

	while ((dirent = readdir(d))) {
		name = dirent-&gt;d_name;

		if (!strcmp(name, ".") || !strcmp(name, ".."))
			continue;

		if (dm_snprintf(path, sizeof(path), "%s/%s", _dm_dir,
				name) == -1) {
			log_error("Couldn't create path for %s", name);
			continue;
		}

		if (stat(path, &amp;st))
			continue;

		if (st.st_rdev == st_rdev) {
			strncpy(buf, name, buf_len);
			r = 1;
			break;
		}
	}

	if (closedir(d))
		log_sys_debug("closedir", _dm_dir);

	return r;
}

static int _is_whitelisted_char(char c)
{
	/*
	 * Actually, DM supports any character in a device name.
	 * This whitelist is just for proper integration with udev.
	 */
        if ((c &gt;= '0' &amp;&amp; c &lt;= '9') ||
            (c &gt;= 'A' &amp;&amp; c &lt;= 'Z') ||
            (c &gt;= 'a' &amp;&amp; c &lt;= 'z') ||
            strchr("#+-.:=@_", c) != NULL)
                return 1;

        return 0;
}

int check_multiple_mangled_string_allowed(const char *str, const char *str_name,
					 dm_string_mangling_t mode)
{
	if (mode == DM_STRING_MANGLING_AUTO &amp;&amp; strstr(str, "\\x5cx")) {
		log_error("The %s \"%s\" seems to be mangled more than once. "
			  "This is not allowed in auto mode.", str_name, str);
		return 0;
	}

	return 1;
}

/*
 * Mangle all characters in the input string which are not on a whitelist
 * with '\xNN' format where NN is the hex value of the character.
 */
int mangle_string(const char *str, const char *str_name, size_t len,
		  char *buf, size_t buf_len, dm_string_mangling_t mode)
{
	int need_mangling = -1; /* -1 don't know yet, 0 no, 1 yes */
	size_t i, j;

	if (!str || !buf)
		return -1;

	/* Is there anything to do at all? */
	if (!*str || !len)
		return 0;

	if (buf_len &lt; DM_NAME_LEN) {
		log_error(INTERNAL_ERROR "mangle_string: supplied buffer too small");
		return -1;
	}

	if (mode == DM_STRING_MANGLING_NONE)
		mode = DM_STRING_MANGLING_AUTO;

	for (i = 0, j = 0; str[i]; i++) {
		if (mode == DM_STRING_MANGLING_AUTO) {
			/*
			 * Detect already mangled part of the string and keep it.
			 * Return error on mixture of mangled/not mangled!
			 */
			if (str[i] == '\\' &amp;&amp; str[i+1] == 'x') {
				if ((len - i &lt; 4) || (need_mangling == 1))
					goto bad1;
				if (buf_len - j &lt; 4)
					goto bad2;

				memcpy(&amp;buf[j], &amp;str[i], 4);
				i+=3; j+=4;

				need_mangling = 0;
				continue;
			}
		}

		if (_is_whitelisted_char(str[i])) {
			/* whitelisted, keep it. */
			if (buf_len - j &lt; 1)
				goto bad2;
			buf[j] = str[i];
			j++;
		} else {
			/*
			 * Not on a whitelist, mangle it.
			 * Return error on mixture of mangled/not mangled
			 * unless a DM_STRING_MANGLING_HEX is used!.
			 */
			if ((mode != DM_STRING_MANGLING_HEX) &amp;&amp; (need_mangling == 0))
				goto bad1;
			if (buf_len - j &lt; 4)
				goto bad2;

			sprintf(&amp;buf[j], "\\x%02x", (unsigned char) str[i]);
			j+=4;

			need_mangling = 1;
		}
	}

	if (buf_len - j &lt; 1)
		goto bad2;
	buf[j] = '\0';

	/* All chars in the string whitelisted? */
	if (need_mangling == -1)
		need_mangling = 0;

	return need_mangling;

bad1:
	log_error("The %s \"%s\" contains mixed mangled and unmangled "
		  "characters or it's already mangled improperly.", str_name, str);
	return -1;
bad2:
	log_error("Mangled form of the %s too long for \"%s\".", str_name, str);
	return -1;
}

/*
 * Try to unmangle supplied string.
 * Return value: -1 on error, 0 when no unmangling needed, 1 when unmangling applied
 */
int unmangle_string(const char *str, const char *str_name, size_t len,
		    char *buf, size_t buf_len, dm_string_mangling_t mode)
{
	int strict = mode != DM_STRING_MANGLING_NONE;
	char str_rest[DM_NAME_LEN];
	size_t i, j;
	unsigned int code;
	int r = 0;

	if (!str || !buf)
		return -1;

	/* Is there anything to do at all? */
	if (!*str || !len)
		return 0;

	if (buf_len &lt; DM_NAME_LEN) {
		log_error(INTERNAL_ERROR "unmangle_string: supplied buffer too small");
		return -1;
	}

	for (i = 0, j = 0; str[i]; i++, j++) {
		if (strict &amp;&amp; !(_is_whitelisted_char(str[i]) || str[i]=='\\')) {
			log_error("The %s \"%s\" should be mangled but "
				  "it contains blacklisted characters.", str_name, str);
			j=0; r=-1;
			goto out;
		}

		if (str[i] == '\\' &amp;&amp; str[i+1] == 'x') {
			if (!sscanf(&amp;str[i+2], "%2x%s", &amp;code, str_rest)) {
				log_debug_activation("Hex encoding mismatch detected in %s \"%s\" "
						     "while trying to unmangle it.", str_name, str);
				goto out;
			}
			buf[j] = (unsigned char) code;

			/* skip the encoded part we've just decoded! */
			i+= 3;

			/* unmangling applied */
			r = 1;
		} else
			buf[j] = str[i];
	}

out:
	buf[j] = '\0';
	return r;
}

static int _dm_task_set_name(struct dm_task *dmt, const char *name,
			     dm_string_mangling_t mangling_mode)
{
	char mangled_name[DM_NAME_LEN];
	int r = 0;

	dm_free(dmt-&gt;dev_name);
	dmt-&gt;dev_name = NULL;
	dm_free(dmt-&gt;mangled_dev_name);
	dmt-&gt;mangled_dev_name = NULL;

	if (strlen(name) &gt;= DM_NAME_LEN) {
		log_error("Name \"%s\" too long.", name);
		return 0;
	}

	if (!check_multiple_mangled_string_allowed(name, "name", mangling_mode))
		return_0;

	if (mangling_mode != DM_STRING_MANGLING_NONE &amp;&amp;
	    (r = mangle_string(name, "name", strlen(name), mangled_name,
			       sizeof(mangled_name), mangling_mode)) &lt; 0) {
		log_error("Failed to mangle device name \"%s\".", name);
		return 0;
	}

	/* Store mangled_dev_name only if it differs from dev_name! */
	if (r) {
		log_debug_activation("Device name mangled [%s]: %s --&gt; %s",
				     mangling_mode == DM_STRING_MANGLING_AUTO ? "auto" : "hex",
				     name, mangled_name);
		if (!(dmt-&gt;mangled_dev_name = dm_strdup(mangled_name))) {
			log_error("_dm_task_set_name: dm_strdup(%s) failed", mangled_name);
			return 0;
		}
	}

	if (!(dmt-&gt;dev_name = dm_strdup(name))) {
		log_error("_dm_task_set_name: strdup(%s) failed", name);
		return 0;
	}

	return 1;
}

static int _dm_task_set_name_from_path(struct dm_task *dmt, const char *path,
				       const char *name)
{
	char buf[PATH_MAX];
	struct stat st1, st2;
	const char *final_name = NULL;
	size_t len;

	if (dmt-&gt;type == DM_DEVICE_CREATE) {
		log_error("Name \"%s\" invalid. It contains \"/\".", path);
		return 0;
	}

	if (!stat(path, &amp;st1)) {
		/*
		 * Found directly.
		 * If supplied path points to same device as last component
		 * under /dev/mapper, use that name directly.  
		 */
		if (dm_snprintf(buf, sizeof(buf), "%s/%s", _dm_dir, name) == -1) {
			log_error("Couldn't create path for %s", name);
			return 0;
		}

		if (!stat(buf, &amp;st2) &amp;&amp; (st1.st_rdev == st2.st_rdev))
			final_name = name;
	} else {
		/* Not found. */
		/* If there is exactly one '/' try a prefix of /dev */
		if ((len = strlen(path)) &lt; 3 || path[0] == '/' ||
		    dm_count_chars(path, len, '/') != 1) {
			log_error("Device %s not found", path);
			return 0;
		}
		if (dm_snprintf(buf, sizeof(buf), "%s/../%s", _dm_dir, path) == -1) {
			log_error("Couldn't create /dev path for %s", path);
			return 0;
		}
		if (stat(buf, &amp;st1)) {
			log_error("Device %s not found", path);
			return 0;
		}
		/* Found */
	}

	/*
	 * If we don't have the dm name yet, Call _find_dm_name_of_device() to
	 * scan _dm_dir for a match.
	 */
	if (!final_name) {
		if (_find_dm_name_of_device(st1.st_rdev, buf, sizeof(buf)))
			final_name = buf;
		else {
			log_error("Device %s not found", name);
			return 0;
		}
	}

	/* This is an already existing path - do not mangle! */
	return _dm_task_set_name(dmt, final_name, DM_STRING_MANGLING_NONE);
}

int dm_task_set_name(struct dm_task *dmt, const char *name)
{
	char *pos;

	/* Path supplied for existing device? */
	if ((pos = strrchr(name, '/')))
		return _dm_task_set_name_from_path(dmt, name, pos + 1);

	return _dm_task_set_name(dmt, name, dm_get_name_mangling_mode());
}

const char *dm_task_get_name(const struct dm_task *dmt)
{
	return (dmt-&gt;dmi.v4-&gt;name);
}

static char *_task_get_string_mangled(const char *str, const char *str_name,
				      char *buf, size_t buf_size,
				      dm_string_mangling_t mode)
{
	char *rs;
	int r;

	if ((r = mangle_string(str, str_name, strlen(str), buf, buf_size, mode)) &lt; 0)
		return NULL;

	if (!(rs = r ? dm_strdup(buf) : dm_strdup(str)))
		log_error("_task_get_string_mangled: dm_strdup failed");

	return rs;
}

static char *_task_get_string_unmangled(const char *str, const char *str_name,
					char *buf, size_t buf_size,
					dm_string_mangling_t mode)
{
	char *rs;
	int r = 0;

	/*
	 * Unless the mode used is 'none', the string
	 * is *already* unmangled on ioctl return!
	 */
	if (mode == DM_STRING_MANGLING_NONE &amp;&amp;
	    (r = unmangle_string(str, str_name, strlen(str), buf, buf_size, mode)) &lt; 0)
		return NULL;

	if (!(rs = r ? dm_strdup(buf) : dm_strdup(str)))
		log_error("_task_get_string_unmangled: dm_strdup failed");

	return rs;
}

char *dm_task_get_name_mangled(const struct dm_task *dmt)
{
	const char *s = dm_task_get_name(dmt);
	char buf[DM_NAME_LEN];
	char *rs;

	if (!(rs = _task_get_string_mangled(s, "name", buf, sizeof(buf), dm_get_name_mangling_mode())))
		log_error("Failed to mangle device name \"%s\".", s);

	return rs;
}

char *dm_task_get_name_unmangled(const struct dm_task *dmt)
{
	const char *s = dm_task_get_name(dmt);
	char buf[DM_NAME_LEN];
	char *rs;

	if (!(rs = _task_get_string_unmangled(s, "name", buf, sizeof(buf), dm_get_name_mangling_mode())))
		log_error("Failed to unmangle device name \"%s\".", s);

	return rs;
}

const char *dm_task_get_uuid(const struct dm_task *dmt)
{
	return (dmt-&gt;dmi.v4-&gt;uuid);
}

char *dm_task_get_uuid_mangled(const struct dm_task *dmt)
{
	const char *s = dm_task_get_uuid(dmt);
	char buf[DM_UUID_LEN];
	char *rs;

	if (!(rs = _task_get_string_mangled(s, "UUID", buf, sizeof(buf), dm_get_name_mangling_mode())))
		log_error("Failed to mangle device uuid \"%s\".", s);

	return rs;
}

char *dm_task_get_uuid_unmangled(const struct dm_task *dmt)
{
	const char *s = dm_task_get_uuid(dmt);
	char buf[DM_UUID_LEN];
	char *rs;

	if (!(rs = _task_get_string_unmangled(s, "UUID", buf, sizeof(buf), dm_get_name_mangling_mode())))
		log_error("Failed to unmangle device uuid \"%s\".", s);

	return rs;
}

int dm_task_set_newname(struct dm_task *dmt, const char *newname)
{
	dm_string_mangling_t mangling_mode = dm_get_name_mangling_mode();
	char mangled_name[DM_NAME_LEN];
	int r = 0;

	if (strchr(newname, '/')) {
		log_error("Name \"%s\" invalid. It contains \"/\".", newname);
		return 0;
	}

	if (strlen(newname) &gt;= DM_NAME_LEN) {
		log_error("Name \"%s\" too long", newname);
		return 0;
	}

	if (!*newname) {
		log_error("Non empty new name is required.");
		return 0;
	}

	if (!check_multiple_mangled_string_allowed(newname, "new name", mangling_mode))
		return_0;

	if (mangling_mode != DM_STRING_MANGLING_NONE &amp;&amp;
	    (r = mangle_string(newname, "new name", strlen(newname), mangled_name,
			       sizeof(mangled_name), mangling_mode)) &lt; 0) {
		log_error("Failed to mangle new device name \"%s\"", newname);
		return 0;
	}

	if (r) {
		log_debug_activation("New device name mangled [%s]: %s --&gt; %s",
				     mangling_mode == DM_STRING_MANGLING_AUTO ? "auto" : "hex",
				     newname, mangled_name);
		newname = mangled_name;
	}

	dm_free(dmt-&gt;newname);
	if (!(dmt-&gt;newname = dm_strdup(newname))) {
		log_error("dm_task_set_newname: strdup(%s) failed", newname);
		return 0;
	}

	dmt-&gt;new_uuid = 0;

	return 1;
}

int dm_task_set_uuid(struct dm_task *dmt, const char *uuid)
{
	char mangled_uuid[DM_UUID_LEN];
	dm_string_mangling_t mangling_mode = dm_get_name_mangling_mode();
	int r = 0;

	dm_free(dmt-&gt;uuid);
	dmt-&gt;uuid = NULL;
	dm_free(dmt-&gt;mangled_uuid);
	dmt-&gt;mangled_uuid = NULL;

	if (!check_multiple_mangled_string_allowed(uuid, "UUID", mangling_mode))
		return_0;

	if (mangling_mode != DM_STRING_MANGLING_NONE &amp;&amp;
	    (r = mangle_string(uuid, "UUID", strlen(uuid), mangled_uuid,
			       sizeof(mangled_uuid), mangling_mode)) &lt; 0) {
		log_error("Failed to mangle device uuid \"%s\".", uuid);
		return 0;
	}

	if (r) {
		log_debug_activation("Device uuid mangled [%s]: %s --&gt; %s",
				     mangling_mode == DM_STRING_MANGLING_AUTO ? "auto" : "hex",
				     uuid, mangled_uuid);

		if (!(dmt-&gt;mangled_uuid = dm_strdup(mangled_uuid))) {
			log_error("dm_task_set_uuid: dm_strdup(%s) failed", mangled_uuid);
			return 0;
		}
	}

	if (!(dmt-&gt;uuid = dm_strdup(uuid))) {
		log_error("dm_task_set_uuid: strdup(%s) failed", uuid);
		return 0;
	}

	return 1;
}

int dm_task_set_major(struct dm_task *dmt, int major)
{
	dmt-&gt;major = major;
	dmt-&gt;allow_default_major_fallback = 0;

	return 1;
}

int dm_task_set_minor(struct dm_task *dmt, int minor)
{
	dmt-&gt;minor = minor;

	return 1;
}

int dm_task_set_major_minor(struct dm_task *dmt, int major, int minor,
			    int allow_default_major_fallback)
{
	dmt-&gt;major = major;
	dmt-&gt;minor = minor;
	dmt-&gt;allow_default_major_fallback = allow_default_major_fallback;

	return 1;
}

int dm_task_set_uid(struct dm_task *dmt, uid_t uid)
{
	dmt-&gt;uid = uid;

	return 1;
}

int dm_task_set_gid(struct dm_task *dmt, gid_t gid)
{
	dmt-&gt;gid = gid;

	return 1;
}

int dm_task_set_mode(struct dm_task *dmt, mode_t mode)
{
	dmt-&gt;mode = mode;

	return 1;
}

int dm_task_enable_checks(struct dm_task *dmt)
{
	dmt-&gt;enable_checks = 1;

	return 1;
}

int dm_task_add_target(struct dm_task *dmt, uint64_t start, uint64_t size,
		       const char *ttype, const char *params)
{
	struct target *t = create_target(start, size, ttype, params);
	if (!t)
		return_0;

	if (!dmt-&gt;head)
		dmt-&gt;head = dmt-&gt;tail = t;
	else {
		dmt-&gt;tail-&gt;next = t;
		dmt-&gt;tail = t;
	}

	return 1;
}

#ifdef HAVE_SELINUX
static int _selabel_lookup(const char *path, mode_t mode,
			   char **scontext)
{
#ifdef HAVE_SELINUX_LABEL_H
	if (!_selabel_handle &amp;&amp;
	    !(_selabel_handle = selabel_open(SELABEL_CTX_FILE, NULL, 0))) {
		log_error("selabel_open failed: %s", strerror(errno));
		return 0;
	}

	if (selabel_lookup(_selabel_handle, scontext, path, mode)) {
		log_debug_activation("selabel_lookup failed for %s: %s",
				     path, strerror(errno));
		return 0;
	}
#else
	if (matchpathcon(path, mode, scontext)) {
		log_debug_activation("matchpathcon failed for %s: %s",
				     path, strerror(errno));
		return 0;
	}
#endif
	return 1;
}
#endif

#ifdef HAVE_SELINUX
static int _is_selinux_enabled(void)
{
	static int _tested = 0;
	static int _enabled;

	if (!_tested) {
		_tested = 1;
		_enabled = is_selinux_enabled();
	}

	return _enabled;
}
#endif

int dm_prepare_selinux_context(const char *path, mode_t mode)
{
#ifdef HAVE_SELINUX
	char *scontext = NULL;

	if (_is_selinux_enabled() &lt;= 0)
		return 1;

	if (path) {
		if (!_selabel_lookup(path, mode, &amp;scontext))
			return_0;

		log_debug_activation("Preparing SELinux context for %s to %s.", path, scontext);
	}
	else
		log_debug_activation("Resetting SELinux context to default value.");

	if (setfscreatecon(scontext) &lt; 0) {
		log_sys_error("setfscreatecon", (path ? : "SELinux context reset"));
		freecon(scontext);
		return 0;
	}

	freecon(scontext);
#endif
	return 1;
}

int dm_set_selinux_context(const char *path, mode_t mode)
{
#ifdef HAVE_SELINUX
	char *scontext = NULL;

	if (_is_selinux_enabled() &lt;= 0)
		return 1;

	if (!_selabel_lookup(path, mode, &amp;scontext))
		return_0;

	log_debug_activation("Setting SELinux context for %s to %s.", path, scontext);

	if ((lsetfilecon(path, scontext) &lt; 0) &amp;&amp; (errno != ENOTSUP)) {
		log_sys_error("lsetfilecon", path);
		freecon(scontext);
		return 0;
	}

	freecon(scontext);
#endif
	return 1;
}

void selinux_release(void)
{
#ifdef HAVE_SELINUX_LABEL_H
	if (_selabel_handle)
		selabel_close(_selabel_handle);
	_selabel_handle = NULL;
#endif
}

static int _warn_if_op_needed(int warn_if_udev_failed)
{
    return warn_if_udev_failed &amp;&amp; dm_udev_get_sync_support() &amp;&amp; dm_udev_get_checking();
}

static int _add_dev_node(const char *dev_name, uint32_t major, uint32_t minor,
			 uid_t uid, gid_t gid, mode_t mode, int warn_if_udev_failed)
{
	char path[PATH_MAX];
	struct stat info;
	dev_t dev = MKDEV(major, minor);
	mode_t old_mask;

	if (!_build_dev_path(path, sizeof(path), dev_name))
		return_0;

	if (stat(path, &amp;info) &gt;= 0) {
		if (!S_ISBLK(info.st_mode)) {
			log_error("A non-block device file at '%s' "
				  "is already present", path);
			return 0;
		}

		/* If right inode already exists we don't touch uid etc. */
		if (info.st_rdev == dev)
			return 1;

		if (unlink(path) &lt; 0) {
			log_error("Unable to unlink device node for '%s'",
				  dev_name);
			return 0;
		}
	} else if (_warn_if_op_needed(warn_if_udev_failed))
		log_warn("%s not set up by udev: Falling back to direct "
			 "node creation.", path);

	(void) dm_prepare_selinux_context(path, S_IFBLK);
	old_mask = umask(0);

	/* The node may already have been created by udev. So ignore EEXIST. */
	if (mknod(path, S_IFBLK | mode, dev) &lt; 0 &amp;&amp; errno != EEXIST) {
		log_error("%s: mknod for %s failed: %s", path, dev_name, strerror(errno));
		umask(old_mask);
		(void) dm_prepare_selinux_context(NULL, 0);
		return 0;
	}
	umask(old_mask);
	(void) dm_prepare_selinux_context(NULL, 0);

	if (chown(path, uid, gid) &lt; 0) {
		log_sys_error("chown", path);
		return 0;
	}

	log_debug_activation("Created %s", path);

	return 1;
}

static int _rm_dev_node(const char *dev_name, int warn_if_udev_failed)
{
	char path[PATH_MAX];
	struct stat info;

	if (!_build_dev_path(path, sizeof(path), dev_name))
		return_0;
	if (lstat(path, &amp;info) &lt; 0)
		return 1;
	else if (_warn_if_op_needed(warn_if_udev_failed))
		log_warn("Node %s was not removed by udev. "
			 "Falling back to direct node removal.", path);

	/* udev may already have deleted the node. Ignore ENOENT. */
	if (unlink(path) &lt; 0 &amp;&amp; errno != ENOENT) {
		log_error("Unable to unlink device node for '%s'", dev_name);
		return 0;
	}

	log_debug_activation("Removed %s", path);

	return 1;
}

static int _rename_dev_node(const char *old_name, const char *new_name,
			    int warn_if_udev_failed)
{
	char oldpath[PATH_MAX];
	char newpath[PATH_MAX];
	struct stat info, info2;
	struct stat *info_block_dev;

	if (!_build_dev_path(oldpath, sizeof(oldpath), old_name) ||
	    !_build_dev_path(newpath, sizeof(newpath), new_name))
		return_0;

	if (lstat(newpath, &amp;info) == 0) {
		if (S_ISLNK(info.st_mode)) {
			if (stat(newpath, &amp;info2) == 0)
				info_block_dev = &amp;info2;
			else {
				log_sys_error("stat", newpath);
				return 0;
			}
		} else
			info_block_dev = &amp;info;

		if (!S_ISBLK(info_block_dev-&gt;st_mode)) {
			log_error("A non-block device file at '%s' "
				  "is already present", newpath);
			return 0;
		}
		else if (_warn_if_op_needed(warn_if_udev_failed)) {
			if (lstat(oldpath, &amp;info) &lt; 0 &amp;&amp;
				 errno == ENOENT)
				/* assume udev already deleted this */
				return 1;

			log_warn("The node %s should have been renamed to %s "
				 "by udev but old node is still present. "
				 "Falling back to direct old node removal.",
				 oldpath, newpath);
			return _rm_dev_node(old_name, 0);
		}

		if (unlink(newpath) &lt; 0) {
			if (errno == EPERM) {
				/* devfs, entry has already been renamed */
				return 1;
			}
			log_error("Unable to unlink device node for '%s'",
				  new_name);
			return 0;
		}
	}
	else if (_warn_if_op_needed(warn_if_udev_failed))
		log_warn("The node %s should have been renamed to %s "
			 "by udev but new node is not present. "
			 "Falling back to direct node rename.",
			 oldpath, newpath);

	/* udev may already have renamed the node. Ignore ENOENT. */
	/* FIXME: when renaming to target mangling mode "none" with udev
	 * while there are some blacklisted characters in the node name,
	 * udev will remove the old_node, but fails to properly rename
	 * to new_node. The libdevmapper code tries to call
	 * rename(old_node,new_node), but that won't do anything
	 * since the old node is already removed by udev.
	 * For example renaming 'a\x20b' to 'a b':
	 *   - udev removes 'a\x20b'
	 *   - udev creates 'a' and 'b' (since it considers the ' ' as a delimiter
	 *   - libdevmapper checks udev has done the rename properly
	 *   - libdevmapper calls stat(new_node) and it does not see it
	 *   - libdevmapper calls rename(old_node,new_node)
	 *   - the rename is a NOP since the old_node does not exist anymore
	 *
	 * However, this situation is very rare - why would anyone need
	 * to rename to an unsupported mode??? So a fix for this would be
	 * just for completeness.
	 */
	if (rename(oldpath, newpath) &lt; 0 &amp;&amp; errno != ENOENT) {
		log_error("Unable to rename device node from '%s' to '%s'",
			  old_name, new_name);
		return 0;
	}

	log_debug_activation("Renamed %s to %s", oldpath, newpath);

	return 1;
}

#ifdef __linux__
static int _open_dev_node(const char *dev_name)
{
	int fd = -1;
	char path[PATH_MAX];

	if (!_build_dev_path(path, sizeof(path), dev_name))
		return fd;

	if ((fd = open(path, O_RDONLY, 0)) &lt; 0)
		log_sys_error("open", path);

	return fd;
}

int get_dev_node_read_ahead(const char *dev_name, uint32_t major, uint32_t minor,
			    uint32_t *read_ahead)
{
	char buf[24];
	int len;
	int r = 1;
	int fd;
	long read_ahead_long = 0;

	/*
	 * If we know the device number, use sysfs if we can.
	 * Otherwise use BLKRAGET ioctl.
	 */
	if (*_sysfs_dir &amp;&amp; major != 0) {
		if (dm_snprintf(_path0, sizeof(_path0), "%sdev/block/%" PRIu32
				":%" PRIu32 "/bdi/read_ahead_kb", _sysfs_dir,
				major, minor) &lt; 0) {
			log_error("Failed to build sysfs_path.");
			return 0;
		}

		if ((fd = open(_path0, O_RDONLY, 0)) != -1) {
			/* Reading from sysfs, expecting number\n */
			if ((len = read(fd, buf, sizeof(buf) - 1)) &lt; 1) {
				log_sys_error("read", _path0);
				r = 0;
			} else {
				buf[len] = 0; /* kill \n and ensure \0 */
				*read_ahead = atoi(buf) * 2;
				log_debug_activation("%s (%d:%d): read ahead is %" PRIu32,
						     dev_name, major, minor, *read_ahead);
			}

			if (close(fd))
				log_sys_debug("close", _path0);

			return r;
		}

		log_sys_debug("open", _path0);
		/* Fall back to use dev_name */
	}

	/*
	 * Open/close dev_name may block the process
	 * (i.e. overfilled thin pool volume)
	 */
	if (!*dev_name) {
		log_error("Empty device name passed to BLKRAGET");
		return 0;
	}

	if ((fd = _open_dev_node(dev_name)) &lt; 0)
		return_0;

	if (ioctl(fd, BLKRAGET, &amp;read_ahead_long)) {
		log_sys_error("BLKRAGET", dev_name);
		*read_ahead = 0;
		r = 0;
	} else {
		*read_ahead = (uint32_t) read_ahead_long;
		log_debug_activation("%s: read ahead is %" PRIu32, dev_name, *read_ahead);
	}

	if (close(fd))
		log_sys_debug("close", dev_name);

	return r;
}

static int _set_read_ahead(const char *dev_name, uint32_t major, uint32_t minor,
			   uint32_t read_ahead)
{
	char buf[24];
	int len;
	int r = 1;
	int fd;
	long read_ahead_long = (long) read_ahead;

	log_debug_activation("%s (%d:%d): Setting read ahead to %" PRIu32, dev_name,
			     major, minor, read_ahead);

	/*
	 * If we know the device number, use sysfs if we can.
	 * Otherwise use BLKRASET ioctl. RA is set after resume.
	 */
	if (*_sysfs_dir &amp;&amp; major != 0) {
		if (dm_snprintf(_path0, sizeof(_path0), "%sdev/block/%" PRIu32
				":%" PRIu32 "/bdi/read_ahead_kb",
				_sysfs_dir, major, minor) &lt; 0) {
			log_error("Failed to build sysfs_path.");
			return 0;
		}

		/* Sysfs is kB based, round up to kB */
		if ((len = dm_snprintf(buf, sizeof(buf), FMTu32,
				       (read_ahead + 1) / 2)) &lt; 0) {
			log_error("Failed to build size in kB.");
			return 0;
		}

		if ((fd = open(_path0, O_WRONLY, 0)) != -1) {
			if (write(fd, buf, len) &lt; len) {
				log_sys_error("write", _path0);
				r = 0;
			}

			if (close(fd))
				log_sys_debug("close", _path0);

			return r;
		}

		log_sys_debug("open", _path0);
		/* Fall back to use dev_name */
	}

	if (!*dev_name) {
		log_error("Empty device name passed to BLKRAGET");
		return 0;
	}

	if ((fd = _open_dev_node(dev_name)) &lt; 0)
		return_0;

	if (ioctl(fd, BLKRASET, read_ahead_long)) {
		log_sys_error("BLKRASET", dev_name);
		r = 0;
	}

	if (close(fd))
		log_sys_debug("close", dev_name);

	return r;
}

static int _set_dev_node_read_ahead(const char *dev_name,
				    uint32_t major, uint32_t minor,
				    uint32_t read_ahead, uint32_t read_ahead_flags)
{
	uint32_t current_read_ahead;

	if (read_ahead == DM_READ_AHEAD_AUTO)
		return 1;

	if (read_ahead == DM_READ_AHEAD_NONE)
		read_ahead = 0;

	if (read_ahead_flags &amp; DM_READ_AHEAD_MINIMUM_FLAG) {
		if (!get_dev_node_read_ahead(dev_name, major, minor, &amp;current_read_ahead))
			return_0;

		if (current_read_ahead &gt;= read_ahead) {
			log_debug_activation("%s: retaining kernel read ahead of %" PRIu32
				  " (requested %" PRIu32 ")",           
				  dev_name, current_read_ahead, read_ahead);
			return 1;
		}
	}

	return _set_read_ahead(dev_name, major, minor, read_ahead);
}

#else

int get_dev_node_read_ahead(const char *dev_name, uint32_t *read_ahead)
{
	*read_ahead = 0;

	return 1;
}

static int _set_dev_node_read_ahead(const char *dev_name,
				    uint32_t major, uint32_t minor,
				    uint32_t read_ahead, uint32_t read_ahead_flags)
{
	return 1;
}
#endif

typedef enum {
	NODE_ADD,
	NODE_DEL,
	NODE_RENAME,
	NODE_READ_AHEAD,
	NUM_NODES
} node_op_t;

static int _do_node_op(node_op_t type, const char *dev_name, uint32_t major,
		       uint32_t minor, uid_t uid, gid_t gid, mode_t mode,
		       const char *old_name, uint32_t read_ahead,
		       uint32_t read_ahead_flags, int warn_if_udev_failed)
{
	switch (type) {
	case NODE_ADD:
		return _add_dev_node(dev_name, major, minor, uid, gid,
				     mode, warn_if_udev_failed);
	case NODE_DEL:
		return _rm_dev_node(dev_name, warn_if_udev_failed);
	case NODE_RENAME:
		return _rename_dev_node(old_name, dev_name, warn_if_udev_failed);
	case NODE_READ_AHEAD:
		return _set_dev_node_read_ahead(dev_name, major, minor,
						read_ahead, read_ahead_flags);
	default:
		; /* NOTREACHED */
	}

	return 1;
}

static DM_LIST_INIT(_node_ops);
static int _count_node_ops[NUM_NODES];

struct node_op_parms {
	struct dm_list list;
	node_op_t type;
	char *dev_name;
	uint32_t major;
	uint32_t minor;
	uid_t uid;
	gid_t gid;
	mode_t mode;
	uint32_t read_ahead;
	uint32_t read_ahead_flags;
	char *old_name;
	int warn_if_udev_failed;
	unsigned rely_on_udev;
	char names[0];
};

static void _store_str(char **pos, char **ptr, const char *str)
{
	strcpy(*pos, str);
	*ptr = *pos;
	*pos += strlen(*ptr) + 1;
}

static void _del_node_op(struct node_op_parms *nop)
{
	_count_node_ops[nop-&gt;type]--;
	dm_list_del(&amp;nop-&gt;list);
	dm_free(nop);

}

/* Check if there is other the type of node operation stacked */
static int _other_node_ops(node_op_t type)
{
	unsigned i;

	for (i = 0; i &lt; NUM_NODES; i++)
		if (type != i &amp;&amp; _count_node_ops[i])
			return 1;
	return 0;
}

static void _log_node_op(const char *action_str, struct node_op_parms *nop)
{
	const char *rely = nop-&gt;rely_on_udev ? " [trust_udev]" : "" ;
	const char *verify = nop-&gt;warn_if_udev_failed ? " [verify_udev]" : "";

	switch (nop-&gt;type) {
	case NODE_ADD:
		log_debug_activation("%s: %s NODE_ADD (%" PRIu32 ",%" PRIu32 ") %u:%u 0%o%s%s",
				     nop-&gt;dev_name, action_str, nop-&gt;major, nop-&gt;minor, nop-&gt;uid, nop-&gt;gid, nop-&gt;mode,
				     rely, verify);
		break;
	case NODE_DEL:
		log_debug_activation("%s: %s NODE_DEL%s%s", nop-&gt;dev_name, action_str, rely, verify);
		break;
	case NODE_RENAME:
		log_debug_activation("%s: %s NODE_RENAME to %s%s%s", nop-&gt;old_name, action_str, nop-&gt;dev_name, rely, verify);
		break;
	case NODE_READ_AHEAD:
		log_debug_activation("%s: %s NODE_READ_AHEAD %" PRIu32 " (flags=%" PRIu32 ")%s%s",
				     nop-&gt;dev_name, action_str, nop-&gt;read_ahead, nop-&gt;read_ahead_flags, rely, verify);
		break;
	default:
		; /* NOTREACHED */
	}
}

static int _stack_node_op(node_op_t type, const char *dev_name, uint32_t major,
			  uint32_t minor, uid_t uid, gid_t gid, mode_t mode,
			  const char *old_name, uint32_t read_ahead,
			  uint32_t read_ahead_flags, int warn_if_udev_failed,
			  unsigned rely_on_udev)
{
	struct node_op_parms *nop;
	struct dm_list *noph, *nopht;
	size_t len = strlen(dev_name) + strlen(old_name) + 2;
	char *pos;

	/*
	 * Note: warn_if_udev_failed must have valid content
	 */
	if ((type == NODE_DEL) &amp;&amp; _other_node_ops(type))
		/*
		 * Ignore any outstanding operations on the node if deleting it.
		 */
		dm_list_iterate_safe(noph, nopht, &amp;_node_ops) {
			nop = dm_list_item(noph, struct node_op_parms);
			if (!strcmp(dev_name, nop-&gt;dev_name)) {
				_log_node_op("Unstacking", nop);
				_del_node_op(nop);
				if (!_other_node_ops(type))
					break; /* no other non DEL ops */
			}
		}
	else if ((type == NODE_ADD) &amp;&amp; _count_node_ops[NODE_DEL])
		/*
		 * Ignore previous DEL operation on added node.
		 * (No other operations for this device then DEL could be stacked here).
		 */
		dm_list_iterate_safe(noph, nopht, &amp;_node_ops) {
			nop = dm_list_item(noph, struct node_op_parms);
			if ((nop-&gt;type == NODE_DEL) &amp;&amp;
			    !strcmp(dev_name, nop-&gt;dev_name)) {
				_log_node_op("Unstacking", nop);
				_del_node_op(nop);
				break; /* no other DEL ops */
			}
		}
	else if (type == NODE_RENAME)
		/*
		 * Ignore any outstanding operations if renaming it.
		 *
		 * Currently  RENAME operation happens through 'suspend -&gt; resume'.
		 * On 'resume' device is added with read_ahead settings, so it is
		 * safe to remove any stacked ADD, RENAME, READ_AHEAD operation
		 * There cannot be any DEL operation on the renamed device.
		 */
		dm_list_iterate_safe(noph, nopht, &amp;_node_ops) {
			nop = dm_list_item(noph, struct node_op_parms);
			if (!strcmp(old_name, nop-&gt;dev_name)) {
				_log_node_op("Unstacking", nop);
				_del_node_op(nop);
			}
		}
	else if (type == NODE_READ_AHEAD) {
		/* udev doesn't process readahead */
		rely_on_udev = 0;
		warn_if_udev_failed = 0;
	}

	if (!(nop = dm_malloc(sizeof(*nop) + len))) {
		log_error("Insufficient memory to stack mknod operation");
		return 0;
	}

	pos = nop-&gt;names;
	nop-&gt;type = type;
	nop-&gt;major = major;
	nop-&gt;minor = minor;
	nop-&gt;uid = uid;
	nop-&gt;gid = gid;
	nop-&gt;mode = mode;
	nop-&gt;read_ahead = read_ahead;
	nop-&gt;read_ahead_flags = read_ahead_flags;
	nop-&gt;rely_on_udev = rely_on_udev;

	/*
	 * Clear warn_if_udev_failed if rely_on_udev is set.  It doesn't get
	 * checked in this case - this just removes the flag from log messages.
	 */
	nop-&gt;warn_if_udev_failed = rely_on_udev ? 0 : warn_if_udev_failed;

	_store_str(&amp;pos, &amp;nop-&gt;dev_name, dev_name);
	_store_str(&amp;pos, &amp;nop-&gt;old_name, old_name);

	_count_node_ops[type]++;
	dm_list_add(&amp;_node_ops, &amp;nop-&gt;list);

	_log_node_op("Stacking", nop);

	return 1;
}

static void _pop_node_ops(void)
{
	struct dm_list *noph, *nopht;
	struct node_op_parms *nop;

	dm_list_iterate_safe(noph, nopht, &amp;_node_ops) {
		nop = dm_list_item(noph, struct node_op_parms);
		if (!nop-&gt;rely_on_udev) {
			_log_node_op("Processing", nop);
			_do_node_op(nop-&gt;type, nop-&gt;dev_name, nop-&gt;major, nop-&gt;minor,
				    nop-&gt;uid, nop-&gt;gid, nop-&gt;mode, nop-&gt;old_name,
				    nop-&gt;read_ahead, nop-&gt;read_ahead_flags,
				    nop-&gt;warn_if_udev_failed);
		} else
			_log_node_op("Skipping", nop);
		_del_node_op(nop);
	}
}

int add_dev_node(const char *dev_name, uint32_t major, uint32_t minor,
		 uid_t uid, gid_t gid, mode_t mode, int check_udev, unsigned rely_on_udev)
{
	return _stack_node_op(NODE_ADD, dev_name, major, minor, uid,
			      gid, mode, "", 0, 0, check_udev, rely_on_udev);
}

int rename_dev_node(const char *old_name, const char *new_name, int check_udev, unsigned rely_on_udev)
{
	return _stack_node_op(NODE_RENAME, new_name, 0, 0, 0,
			      0, 0, old_name, 0, 0, check_udev, rely_on_udev);
}

int rm_dev_node(const char *dev_name, int check_udev, unsigned rely_on_udev)
{
	return _stack_node_op(NODE_DEL, dev_name, 0, 0, 0,
			      0, 0, "", 0, 0, check_udev, rely_on_udev);
}

int set_dev_node_read_ahead(const char *dev_name,
                            uint32_t major, uint32_t minor,
			    uint32_t read_ahead, uint32_t read_ahead_flags)
{
	if (read_ahead == DM_READ_AHEAD_AUTO)
		return 1;

	return _stack_node_op(NODE_READ_AHEAD, dev_name, major, minor, 0, 0,
                              0, "", read_ahead, read_ahead_flags, 0, 0);
}

void update_devs(void)
{
	_pop_node_ops();
}

static int _canonicalize_and_set_dir(const char *src, const char *suffix, size_t max_len, char *dir)
{
	size_t len;
	const char *slash;

	if (*src != '/') {
		log_debug_activation("Invalid directory value, %s: "
				     "not an absolute name.", src);
		return 0;
	}

	len = strlen(src);
	slash = src[len-1] == '/' ? "" : "/";

	if (dm_snprintf(dir, max_len, "%s%s%s", src, slash, suffix ? suffix : "") &lt; 0) {
		log_debug_activation("Invalid directory value, %s: name too long.", src);
		return 0;
	}

	return 1;
}

int dm_set_dev_dir(const char *dev_dir)
{
	return _canonicalize_and_set_dir(dev_dir, DM_DIR, sizeof _dm_dir, _dm_dir);
}

const char *dm_dir(void)
{
	return _dm_dir;
}

int dm_set_sysfs_dir(const char *sysfs_dir)
{
	if (!sysfs_dir || !*sysfs_dir) {
		_sysfs_dir[0] = '\0';
		return 1;
	}

	return _canonicalize_and_set_dir(sysfs_dir, NULL, sizeof _sysfs_dir, _sysfs_dir);
}

const char *dm_sysfs_dir(void)
{
	return _sysfs_dir;
}

/*
 * Replace existing uuid_prefix provided it isn't too long.
 */
int dm_set_uuid_prefix(const char *uuid_prefix)
{
	if (!uuid_prefix)
		return_0;

	if (strlen(uuid_prefix) &gt; DM_MAX_UUID_PREFIX_LEN) {
		log_error("New uuid prefix %s too long.", uuid_prefix);
		return 0;
	}

	strcpy(_default_uuid_prefix, uuid_prefix);

	return 1;
}

const char *dm_uuid_prefix(void)
{
	return _default_uuid_prefix;
}

static int _is_octal(int a)
{
	return (((a) &amp; ~7) == '0');
}

/* Convert mangled mountinfo into normal ASCII string */
static void _unmangle_mountinfo_string(const char *src, char *buf)
{
	while (*src) {
		if ((*src == '\\') &amp;&amp;
		    _is_octal(src[1]) &amp;&amp; _is_octal(src[2]) &amp;&amp; _is_octal(src[3])) {
			*buf++ = 64 * (src[1] &amp; 7) + 8 * (src[2] &amp; 7) + (src[3] &amp; 7);
			src += 4;
		} else
			*buf++ = *src++;
	}
	*buf = '\0';
}

/* Parse one line of mountinfo and unmangled target line */
static int _mountinfo_parse_line(const char *line, unsigned *maj, unsigned *min, char *buf)
{
	char root[PATH_MAX + 1]; /* sscanf needs extra '\0' */
	char target[PATH_MAX + 1];
	char *devmapper;
	struct dm_task *dmt;
	struct dm_info info;
	unsigned i;

	/* TODO: maybe detect availability of  %ms  glib support ? */
	if (sscanf(line, "%*u %*u %u:%u %" DM_TO_STRING(PATH_MAX)
		   "s %" DM_TO_STRING(PATH_MAX) "s",
		   maj, min, root, target) &lt; 4) {
		log_error("Failed to parse mountinfo line.");
		return 0;
	}

	/* btrfs fakes device numbers, but there is still /dev/mapper name
	 * placed in mountinfo, so try to detect proper major:minor via this */
	if (*maj == 0 &amp;&amp; (devmapper = strstr(line, "/dev/mapper/"))) {
		if (!(dmt = dm_task_create(DM_DEVICE_INFO))) {
			log_error("Mount info task creation failed.");
			return 0;
		}
		devmapper += 12; /* skip fixed prefix */
		for (i = 0; devmapper[i] &amp;&amp; devmapper[i] != ' ' &amp;&amp; i &lt; sizeof(root)-1; ++i)
			root[i] = devmapper[i];
		root[i] = 0;
		_unmangle_mountinfo_string(root, buf);
		buf[DM_NAME_LEN] = 0; /* cut away */

		if (dm_task_set_name(dmt, buf) &amp;&amp;
		    dm_task_no_open_count(dmt) &amp;&amp;
		    dm_task_run(dmt) &amp;&amp;
		    dm_task_get_info(dmt, &amp;info)) {
			log_debug("Replacing mountinfo device (%u:%u) with matching DM device %s (%u:%u).",
				  *maj, *min, buf, info.major, info.minor);
			*maj = info.major;
			*min = info.minor;
		}
		dm_task_destroy(dmt);
	}

	_unmangle_mountinfo_string(target, buf);

	return 1;
}

/*
 * Function to operate on individal mountinfo line,
 * minor, major and mount target are parsed and unmangled
 */
int dm_mountinfo_read(dm_mountinfo_line_callback_fn read_fn, void *cb_data)
{
	FILE *minfo;
	char buffer[2 * PATH_MAX];
	char target[PATH_MAX];
	unsigned maj, min;
	int r = 1;

	if (!(minfo = fopen(_mountinfo, "r"))) {
		if (errno != ENOENT)
			log_sys_error("fopen", _mountinfo);
		else
			log_sys_debug("fopen", _mountinfo);
		return 0;
	}

	while (!feof(minfo) &amp;&amp; fgets(buffer, sizeof(buffer), minfo))
		if (!_mountinfo_parse_line(buffer, &amp;maj, &amp;min, target) ||
		    !read_fn(buffer, maj, min, target, cb_data)) {
			stack;
			r = 0;
			break;
		}

	if (fclose(minfo))
		log_sys_error("fclose", _mountinfo);

	return r;
}

static int _sysfs_get_dm_name(uint32_t major, uint32_t minor, char *buf, size_t buf_size)
{
	char *sysfs_path, *temp_buf = NULL;
	FILE *fp = NULL;
	int r = 0;
	size_t len;

	if (!(sysfs_path = dm_malloc(PATH_MAX)) ||
	    !(temp_buf = dm_malloc(PATH_MAX))) {
		log_error("_sysfs_get_dm_name: failed to allocate temporary buffers");
		goto bad;
	}

	if (dm_snprintf(sysfs_path, PATH_MAX, "%sdev/block/%" PRIu32 ":%" PRIu32
			"/dm/name", _sysfs_dir, major, minor) &lt; 0) {
		log_error("_sysfs_get_dm_name: dm_snprintf failed");
		goto bad;
	}

	if (!(fp = fopen(sysfs_path, "r"))) {
		if (errno != ENOENT)
			log_sys_error("fopen", sysfs_path);
		else
			log_sys_debug("fopen", sysfs_path);
		goto bad;
	}

	if (!fgets(temp_buf, PATH_MAX, fp)) {
		log_sys_error("fgets", sysfs_path);
		goto bad;
	}

	len = strlen(temp_buf);

	if (len &gt; buf_size) {
		log_error("_sysfs_get_dm_name: supplied buffer too small");
		goto bad;
	}

	temp_buf[len ? len - 1 : 0] = '\0'; /* \n */
	strcpy(buf, temp_buf);
	r = 1;
bad:
	if (fp &amp;&amp; fclose(fp))
		log_sys_error("fclose", sysfs_path);

	dm_free(temp_buf);
	dm_free(sysfs_path);

	return r;
}

static int _sysfs_get_dev_major_minor(const char *path, uint32_t major, uint32_t minor)
{
	FILE *fp;
	uint32_t ma, mi;
	int r;

	if (!(fp = fopen(path, "r")))
		return 0;

	r = (fscanf(fp, "%" PRIu32 ":%" PRIu32 , &amp;ma, &amp;mi) == 2) &amp;&amp;
		(ma == major) &amp;&amp; (mi == minor);
	// log_debug("Checking %s  %u:%u  -&gt; %d", path, ma, mi, r);

	if (fclose(fp))
		log_sys_error("fclose", path);

	return r;
}


static int _sysfs_find_kernel_name(uint32_t major, uint32_t minor, char *buf, size_t buf_size)
{
	const char *name, *name_dev;
	char path[PATH_MAX];
	struct dirent *dirent, *dirent_dev;
	DIR *d, *d_dev;
	struct stat st;
	int r = 0, sz;

	if (!*_sysfs_dir ||
	    dm_snprintf(path, sizeof(path), "%s/block/", _sysfs_dir) &lt; 0) {
		log_error("Failed to build sysfs_path.");
		return 0;
	}

	if (!(d = opendir(path))) {
		log_sys_error("opendir", path);
		return 0;
	}

	while (!r &amp;&amp; (dirent = readdir(d))) {
		name = dirent-&gt;d_name;

		if (!strcmp(name, ".") || !strcmp(name, ".."))
			continue;

		if ((sz = dm_snprintf(path, sizeof(path), "%sblock/%s/dev",
				      _sysfs_dir, name)) &lt; 5) {
			log_warn("Couldn't create path for %s.", name);
			continue;
		}

		if (_sysfs_get_dev_major_minor(path, major, minor)) {
			r = dm_strncpy(buf, name, buf_size);
			break; /* found */
		}

		path[sz - 4] = 0; /* strip /dev from end of path string */
		if (stat(path, &amp;st))
			continue;

		if (S_ISDIR(st.st_mode)) {

			/* let's assume there is no tree-complex device in past systems */
			if (!(d_dev = opendir(path))) {
				log_sys_debug("opendir", path);
				continue;
			}

			while ((dirent_dev = readdir(d_dev))) {
				name_dev = dirent_dev-&gt;d_name;

				/* skip known ignorable paths */
				if (!strcmp(name_dev, ".") || !strcmp(name_dev, "..") ||
				    !strcmp(name_dev, "bdi") ||
				    !strcmp(name_dev, "dev") ||
				    !strcmp(name_dev, "device") ||
				    !strcmp(name_dev, "holders") ||
				    !strcmp(name_dev, "integrity") ||
				    !strcmp(name_dev, "loop") ||
				    !strcmp(name_dev, "queueu") ||
				    !strcmp(name_dev, "md") ||
				    !strcmp(name_dev, "mq") ||
				    !strcmp(name_dev, "power") ||
				    !strcmp(name_dev, "removable") ||
				    !strcmp(name_dev, "slave") ||
				    !strcmp(name_dev, "slaves") ||
				    !strcmp(name_dev, "subsystem") ||
				    !strcmp(name_dev, "trace") ||
				    !strcmp(name_dev, "uevent"))
					continue;

				if (dm_snprintf(path, sizeof(path), "%sblock/%s/%s/dev",
						_sysfs_dir, name, name_dev) == -1) {
					log_warn("Couldn't create path for %s/%s.", name, name_dev);
					continue;
				}

				if (_sysfs_get_dev_major_minor(path, major, minor)) {
					r = dm_strncpy(buf, name_dev, buf_size);
					break; /* found */
				}
			}

			if (closedir(d_dev))
				log_sys_debug("closedir", name);
		}
	}

	if (closedir(d))
		log_sys_debug("closedir", path);

	return r;
}

static int _sysfs_get_kernel_name(uint32_t major, uint32_t minor, char *buf, size_t buf_size)
{
	char *name, *sysfs_path, *temp_buf = NULL;
	ssize_t size;
	size_t len;
	int r = 0;

	if (!(sysfs_path = dm_malloc(PATH_MAX)) ||
	    !(temp_buf = dm_malloc(PATH_MAX))) {
		log_error("_sysfs_get_kernel_name: failed to allocate temporary buffers");
		goto bad;
	}

	if (dm_snprintf(sysfs_path, PATH_MAX, "%sdev/block/%" PRIu32 ":%" PRIu32,
			_sysfs_dir, major, minor) &lt; 0) {
		log_error("_sysfs_get_kernel_name: dm_snprintf failed");
		goto bad;
	}

	if ((size = readlink(sysfs_path, temp_buf, PATH_MAX - 1)) &lt; 0) {
		if (errno != ENOENT)
			log_sys_error("readlink", sysfs_path);
		else {
			log_sys_debug("readlink", sysfs_path);
			r = _sysfs_find_kernel_name(major, minor, buf, buf_size);
			goto out;
		}
		goto bad;
	}
	temp_buf[size] = '\0';

	if (!(name = strrchr(temp_buf, '/'))) {
		log_error("Could not locate device kernel name in sysfs path %s", temp_buf);
		goto bad;
	}
	name += 1;
	len = size - (name - temp_buf) + 1;

	if (len &gt; buf_size) {
		log_error("_sysfs_get_kernel_name: output buffer too small");
		goto bad;
	}

	strcpy(buf, name);
	r = 1;
bad:
out:
	dm_free(temp_buf);
	dm_free(sysfs_path);

	return r;
}

int dm_device_get_name(uint32_t major, uint32_t minor, int prefer_kernel_name,
		       char *buf, size_t buf_size)
{
	if (!*_sysfs_dir)
		return 0;

	/*
	 * device-mapper devices and prefer_kernel_name = 0
	 * get dm name by reading /sys/dev/block/major:minor/dm/name,
	 * fallback to _sysfs_get_kernel_name if not successful
	 */
	if (dm_is_dm_major(major) &amp;&amp; !prefer_kernel_name) {
		if (_sysfs_get_dm_name(major, minor, buf, buf_size))
			return 1;
		else
			stack;
	}

	/*
	 * non-device-mapper devices or prefer_kernel_name = 1
	 * get kernel name using readlink /sys/dev/block/major:minor -&gt; .../dm-X
	 */
	return _sysfs_get_kernel_name(major, minor, buf, buf_size);
}

int dm_device_has_holders(uint32_t major, uint32_t minor)
{
	char sysfs_path[PATH_MAX];
	struct stat st;

	if (!*_sysfs_dir)
		return 0;

	if (dm_snprintf(sysfs_path, PATH_MAX, "%sdev/block/%" PRIu32
			":%" PRIu32 "/holders", _sysfs_dir, major, minor) &lt; 0) {
		log_warn("WARNING: sysfs_path dm_snprintf failed.");
		return 0;
	}

	if (stat(sysfs_path, &amp;st)) {
		if (errno != ENOENT)
			log_sys_debug("stat", sysfs_path);
		return 0;
	}

	return !dm_is_empty_dir(sysfs_path);
}

static int _mounted_fs_on_device(const char *kernel_dev_name)
{
	char sysfs_path[PATH_MAX];
	struct dirent *dirent;
	DIR *d;
	struct stat st;
	int r = 0;

	if (dm_snprintf(sysfs_path, PATH_MAX, "%sfs", _sysfs_dir) &lt; 0) {
		log_warn("WARNING: sysfs_path dm_snprintf failed.");
		return 0;
	}

	if (!(d = opendir(sysfs_path))) {
		if (errno != ENOENT)
			log_sys_debug("opendir", sysfs_path);
		return 0;
	}

	while ((dirent = readdir(d))) {
		if (!strcmp(dirent-&gt;d_name, ".") || !strcmp(dirent-&gt;d_name, ".."))
			continue;

		if (dm_snprintf(sysfs_path, PATH_MAX, "%sfs/%s/%s",
				_sysfs_dir, dirent-&gt;d_name, kernel_dev_name) &lt; 0) {
			log_warn("WARNING: sysfs_path dm_snprintf failed.");
			break;
		}

		if (!stat(sysfs_path, &amp;st)) {
			/* found! */
			r = 1;
			break;
		}
		else if (errno != ENOENT) {
			log_sys_debug("stat", sysfs_path);
			break;
		}
	}

	if (closedir(d))
		log_sys_debug("closedir", kernel_dev_name);

	return r;
}

struct mountinfo_s {
	unsigned maj;
	unsigned min;
	int mounted;
};

static int _device_has_mounted_fs(char *buffer, unsigned major, unsigned minor,
				  char *target, void *cb_data)
{
	struct mountinfo_s *data = cb_data;
	char kernel_dev_name[PATH_MAX];

	if ((major == data-&gt;maj) &amp;&amp; (minor == data-&gt;min)) {
		if (!dm_device_get_name(major, minor, 1, kernel_dev_name,
					sizeof(kernel_dev_name))) {
			stack;
			*kernel_dev_name = '\0';
		}
		log_verbose("Device %s (%u:%u) appears to be mounted on %s.",
			    kernel_dev_name, major, minor, target);
		data-&gt;mounted = 1;
	}

	return 1;
}

int dm_device_has_mounted_fs(uint32_t major, uint32_t minor)
{
	char kernel_dev_name[PATH_MAX];
	struct mountinfo_s data = {
		.maj = major,
		.min = minor,
	};

	if (!dm_mountinfo_read(_device_has_mounted_fs, &amp;data))
		stack;

	if (data.mounted)
		return 1;
	/*
	 * TODO: Verify dm_mountinfo_read() is superset
	 * and remove sysfs check (namespaces)
	 */
	/* Get kernel device name first */
	if (!dm_device_get_name(major, minor, 1, kernel_dev_name, PATH_MAX))
		return 0;

	/* Check /sys/fs/&lt;fs_name&gt;/&lt;kernel_dev_name&gt; presence */
	return _mounted_fs_on_device(kernel_dev_name);
}

int dm_mknodes(const char *name)
{
	struct dm_task *dmt;
	int r = 0;

	if (!(dmt = dm_task_create(DM_DEVICE_MKNODES)))
		return_0;

	if (name &amp;&amp; !dm_task_set_name(dmt, name))
		goto out;

	if (!dm_task_no_open_count(dmt))
		goto out;

	r = dm_task_run(dmt);

out:
	dm_task_destroy(dmt);
	return r;
}

int dm_driver_version(char *version, size_t size)
{
	struct dm_task *dmt;
	int r = 0;

	if (!(dmt = dm_task_create(DM_DEVICE_VERSION)))
		return_0;

	if (!dm_task_run(dmt))
		log_error("Failed to get driver version");

	if (!dm_task_get_driver_version(dmt, version, size))
		goto out;

	r = 1;

out:
	dm_task_destroy(dmt);
	return r;
}

static void _set_cookie_flags(struct dm_task *dmt, uint16_t flags)
{
	if (!dm_cookie_supported())
		return;

	if (_udev_disabled) {
		/*
		 * If udev is disabled, hardcode this functionality:
		 *   - we want libdm to create the nodes
		 *   - we don't want the /dev/mapper and any subsystem
		 *     related content to be created by udev if udev
		 *     rules are installed
		 */
		flags &amp;= ~DM_UDEV_DISABLE_LIBRARY_FALLBACK;
		flags |= DM_UDEV_DISABLE_DM_RULES_FLAG | DM_UDEV_DISABLE_SUBSYSTEM_RULES_FLAG;
	}

	dmt-&gt;event_nr = flags &lt;&lt; DM_UDEV_FLAGS_SHIFT;
}

#ifndef UDEV_SYNC_SUPPORT
void dm_udev_set_sync_support(int sync_with_udev)
{
}

int dm_udev_get_sync_support(void)
{
	return 0;
}

void dm_udev_set_checking(int checking)
{
}

int dm_udev_get_checking(void)
{
	return 0;
}

int dm_task_set_cookie(struct dm_task *dmt, uint32_t *cookie, uint16_t flags)
{
	_set_cookie_flags(dmt, flags);

	*cookie = 0;
	dmt-&gt;cookie_set = 1;

	return 1;
}

int dm_udev_complete(uint32_t cookie)
{
	return 1;
}

int dm_udev_wait(uint32_t cookie)
{
	update_devs();

	return 1;
}

int dm_udev_wait_immediate(uint32_t cookie, int *ready)
{
	update_devs();
	*ready = 1;

	return 1;
}

#else		/* UDEV_SYNC_SUPPORT */

static int _check_semaphore_is_supported(void)
{
	int maxid;
	union semun arg;
	struct seminfo seminfo;

	arg.__buf = &amp;seminfo;
	maxid = semctl(0, 0, SEM_INFO, arg);

	if (maxid &lt; 0) {
		log_warn("Kernel not configured for semaphores (System V IPC). "
			 "Not using udev synchronization code.");
		return 0;
	}

	return 1;
}

static int _check_udev_is_running(void)
{
	struct udev *udev;
	struct udev_queue *udev_queue;
	int r;

	if (!(udev = udev_new()))
		goto_bad;

	if (!(udev_queue = udev_queue_new(udev))) {
		udev_unref(udev);
		goto_bad;
	}

	if (!(r = udev_queue_get_udev_is_active(udev_queue)))
		log_debug_activation("Udev is not running. "
				     "Not using udev synchronization code.");

	udev_queue_unref(udev_queue);
	udev_unref(udev);

	return r;

bad:
	log_error("Could not get udev state. Assuming udev is not running.");
	return 0;
}

static void _check_udev_sync_requirements_once(void)
{
	if (_semaphore_supported &lt; 0)
		_semaphore_supported = _check_semaphore_is_supported();

	if (_udev_running &lt; 0) {
		_udev_running = _check_udev_is_running();
		if (_udev_disabled &amp;&amp; _udev_running)
			log_warn("Udev is running and DM_DISABLE_UDEV environment variable is set. "
				 "Bypassing udev, device-mapper library will manage device "
				 "nodes in device directory.");
	}
}

void dm_udev_set_sync_support(int sync_with_udev)
{
	_check_udev_sync_requirements_once();
	_sync_with_udev = sync_with_udev;
}

int dm_udev_get_sync_support(void)
{
	_check_udev_sync_requirements_once();

	return !_udev_disabled &amp;&amp; _semaphore_supported &amp;&amp;
		dm_cookie_supported() &amp;&amp;_udev_running &amp;&amp; _sync_with_udev;
}

void dm_udev_set_checking(int checking)
{
	if ((_udev_checking = checking))
		log_debug_activation("DM udev checking enabled");
	else
		log_debug_activation("DM udev checking disabled");
}

int dm_udev_get_checking(void)
{
	return _udev_checking;
}

static int _get_cookie_sem(uint32_t cookie, int *semid)
{
	if (cookie &gt;&gt; 16 != DM_COOKIE_MAGIC) {
		log_error("Could not continue to access notification "
			  "semaphore identified by cookie value %"
			  PRIu32 " (0x%x). Incorrect cookie prefix.",
			  cookie, cookie);
		return 0;
	}

	if ((*semid = semget((key_t) cookie, 1, 0)) &gt;= 0)
		return 1;

	switch (errno) {
		case ENOENT:
			log_error("Could not find notification "
				  "semaphore identified by cookie "
				  "value %" PRIu32 " (0x%x)",
				  cookie, cookie);
			break;
		case EACCES:
			log_error("No permission to access "
				  "notificaton semaphore identified "
				  "by cookie value %" PRIu32 " (0x%x)",
				  cookie, cookie);
			break;
		default:
			log_error("Failed to access notification "
				   "semaphore identified by cookie "
				   "value %" PRIu32 " (0x%x): %s",
				  cookie, cookie, strerror(errno));
			break;
	}

	return 0;
}

static int _udev_notify_sem_inc(uint32_t cookie, int semid)
{
	struct sembuf sb = {0, 1, 0};
	int val;

	if (semop(semid, &amp;sb, 1) &lt; 0) {
		log_error("semid %d: semop failed for cookie 0x%" PRIx32 ": %s",
			  semid, cookie, strerror(errno));
		return 0;
	}

 	if ((val = semctl(semid, 0, GETVAL)) &lt; 0) {
		log_error("semid %d: sem_ctl GETVAL failed for "
			  "cookie 0x%" PRIx32 ": %s",
			  semid, cookie, strerror(errno));
		return 0;		
	}

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) incremented to %d",
		  cookie, semid, val);

	return 1;
}

static int _udev_notify_sem_dec(uint32_t cookie, int semid)
{
	struct sembuf sb = {0, -1, IPC_NOWAIT};
	int val;

 	if ((val = semctl(semid, 0, GETVAL)) &lt; 0) {
		log_error("semid %d: sem_ctl GETVAL failed for "
			  "cookie 0x%" PRIx32 ": %s",
			  semid, cookie, strerror(errno));
		return 0;
	}

	if (semop(semid, &amp;sb, 1) &lt; 0) {
		switch (errno) {
			case EAGAIN:
				log_error("semid %d: semop failed for cookie "
					  "0x%" PRIx32 ": "
					  "incorrect semaphore state",
					  semid, cookie);
				break;
			default:
				log_error("semid %d: semop failed for cookie "
					  "0x%" PRIx32 ": %s",
					  semid, cookie, strerror(errno));
				break;
		}
		return 0;
	}

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) decremented to %d",
			     cookie, semid, val - 1);

	return 1;
}

static int _udev_notify_sem_destroy(uint32_t cookie, int semid)
{
	if (semctl(semid, 0, IPC_RMID, 0) &lt; 0) {
		log_error("Could not cleanup notification semaphore "
			  "identified by cookie value %" PRIu32 " (0x%x): %s",
			  cookie, cookie, strerror(errno));
		return 0;
	}

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) destroyed", cookie,
			     semid);

	return 1;
}

static int _udev_notify_sem_create(uint32_t *cookie, int *semid)
{
	int fd;
	int gen_semid;
	int val;
	uint16_t base_cookie;
	uint32_t gen_cookie;
	union semun sem_arg;

	if ((fd = open("/dev/urandom", O_RDONLY)) &lt; 0) {
		log_error("Failed to open /dev/urandom "
			  "to create random cookie value");
		*cookie = 0;
		return 0;
	}

	/* Generate random cookie value. Be sure it is unique and non-zero. */
	do {
		/* FIXME Handle non-error returns from read(). Move _io() into libdm? */
		if (read(fd, &amp;base_cookie, sizeof(base_cookie)) != sizeof(base_cookie)) {
			log_error("Failed to initialize notification cookie");
			goto bad;
		}

		gen_cookie = DM_COOKIE_MAGIC &lt;&lt; 16 | base_cookie;

		if (base_cookie &amp;&amp; (gen_semid = semget((key_t) gen_cookie,
				    1, 0600 | IPC_CREAT | IPC_EXCL)) &lt; 0) {
			switch (errno) {
				case EEXIST:
					/* if the semaphore key exists, we
					 * simply generate another random one */
					base_cookie = 0;
					break;
				case ENOMEM:
					log_error("Not enough memory to create "
						  "notification semaphore");
					goto bad;
				case ENOSPC:
					log_error("Limit for the maximum number "
						  "of semaphores reached. You can "
						  "check and set the limits in "
						  "/proc/sys/kernel/sem.");
					goto bad;
				default:
					log_error("Failed to create notification "
						  "semaphore: %s", strerror(errno));
					goto bad;
			}
		}
	} while (!base_cookie);

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) created",
			     gen_cookie, gen_semid);

	sem_arg.val = 1;

	if (semctl(gen_semid, 0, SETVAL, sem_arg) &lt; 0) {
		log_error("semid %d: semctl failed: %s", gen_semid, strerror(errno));
		/* We have to destroy just created semaphore
		 * so it won't stay in the system. */
		(void) _udev_notify_sem_destroy(gen_cookie, gen_semid);
		goto bad;
	}

 	if ((val = semctl(gen_semid, 0, GETVAL)) &lt; 0) {
		log_error("semid %d: sem_ctl GETVAL failed for "
			  "cookie 0x%" PRIx32 ": %s",
			  gen_semid, gen_cookie, strerror(errno));
		goto bad;
	}

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) incremented to %d",
			     gen_cookie, gen_semid, val);

	if (close(fd))
		stack;

	*semid = gen_semid;
	*cookie = gen_cookie;

	return 1;

bad:
	if (close(fd))
		stack;

	*cookie = 0;

	return 0;
}

int dm_udev_create_cookie(uint32_t *cookie)
{
	int semid;

	if (!dm_udev_get_sync_support()) {
		*cookie = 0;
		return 1;
	}

	return _udev_notify_sem_create(cookie, &amp;semid);
}

static const char *_task_type_disp(int type)
{
	switch(type) {
	case DM_DEVICE_CREATE:
		return "CREATE";
        case DM_DEVICE_RELOAD:
		return "RELOAD";
        case DM_DEVICE_REMOVE:
		return "REMOVE";
        case DM_DEVICE_REMOVE_ALL:
		return "REMOVE_ALL";
        case DM_DEVICE_SUSPEND:
		return "SUSPEND";
        case DM_DEVICE_RESUME:
		return "RESUME";
        case DM_DEVICE_INFO:
		return "INFO";
        case DM_DEVICE_DEPS:
		return "DEPS";
        case DM_DEVICE_RENAME:
		return "RENAME";
        case DM_DEVICE_VERSION:
		return "VERSION";
        case DM_DEVICE_STATUS:
		return "STATUS";
        case DM_DEVICE_TABLE:
		return "TABLE";
        case DM_DEVICE_WAITEVENT:
		return "WAITEVENT";
        case DM_DEVICE_LIST:
		return "LIST";
        case DM_DEVICE_CLEAR:
		return "CLEAR";
        case DM_DEVICE_MKNODES:
		return "MKNODES";
        case DM_DEVICE_LIST_VERSIONS:
		return "LIST_VERSIONS";
        case DM_DEVICE_TARGET_MSG:
		return "TARGET_MSG";
        case DM_DEVICE_SET_GEOMETRY:
		return "SET_GEOMETRY";
	}
	return "unknown";
}

int dm_task_set_cookie(struct dm_task *dmt, uint32_t *cookie, uint16_t flags)
{
	int semid;

	_set_cookie_flags(dmt, flags);

	if (!dm_udev_get_sync_support()) {
		*cookie = 0;
		dmt-&gt;cookie_set = 1;
		return 1;
	}

	if (*cookie) {
		if (!_get_cookie_sem(*cookie, &amp;semid))
			goto_bad;
	} else if (!_udev_notify_sem_create(cookie, &amp;semid))
		goto_bad;

	if (!_udev_notify_sem_inc(*cookie, semid)) {
		log_error("Could not set notification semaphore "
			  "identified by cookie value %" PRIu32 " (0x%x)",
			  *cookie, *cookie);
		goto bad;
	}

	dmt-&gt;event_nr |= ~DM_UDEV_FLAGS_MASK &amp; *cookie;
	dmt-&gt;cookie_set = 1;

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) assigned to "
			     "%s task(%d) with flags%s%s%s%s%s%s%s%s%s%s%s%s%s%s%s (0x%" PRIx16 ")",
			     *cookie, semid, _task_type_disp(dmt-&gt;type), dmt-&gt;type,
			     (flags &amp; DM_UDEV_DISABLE_DM_RULES_FLAG) ? " DISABLE_DM_RULES" : "",
			     (flags &amp; DM_UDEV_DISABLE_SUBSYSTEM_RULES_FLAG) ? " DISABLE_SUBSYSTEM_RULES" : "",
			     (flags &amp; DM_UDEV_DISABLE_DISK_RULES_FLAG) ? " DISABLE_DISK_RULES" : "",
			     (flags &amp; DM_UDEV_DISABLE_OTHER_RULES_FLAG) ? " DISABLE_OTHER_RULES" : "",
			     (flags &amp; DM_UDEV_LOW_PRIORITY_FLAG) ? " LOW_PRIORITY" : "",
			     (flags &amp; DM_UDEV_DISABLE_LIBRARY_FALLBACK) ? " DISABLE_LIBRARY_FALLBACK" : "",
			     (flags &amp; DM_UDEV_PRIMARY_SOURCE_FLAG) ? " PRIMARY_SOURCE" : "",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG0) ? " SUBSYSTEM_0" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG1) ? " SUBSYSTEM_1" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG2) ? " SUBSYSTEM_2" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG3) ? " SUBSYSTEM_3" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG4) ? " SUBSYSTEM_4" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG5) ? " SUBSYSTEM_5" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG6) ? " SUBSYSTEM_6" : " ",
			     (flags &amp; DM_SUBSYSTEM_UDEV_FLAG7) ? " SUBSYSTEM_7" : " ",
			     flags);

	return 1;

bad:
	dmt-&gt;event_nr = 0;
	return 0;
}

int dm_udev_complete(uint32_t cookie)
{
	int semid;

	if (!cookie || !dm_udev_get_sync_support())
		return 1;

	if (!_get_cookie_sem(cookie, &amp;semid))
		return_0;

	if (!_udev_notify_sem_dec(cookie, semid)) {
		log_error("Could not signal waiting process using notification "
			  "semaphore identified by cookie value %" PRIu32 " (0x%x)",
			  cookie, cookie);
		return 0;
	}

	return 1;
}

/*
 * If *nowait is set, return immediately leaving it set if the semaphore
 * is not ready to be decremented to 0.  *nowait is cleared if the wait
 * succeeds.
 */
static int _udev_wait(uint32_t cookie, int *nowait)
{
	int semid;
	struct sembuf sb = {0, 0, 0};
	int val;

	if (!cookie || !dm_udev_get_sync_support())
		return 1;

	if (!_get_cookie_sem(cookie, &amp;semid))
		return_0;

	/* Return immediately if the semaphore value exceeds 1? */
	if (*nowait) {
		if ((val = semctl(semid, 0, GETVAL)) &lt; 0) {
			log_error("semid %d: sem_ctl GETVAL failed for "
				  "cookie 0x%" PRIx32 ": %s",
				  semid, cookie, strerror(errno));
			return 0;		
		}

		if (val &gt; 1)
			return 1;

		*nowait = 0;
	}

	if (!_udev_notify_sem_dec(cookie, semid)) {
		log_error("Failed to set a proper state for notification "
			  "semaphore identified by cookie value %" PRIu32 " (0x%x) "
			  "to initialize waiting for incoming notifications.",
			  cookie, cookie);
		(void) _udev_notify_sem_destroy(cookie, semid);
		return 0;
	}

	log_debug_activation("Udev cookie 0x%" PRIx32 " (semid %d) waiting for zero",
			     cookie, semid);

repeat_wait:
	if (semop(semid, &amp;sb, 1) &lt; 0) {
		if (errno == EINTR)
			goto repeat_wait;
		else if (errno == EIDRM)
			return 1;

		log_error("Could not set wait state for notification semaphore "
			  "identified by cookie value %" PRIu32 " (0x%x): %s",
			  cookie, cookie, strerror(errno));
		(void) _udev_notify_sem_destroy(cookie, semid);
		return 0;
	}

	return _udev_notify_sem_destroy(cookie, semid);
}

int dm_udev_wait(uint32_t cookie)
{
	int nowait = 0;
	int r = _udev_wait(cookie, &amp;nowait);

	update_devs();

	return r;
}

int dm_udev_wait_immediate(uint32_t cookie, int *ready)
{
	int nowait = 1;
	int r = _udev_wait(cookie, &amp;nowait);

	if (r &amp;&amp; nowait) {
		*ready = 0;
		return 1;
	}

	update_devs();
	*ready = 1;

	return r;
}
#endif		/* UDEV_SYNC_SUPPORT */
</file>
  <file fpath="/out/src/openssl/crypto/context.c">/*
 * Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "crypto/cryptlib.h"
#include &lt;openssl/conf.h&gt;
#include "internal/thread_once.h"
#include "internal/property.h"
#include "internal/core.h"
#include "internal/bio.h"
#include "internal/provider.h"
#include "crypto/decoder.h"
#include "crypto/context.h"

struct ossl_lib_ctx_st {
    CRYPTO_RWLOCK *lock, *rand_crngt_lock;
    OSSL_EX_DATA_GLOBAL global;

    void *property_string_data;
    void *evp_method_store;
    void *provider_store;
    void *namemap;
    void *property_defns;
    void *global_properties;
    void *drbg;
    void *drbg_nonce;
#ifndef FIPS_MODULE
    void *provider_conf;
    void *bio_core;
    void *child_provider;
    OSSL_METHOD_STORE *decoder_store;
    void *decoder_cache;
    OSSL_METHOD_STORE *encoder_store;
    OSSL_METHOD_STORE *store_loader_store;
    void *self_test_cb;
#endif
#if defined(OPENSSL_THREADS)
    void *threads;
#endif
    void *rand_crngt;
#ifdef FIPS_MODULE
    void *thread_event_handler;
    void *fips_prov;
#endif

    unsigned int ischild:1;
};

int ossl_lib_ctx_write_lock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_write_lock(ossl_lib_ctx_get_concrete(ctx)-&gt;lock);
}

int ossl_lib_ctx_read_lock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_read_lock(ossl_lib_ctx_get_concrete(ctx)-&gt;lock);
}

int ossl_lib_ctx_unlock(OSSL_LIB_CTX *ctx)
{
    return CRYPTO_THREAD_unlock(ossl_lib_ctx_get_concrete(ctx)-&gt;lock);
}

int ossl_lib_ctx_is_child(OSSL_LIB_CTX *ctx)
{
    ctx = ossl_lib_ctx_get_concrete(ctx);

    if (ctx == NULL)
        return 0;
    return ctx-&gt;ischild;
}

static void context_deinit_objs(OSSL_LIB_CTX *ctx);

static int context_init(OSSL_LIB_CTX *ctx)
{
    int exdata_done = 0;

    ctx-&gt;lock = CRYPTO_THREAD_lock_new();
    if (ctx-&gt;lock == NULL)
        return 0;

    ctx-&gt;rand_crngt_lock = CRYPTO_THREAD_lock_new();
    if (ctx-&gt;rand_crngt_lock == NULL)
        goto err;

    /* Initialize ex_data. */
    if (!ossl_do_ex_data_init(ctx))
        goto err;
    exdata_done = 1;

    /* P2. We want evp_method_store to be cleaned up before the provider store */
    ctx-&gt;evp_method_store = ossl_method_store_new(ctx);
    if (ctx-&gt;evp_method_store == NULL)
        goto err;

#ifndef FIPS_MODULE
    /* P2. Must be freed before the provider store is freed */
    ctx-&gt;provider_conf = ossl_prov_conf_ctx_new(ctx);
    if (ctx-&gt;provider_conf == NULL)
        goto err;
#endif

    /* P2. */
    ctx-&gt;drbg = ossl_rand_ctx_new(ctx);
    if (ctx-&gt;drbg == NULL)
        goto err;

#ifndef FIPS_MODULE
    /*
     * P2. We want decoder_store/decoder_cache to be cleaned up before the
     * provider store
     */
    ctx-&gt;decoder_store = ossl_method_store_new(ctx);
    if (ctx-&gt;decoder_store == NULL)
        goto err;
    ctx-&gt;decoder_cache = ossl_decoder_cache_new(ctx);
    if (ctx-&gt;decoder_cache == NULL)
        goto err;

    /* P2. We want encoder_store to be cleaned up before the provider store */
    ctx-&gt;encoder_store = ossl_method_store_new(ctx);
    if (ctx-&gt;encoder_store == NULL)
        goto err;

    /* P2. We want loader_store to be cleaned up before the provider store */
    ctx-&gt;store_loader_store = ossl_method_store_new(ctx);
    if (ctx-&gt;store_loader_store == NULL)
        goto err;
#endif

    /* P1. Needs to be freed before the child provider data is freed */
    ctx-&gt;provider_store = ossl_provider_store_new(ctx);
    if (ctx-&gt;provider_store == NULL)
        goto err;

    /* Default priority. */
    ctx-&gt;property_string_data = ossl_property_string_data_new(ctx);
    if (ctx-&gt;property_string_data == NULL)
        goto err;

    ctx-&gt;namemap = ossl_stored_namemap_new(ctx);
    if (ctx-&gt;namemap == NULL)
        goto err;

    ctx-&gt;property_defns = ossl_property_defns_new(ctx);
    if (ctx-&gt;property_defns == NULL)
        goto err;

    ctx-&gt;global_properties = ossl_ctx_global_properties_new(ctx);
    if (ctx-&gt;global_properties == NULL)
        goto err;

#ifndef FIPS_MODULE
    ctx-&gt;bio_core = ossl_bio_core_globals_new(ctx);
    if (ctx-&gt;bio_core == NULL)
        goto err;
#endif

    ctx-&gt;drbg_nonce = ossl_prov_drbg_nonce_ctx_new(ctx);
    if (ctx-&gt;drbg_nonce == NULL)
        goto err;

#ifndef FIPS_MODULE
    ctx-&gt;self_test_cb = ossl_self_test_set_callback_new(ctx);
    if (ctx-&gt;self_test_cb == NULL)
        goto err;
#endif

#ifdef FIPS_MODULE
    ctx-&gt;thread_event_handler = ossl_thread_event_ctx_new(ctx);
    if (ctx-&gt;thread_event_handler == NULL)
        goto err;

    ctx-&gt;fips_prov = ossl_fips_prov_ossl_ctx_new(ctx);
    if (ctx-&gt;fips_prov == NULL)
        goto err;
#endif

#ifndef OPENSSL_NO_THREAD_POOL
    ctx-&gt;threads = ossl_threads_ctx_new(ctx);
    if (ctx-&gt;threads == NULL)
        goto err;
#endif

    /* Low priority. */
#ifndef FIPS_MODULE
    ctx-&gt;child_provider = ossl_child_prov_ctx_new(ctx);
    if (ctx-&gt;child_provider == NULL)
        goto err;
#endif

    /* Everything depends on properties, so we also pre-initialise that */
    if (!ossl_property_parse_init(ctx))
        goto err;

    return 1;

 err:
    context_deinit_objs(ctx);

    if (exdata_done)
        ossl_crypto_cleanup_all_ex_data_int(ctx);

    CRYPTO_THREAD_lock_free(ctx-&gt;rand_crngt_lock);
    CRYPTO_THREAD_lock_free(ctx-&gt;lock);
    memset(ctx, '\0', sizeof(*ctx));
    return 0;
}

static void context_deinit_objs(OSSL_LIB_CTX *ctx)
{
    /* P2. We want evp_method_store to be cleaned up before the provider store */
    if (ctx-&gt;evp_method_store != NULL) {
        ossl_method_store_free(ctx-&gt;evp_method_store);
        ctx-&gt;evp_method_store = NULL;
    }

    /* P2. */
    if (ctx-&gt;drbg != NULL) {
        ossl_rand_ctx_free(ctx-&gt;drbg);
        ctx-&gt;drbg = NULL;
    }

#ifndef FIPS_MODULE
    /* P2. */
    if (ctx-&gt;provider_conf != NULL) {
        ossl_prov_conf_ctx_free(ctx-&gt;provider_conf);
        ctx-&gt;provider_conf = NULL;
    }

    /*
     * P2. We want decoder_store/decoder_cache to be cleaned up before the
     * provider store
     */
    if (ctx-&gt;decoder_store != NULL) {
        ossl_method_store_free(ctx-&gt;decoder_store);
        ctx-&gt;decoder_store = NULL;
    }
    if (ctx-&gt;decoder_cache != NULL) {
        ossl_decoder_cache_free(ctx-&gt;decoder_cache);
        ctx-&gt;decoder_cache = NULL;
    }


    /* P2. We want encoder_store to be cleaned up before the provider store */
    if (ctx-&gt;encoder_store != NULL) {
        ossl_method_store_free(ctx-&gt;encoder_store);
        ctx-&gt;encoder_store = NULL;
    }

    /* P2. We want loader_store to be cleaned up before the provider store */
    if (ctx-&gt;store_loader_store != NULL) {
        ossl_method_store_free(ctx-&gt;store_loader_store);
        ctx-&gt;store_loader_store = NULL;
    }
#endif

    /* P1. Needs to be freed before the child provider data is freed */
    if (ctx-&gt;provider_store != NULL) {
        ossl_provider_store_free(ctx-&gt;provider_store);
        ctx-&gt;provider_store = NULL;
    }

    /* Default priority. */
    if (ctx-&gt;property_string_data != NULL) {
        ossl_property_string_data_free(ctx-&gt;property_string_data);
        ctx-&gt;property_string_data = NULL;
    }

    if (ctx-&gt;namemap != NULL) {
        ossl_stored_namemap_free(ctx-&gt;namemap);
        ctx-&gt;namemap = NULL;
    }

    if (ctx-&gt;property_defns != NULL) {
        ossl_property_defns_free(ctx-&gt;property_defns);
        ctx-&gt;property_defns = NULL;
    }

    if (ctx-&gt;global_properties != NULL) {
        ossl_ctx_global_properties_free(ctx-&gt;global_properties);
        ctx-&gt;global_properties = NULL;
    }

#ifndef FIPS_MODULE
    if (ctx-&gt;bio_core != NULL) {
        ossl_bio_core_globals_free(ctx-&gt;bio_core);
        ctx-&gt;bio_core = NULL;
    }
#endif

    if (ctx-&gt;drbg_nonce != NULL) {
        ossl_prov_drbg_nonce_ctx_free(ctx-&gt;drbg_nonce);
        ctx-&gt;drbg_nonce = NULL;
    }

#ifndef FIPS_MODULE
    if (ctx-&gt;self_test_cb != NULL) {
        ossl_self_test_set_callback_free(ctx-&gt;self_test_cb);
        ctx-&gt;self_test_cb = NULL;
    }
#endif

    if (ctx-&gt;rand_crngt != NULL) {
        ossl_rand_crng_ctx_free(ctx-&gt;rand_crngt);
        ctx-&gt;rand_crngt = NULL;
    }

#ifdef FIPS_MODULE
    if (ctx-&gt;thread_event_handler != NULL) {
        ossl_thread_event_ctx_free(ctx-&gt;thread_event_handler);
        ctx-&gt;thread_event_handler = NULL;
    }

    if (ctx-&gt;fips_prov != NULL) {
        ossl_fips_prov_ossl_ctx_free(ctx-&gt;fips_prov);
        ctx-&gt;fips_prov = NULL;
    }
#endif

#ifndef OPENSSL_NO_THREAD_POOL
    if (ctx-&gt;threads != NULL) {
        ossl_threads_ctx_free(ctx-&gt;threads);
        ctx-&gt;threads = NULL;
    }
#endif

    /* Low priority. */
#ifndef FIPS_MODULE
    if (ctx-&gt;child_provider != NULL) {
        ossl_child_prov_ctx_free(ctx-&gt;child_provider);
        ctx-&gt;child_provider = NULL;
    }
#endif
}

static int context_deinit(OSSL_LIB_CTX *ctx)
{
    if (ctx == NULL)
        return 1;

    ossl_ctx_thread_stop(ctx);

    context_deinit_objs(ctx);

    ossl_crypto_cleanup_all_ex_data_int(ctx);

    CRYPTO_THREAD_lock_free(ctx-&gt;rand_crngt_lock);
    CRYPTO_THREAD_lock_free(ctx-&gt;lock);
    ctx-&gt;rand_crngt_lock = NULL;
    ctx-&gt;lock = NULL;
    return 1;
}

#ifndef FIPS_MODULE
/* The default default context */
static OSSL_LIB_CTX default_context_int;

static CRYPTO_ONCE default_context_init = CRYPTO_ONCE_STATIC_INIT;
static CRYPTO_THREAD_LOCAL default_context_thread_local;
static int default_context_inited = 0;

DEFINE_RUN_ONCE_STATIC(default_context_do_init)
{
    if (!CRYPTO_THREAD_init_local(&amp;default_context_thread_local, NULL))
        goto err;

    if (!context_init(&amp;default_context_int))
        goto deinit_thread;

    default_context_inited = 1;
    return 1;

deinit_thread:
    CRYPTO_THREAD_cleanup_local(&amp;default_context_thread_local);
err:
    return 0;
}

void ossl_lib_ctx_default_deinit(void)
{
    if (!default_context_inited)
        return;
    context_deinit(&amp;default_context_int);
    CRYPTO_THREAD_cleanup_local(&amp;default_context_thread_local);
    default_context_inited = 0;
}

static OSSL_LIB_CTX *get_thread_default_context(void)
{
    if (!RUN_ONCE(&amp;default_context_init, default_context_do_init))
        return NULL;

    return CRYPTO_THREAD_get_local(&amp;default_context_thread_local);
}

static OSSL_LIB_CTX *get_default_context(void)
{
    OSSL_LIB_CTX *current_defctx = get_thread_default_context();

    if (current_defctx == NULL)
        current_defctx = &amp;default_context_int;
    return current_defctx;
}

static int set_default_context(OSSL_LIB_CTX *defctx)
{
    if (defctx == &amp;default_context_int)
        defctx = NULL;

    return CRYPTO_THREAD_set_local(&amp;default_context_thread_local, defctx);
}
#endif

OSSL_LIB_CTX *OSSL_LIB_CTX_new(void)
{
    OSSL_LIB_CTX *ctx = OPENSSL_zalloc(sizeof(*ctx));

    if (ctx != NULL &amp;&amp; !context_init(ctx)) {
        OPENSSL_free(ctx);
        ctx = NULL;
    }
    return ctx;
}

#ifndef FIPS_MODULE
OSSL_LIB_CTX *OSSL_LIB_CTX_new_from_dispatch(const OSSL_CORE_HANDLE *handle,
                                             const OSSL_DISPATCH *in)
{
    OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new();

    if (ctx == NULL)
        return NULL;

    if (!ossl_bio_init_core(ctx, in)) {
        OSSL_LIB_CTX_free(ctx);
        return NULL;
    }

    return ctx;
}

OSSL_LIB_CTX *OSSL_LIB_CTX_new_child(const OSSL_CORE_HANDLE *handle,
                                     const OSSL_DISPATCH *in)
{
    OSSL_LIB_CTX *ctx = OSSL_LIB_CTX_new_from_dispatch(handle, in);

    if (ctx == NULL)
        return NULL;

    if (!ossl_provider_init_as_child(ctx, handle, in)) {
        OSSL_LIB_CTX_free(ctx);
        return NULL;
    }
    ctx-&gt;ischild = 1;

    return ctx;
}

int OSSL_LIB_CTX_load_config(OSSL_LIB_CTX *ctx, const char *config_file)
{
    return CONF_modules_load_file_ex(ctx, config_file, NULL, 0) &gt; 0;
}
#endif

void OSSL_LIB_CTX_free(OSSL_LIB_CTX *ctx)
{
    if (ossl_lib_ctx_is_default(ctx))
        return;

#ifndef FIPS_MODULE
    if (ctx-&gt;ischild)
        ossl_provider_deinit_child(ctx);
#endif
    context_deinit(ctx);
    OPENSSL_free(ctx);
}

#ifndef FIPS_MODULE
OSSL_LIB_CTX *OSSL_LIB_CTX_get0_global_default(void)
{
    if (!RUN_ONCE(&amp;default_context_init, default_context_do_init))
        return NULL;

    return &amp;default_context_int;
}

OSSL_LIB_CTX *OSSL_LIB_CTX_set0_default(OSSL_LIB_CTX *libctx)
{
    OSSL_LIB_CTX *current_defctx;

    if ((current_defctx = get_default_context()) != NULL) {
        if (libctx != NULL)
            set_default_context(libctx);
        return current_defctx;
    }

    return NULL;
}

void ossl_release_default_drbg_ctx(void)
{
    /* early release of the DRBG in global default libctx */
    if (default_context_int.drbg != NULL) {
        ossl_rand_ctx_free(default_context_int.drbg);
        default_context_int.drbg = NULL;
    }
}
#endif

OSSL_LIB_CTX *ossl_lib_ctx_get_concrete(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ctx == NULL)
        return get_default_context();
#endif
    return ctx;
}

int ossl_lib_ctx_is_default(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ctx == NULL || ctx == get_default_context())
        return 1;
#endif
    return 0;
}

int ossl_lib_ctx_is_global_default(OSSL_LIB_CTX *ctx)
{
#ifndef FIPS_MODULE
    if (ossl_lib_ctx_get_concrete(ctx) == &amp;default_context_int)
        return 1;
#endif
    return 0;
}

void *ossl_lib_ctx_get_data(OSSL_LIB_CTX *ctx, int index)
{
    void *p;

    ctx = ossl_lib_ctx_get_concrete(ctx);
    if (ctx == NULL)
        return NULL;

    switch (index) {
    case OSSL_LIB_CTX_PROPERTY_STRING_INDEX:
        return ctx-&gt;property_string_data;
    case OSSL_LIB_CTX_EVP_METHOD_STORE_INDEX:
        return ctx-&gt;evp_method_store;
    case OSSL_LIB_CTX_PROVIDER_STORE_INDEX:
        return ctx-&gt;provider_store;
    case OSSL_LIB_CTX_NAMEMAP_INDEX:
        return ctx-&gt;namemap;
    case OSSL_LIB_CTX_PROPERTY_DEFN_INDEX:
        return ctx-&gt;property_defns;
    case OSSL_LIB_CTX_GLOBAL_PROPERTIES:
        return ctx-&gt;global_properties;
    case OSSL_LIB_CTX_DRBG_INDEX:
        return ctx-&gt;drbg;
    case OSSL_LIB_CTX_DRBG_NONCE_INDEX:
        return ctx-&gt;drbg_nonce;
#ifndef FIPS_MODULE
    case OSSL_LIB_CTX_PROVIDER_CONF_INDEX:
        return ctx-&gt;provider_conf;
    case OSSL_LIB_CTX_BIO_CORE_INDEX:
        return ctx-&gt;bio_core;
    case OSSL_LIB_CTX_CHILD_PROVIDER_INDEX:
        return ctx-&gt;child_provider;
    case OSSL_LIB_CTX_DECODER_STORE_INDEX:
        return ctx-&gt;decoder_store;
    case OSSL_LIB_CTX_DECODER_CACHE_INDEX:
        return ctx-&gt;decoder_cache;
    case OSSL_LIB_CTX_ENCODER_STORE_INDEX:
        return ctx-&gt;encoder_store;
    case OSSL_LIB_CTX_STORE_LOADER_STORE_INDEX:
        return ctx-&gt;store_loader_store;
    case OSSL_LIB_CTX_SELF_TEST_CB_INDEX:
        return ctx-&gt;self_test_cb;
#endif
#ifndef OPENSSL_NO_THREAD_POOL
    case OSSL_LIB_CTX_THREAD_INDEX:
        return ctx-&gt;threads;
#endif

    case OSSL_LIB_CTX_RAND_CRNGT_INDEX: {

        /*
         * rand_crngt must be lazily initialized because it calls into
         * libctx, so must not be called from context_init, else a deadlock
         * will occur.
         *
         * We use a separate lock because code called by the instantiation
         * of rand_crngt is liable to try and take the libctx lock.
         */
        if (CRYPTO_THREAD_read_lock(ctx-&gt;rand_crngt_lock) != 1)
            return NULL;

        if (ctx-&gt;rand_crngt == NULL) {
            CRYPTO_THREAD_unlock(ctx-&gt;rand_crngt_lock);

            if (CRYPTO_THREAD_write_lock(ctx-&gt;rand_crngt_lock) != 1)
                return NULL;

            if (ctx-&gt;rand_crngt == NULL)
                ctx-&gt;rand_crngt = ossl_rand_crng_ctx_new(ctx);
        }

        p = ctx-&gt;rand_crngt;

        CRYPTO_THREAD_unlock(ctx-&gt;rand_crngt_lock);

        return p;
    }

#ifdef FIPS_MODULE
    case OSSL_LIB_CTX_THREAD_EVENT_HANDLER_INDEX:
        return ctx-&gt;thread_event_handler;

    case OSSL_LIB_CTX_FIPS_PROV_INDEX:
        return ctx-&gt;fips_prov;
#endif

    default:
        return NULL;
    }
}

OSSL_EX_DATA_GLOBAL *ossl_lib_ctx_get_ex_data_global(OSSL_LIB_CTX *ctx)
{
    ctx = ossl_lib_ctx_get_concrete(ctx);
    if (ctx == NULL)
        return NULL;
    return &amp;ctx-&gt;global;
}

const char *ossl_lib_ctx_get_descriptor(OSSL_LIB_CTX *libctx)
{
#ifdef FIPS_MODULE
    return "FIPS internal library context";
#else
    if (ossl_lib_ctx_is_global_default(libctx))
        return "Global default library context";
    if (ossl_lib_ctx_is_default(libctx))
        return "Thread-local default library context";
    return "Non-default library context";
#endif
}
</file>
  <file fpath="/out/src/openssl/crypto/cpuid.c">/*
 * Copyright 1998-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "internal/e_os.h"
#include "crypto/cryptlib.h"

#if     defined(__i386)   || defined(__i386__)   || defined(_M_IX86) || \
        defined(__x86_64) || defined(__x86_64__) || \
        defined(_M_AMD64) || defined(_M_X64)

extern unsigned int OPENSSL_ia32cap_P[4];

# if defined(OPENSSL_CPUID_OBJ)

/*
 * Purpose of these minimalistic and character-type-agnostic subroutines
 * is to break dependency on MSVCRT (on Windows) and locale. This makes
 * OPENSSL_cpuid_setup safe to use as "constructor". "Character-type-
 * agnostic" means that they work with either wide or 8-bit characters,
 * exploiting the fact that first 127 characters can be simply casted
 * between the sets, while the rest would be simply rejected by ossl_is*
 * subroutines.
 */
#  ifdef _WIN32
typedef WCHAR variant_char;

static variant_char *ossl_getenv(const char *name)
{
    /*
     * Since we pull only one environment variable, it's simpler to
     * just ignore |name| and use equivalent wide-char L-literal.
     * As well as to ignore excessively long values...
     */
    static WCHAR value[48];
    DWORD len = GetEnvironmentVariableW(L"OPENSSL_ia32cap", value, 48);

    return (len &gt; 0 &amp;&amp; len &lt; 48) ? value : NULL;
}
#  else
typedef char variant_char;
#   define ossl_getenv getenv
#  endif

#  include "crypto/ctype.h"

static int todigit(variant_char c)
{
    if (ossl_isdigit(c))
        return c - '0';
    else if (ossl_isxdigit(c))
        return ossl_tolower(c) - 'a' + 10;

    /* return largest base value to make caller terminate the loop */
    return 16;
}

static uint64_t ossl_strtouint64(const variant_char *str)
{
    uint64_t ret = 0;
    unsigned int digit, base = 10;

    if (*str == '0') {
        base = 8, str++;
        if (ossl_tolower(*str) == 'x')
            base = 16, str++;
    }

    while ((digit = todigit(*str++)) &lt; base)
        ret = ret * base + digit;

    return ret;
}

static variant_char *ossl_strchr(const variant_char *str, char srch)
{   variant_char c;

    while ((c = *str)) {
        if (c == srch)
            return (variant_char *)str;
        str++;
    }

    return NULL;
}

#  define OPENSSL_CPUID_SETUP
typedef uint64_t IA32CAP;

void OPENSSL_cpuid_setup(void)
{
    static int trigger = 0;
    IA32CAP OPENSSL_ia32_cpuid(unsigned int *);
    IA32CAP vec;
    const variant_char *env;

    if (trigger)
        return;

    trigger = 1;
    if ((env = ossl_getenv("OPENSSL_ia32cap")) != NULL) {
        int off = (env[0] == '~') ? 1 : 0;

        vec = ossl_strtouint64(env + off);

        if (off) {
            IA32CAP mask = vec;
            vec = OPENSSL_ia32_cpuid(OPENSSL_ia32cap_P) &amp; ~mask;
            if (mask &amp; (1&lt;&lt;24)) {
                /*
                 * User disables FXSR bit, mask even other capabilities
                 * that operate exclusively on XMM, so we don't have to
                 * double-check all the time. We mask PCLMULQDQ, AMD XOP,
                 * AES-NI and AVX. Formally speaking we don't have to
                 * do it in x86_64 case, but we can safely assume that
                 * x86_64 users won't actually flip this flag.
                 */
                vec &amp;= ~((IA32CAP)(1&lt;&lt;1|1&lt;&lt;11|1&lt;&lt;25|1&lt;&lt;28) &lt;&lt; 32);
            }
        } else if (env[0] == ':') {
            vec = OPENSSL_ia32_cpuid(OPENSSL_ia32cap_P);
        }

        if ((env = ossl_strchr(env, ':')) != NULL) {
            IA32CAP vecx;

            env++;
            off = (env[0] == '~') ? 1 : 0;
            vecx = ossl_strtouint64(env + off);
            if (off) {
                OPENSSL_ia32cap_P[2] &amp;= ~(unsigned int)vecx;
                OPENSSL_ia32cap_P[3] &amp;= ~(unsigned int)(vecx &gt;&gt; 32);
            } else {
                OPENSSL_ia32cap_P[2] = (unsigned int)vecx;
                OPENSSL_ia32cap_P[3] = (unsigned int)(vecx &gt;&gt; 32);
            }
        } else {
            OPENSSL_ia32cap_P[2] = 0;
            OPENSSL_ia32cap_P[3] = 0;
        }
    } else {
        vec = OPENSSL_ia32_cpuid(OPENSSL_ia32cap_P);
    }

    /*
     * |(1&lt;&lt;10) sets a reserved bit to signal that variable
     * was initialized already... This is to avoid interference
     * with cpuid snippets in ELF .init segment.
     */
    OPENSSL_ia32cap_P[0] = (unsigned int)vec | (1 &lt;&lt; 10);
    OPENSSL_ia32cap_P[1] = (unsigned int)(vec &gt;&gt; 32);
}
# else
unsigned int OPENSSL_ia32cap_P[4];
# endif
#endif

#ifndef OPENSSL_CPUID_OBJ
# ifndef OPENSSL_CPUID_SETUP
void OPENSSL_cpuid_setup(void)
{
}
# endif

/*
 * The rest are functions that are defined in the same assembler files as
 * the CPUID functionality.
 */

/*
 * The volatile is used to ensure that the compiler generates code that reads
 * all values from the array and doesn't try to optimize this away. The standard
 * doesn't actually require this behavior if the original data pointed to is
 * not volatile, but compilers do this in practice anyway.
 *
 * There are also assembler versions of this function.
 */
# undef CRYPTO_memcmp
int CRYPTO_memcmp(const void *in_a, const void *in_b, size_t len)
{
    size_t i;
    const volatile unsigned char *a = in_a;
    const volatile unsigned char *b = in_b;
    unsigned char x = 0;

    for (i = 0; i &lt; len; i++)
        x |= a[i] ^ b[i];

    return x;
}

/*
 * For systems that don't provide an instruction counter register or equivalent.
 */
uint32_t OPENSSL_rdtsc(void)
{
    return 0;
}

size_t OPENSSL_instrument_bus(unsigned int *out, size_t cnt)
{
    return 0;
}

size_t OPENSSL_instrument_bus2(unsigned int *out, size_t cnt, size_t max)
{
    return 0;
}
#endif
</file>
  <file fpath="/out/src/openssl/crypto/ex_data.c">/*
 * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include &lt;stdlib.h&gt;
#include "crypto/cryptlib.h"
#include "internal/thread_once.h"

int ossl_do_ex_data_init(OSSL_LIB_CTX *ctx)
{
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ctx);

    if (global == NULL)
        return 0;

    global-&gt;ex_data_lock = CRYPTO_THREAD_lock_new();
    return global-&gt;ex_data_lock != NULL;
}

/*
 * Return the EX_CALLBACKS from the |ex_data| array that corresponds to
 * a given class.  On success, *holds the lock.*
 * The |global| parameter is assumed to be non null (checked by the caller).
 * If |read| is 1 then a read lock is obtained. Otherwise it is a write lock.
 */
static EX_CALLBACKS *get_and_lock(OSSL_EX_DATA_GLOBAL *global, int class_index,
                                  int read)
{
    EX_CALLBACKS *ip;

    if (class_index &lt; 0 || class_index &gt;= CRYPTO_EX_INDEX__COUNT) {
        ERR_raise(ERR_LIB_CRYPTO, ERR_R_PASSED_INVALID_ARGUMENT);
        return NULL;
    }

    if (global-&gt;ex_data_lock == NULL) {
        /*
         * If we get here, someone (who?) cleaned up the lock, so just
         * treat it as an error.
         */
         return NULL;
    }

    if (read) {
        if (!CRYPTO_THREAD_read_lock(global-&gt;ex_data_lock))
            return NULL;
    } else {
        if (!CRYPTO_THREAD_write_lock(global-&gt;ex_data_lock))
            return NULL;
    }

    ip = &amp;global-&gt;ex_data[class_index];
    return ip;
}

static void cleanup_cb(EX_CALLBACK *funcs)
{
    OPENSSL_free(funcs);
}

/*
 * Release all "ex_data" state to prevent memory leaks. This can't be made
 * thread-safe without overhauling a lot of stuff, and shouldn't really be
 * called under potential race-conditions anyway (it's for program shutdown
 * after all).
 */
void ossl_crypto_cleanup_all_ex_data_int(OSSL_LIB_CTX *ctx)
{
    int i;
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ctx);

    if (global == NULL)
        return;

    for (i = 0; i &lt; CRYPTO_EX_INDEX__COUNT; ++i) {
        EX_CALLBACKS *ip = &amp;global-&gt;ex_data[i];

        sk_EX_CALLBACK_pop_free(ip-&gt;meth, cleanup_cb);
        ip-&gt;meth = NULL;
    }

    CRYPTO_THREAD_lock_free(global-&gt;ex_data_lock);
    global-&gt;ex_data_lock = NULL;
}


/*
 * Unregister a new index by replacing the callbacks with no-ops.
 * Any in-use instances are leaked.
 */
static void dummy_new(void *parent, void *ptr, CRYPTO_EX_DATA *ad, int idx,
                     long argl, void *argp)
{
}

static void dummy_free(void *parent, void *ptr, CRYPTO_EX_DATA *ad, int idx,
                       long argl, void *argp)
{
}

static int dummy_dup(CRYPTO_EX_DATA *to, const CRYPTO_EX_DATA *from,
                     void **from_d, int idx,
                     long argl, void *argp)
{
    return 1;
}

int ossl_crypto_free_ex_index_ex(OSSL_LIB_CTX *ctx, int class_index, int idx)
{
    EX_CALLBACKS *ip;
    EX_CALLBACK *a;
    int toret = 0;
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ctx);

    if (global == NULL)
        return 0;

    ip = get_and_lock(global, class_index, 0);
    if (ip == NULL)
        return 0;

    if (idx &lt; 0 || idx &gt;= sk_EX_CALLBACK_num(ip-&gt;meth))
        goto err;
    a = sk_EX_CALLBACK_value(ip-&gt;meth, idx);
    if (a == NULL)
        goto err;
    a-&gt;new_func = dummy_new;
    a-&gt;dup_func = dummy_dup;
    a-&gt;free_func = dummy_free;
    toret = 1;
err:
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);
    return toret;
}

int CRYPTO_free_ex_index(int class_index, int idx)
{
    return ossl_crypto_free_ex_index_ex(NULL, class_index, idx);
}

/*
 * Register a new index.
 */
int ossl_crypto_get_ex_new_index_ex(OSSL_LIB_CTX *ctx, int class_index,
                                    long argl, void *argp,
                                    CRYPTO_EX_new *new_func,
                                    CRYPTO_EX_dup *dup_func,
                                    CRYPTO_EX_free *free_func,
                                    int priority)
{
    int toret = -1;
    EX_CALLBACK *a;
    EX_CALLBACKS *ip;
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ctx);

    if (global == NULL)
        return -1;

    ip = get_and_lock(global, class_index, 0);
    if (ip == NULL)
        return -1;

    if (ip-&gt;meth == NULL) {
        ip-&gt;meth = sk_EX_CALLBACK_new_null();
        /* We push an initial value on the stack because the SSL
         * "app_data" routines use ex_data index zero.  See RT 3710. */
        if (ip-&gt;meth == NULL
            || !sk_EX_CALLBACK_push(ip-&gt;meth, NULL)) {
            sk_EX_CALLBACK_free(ip-&gt;meth);
            ip-&gt;meth = NULL;
            ERR_raise(ERR_LIB_CRYPTO, ERR_R_CRYPTO_LIB);
            goto err;
        }
    }

    a = (EX_CALLBACK *)OPENSSL_malloc(sizeof(*a));
    if (a == NULL)
        goto err;
    a-&gt;argl = argl;
    a-&gt;argp = argp;
    a-&gt;new_func = new_func;
    a-&gt;dup_func = dup_func;
    a-&gt;free_func = free_func;
    a-&gt;priority = priority;

    if (!sk_EX_CALLBACK_push(ip-&gt;meth, NULL)) {
        ERR_raise(ERR_LIB_CRYPTO, ERR_R_CRYPTO_LIB);
        OPENSSL_free(a);
        goto err;
    }
    toret = sk_EX_CALLBACK_num(ip-&gt;meth) - 1;
    (void)sk_EX_CALLBACK_set(ip-&gt;meth, toret, a);

 err:
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);
    return toret;
}

int CRYPTO_get_ex_new_index(int class_index, long argl, void *argp,
                            CRYPTO_EX_new *new_func, CRYPTO_EX_dup *dup_func,
                            CRYPTO_EX_free *free_func)
{
    return ossl_crypto_get_ex_new_index_ex(NULL, class_index, argl, argp,
                                           new_func, dup_func, free_func, 0);
}

/*
 * Initialise a new CRYPTO_EX_DATA for use in a particular class - including
 * calling new() callbacks for each index in the class used by this variable
 * Thread-safe by copying a class's array of "EX_CALLBACK" entries
 * in the lock, then using them outside the lock. Note this only applies
 * to the global "ex_data" state (ie. class definitions), not 'ad' itself.
 */
int ossl_crypto_new_ex_data_ex(OSSL_LIB_CTX *ctx, int class_index, void *obj,
                               CRYPTO_EX_DATA *ad)
{
    int mx, i;
    void *ptr;
    EX_CALLBACK **storage = NULL;
    EX_CALLBACK *stack[10];
    EX_CALLBACKS *ip;
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ctx);

    if (global == NULL)
        return 0;

    ip = get_and_lock(global, class_index, 1);
    if (ip == NULL)
        return 0;

    ad-&gt;ctx = ctx;
    ad-&gt;sk = NULL;
    mx = sk_EX_CALLBACK_num(ip-&gt;meth);
    if (mx &gt; 0) {
        if (mx &lt; (int)OSSL_NELEM(stack))
            storage = stack;
        else
            storage = OPENSSL_malloc(sizeof(*storage) * mx);
        if (storage != NULL)
            for (i = 0; i &lt; mx; i++)
                storage[i] = sk_EX_CALLBACK_value(ip-&gt;meth, i);
    }
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);

    if (mx &gt; 0 &amp;&amp; storage == NULL)
        return 0;
    for (i = 0; i &lt; mx; i++) {
        if (storage[i] != NULL &amp;&amp; storage[i]-&gt;new_func != NULL) {
            ptr = CRYPTO_get_ex_data(ad, i);
            storage[i]-&gt;new_func(obj, ptr, ad, i,
                                 storage[i]-&gt;argl, storage[i]-&gt;argp);
        }
    }
    if (storage != stack)
        OPENSSL_free(storage);
    return 1;
}

int CRYPTO_new_ex_data(int class_index, void *obj, CRYPTO_EX_DATA *ad)
{
    return ossl_crypto_new_ex_data_ex(NULL, class_index, obj, ad);
}

/*
 * Duplicate a CRYPTO_EX_DATA variable - including calling dup() callbacks
 * for each index in the class used by this variable
 */
int CRYPTO_dup_ex_data(int class_index, CRYPTO_EX_DATA *to,
                       const CRYPTO_EX_DATA *from)
{
    int mx, j, i;
    void *ptr;
    EX_CALLBACK *stack[10];
    EX_CALLBACK **storage = NULL;
    EX_CALLBACKS *ip;
    int toret = 0;
    OSSL_EX_DATA_GLOBAL *global;

    to-&gt;ctx = from-&gt;ctx;
    if (from-&gt;sk == NULL)
        /* Nothing to copy over */
        return 1;

    global = ossl_lib_ctx_get_ex_data_global(from-&gt;ctx);
    if (global == NULL)
        return 0;

    ip = get_and_lock(global, class_index, 1);
    if (ip == NULL)
        return 0;

    mx = sk_EX_CALLBACK_num(ip-&gt;meth);
    j = sk_void_num(from-&gt;sk);
    if (j &lt; mx)
        mx = j;
    if (mx &gt; 0) {
        if (mx &lt; (int)OSSL_NELEM(stack))
            storage = stack;
        else
            storage = OPENSSL_malloc(sizeof(*storage) * mx);
        if (storage != NULL)
            for (i = 0; i &lt; mx; i++)
                storage[i] = sk_EX_CALLBACK_value(ip-&gt;meth, i);
    }
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);

    if (mx == 0)
        return 1;
    if (storage == NULL)
        return 0;
    /*
     * Make sure the ex_data stack is at least |mx| elements long to avoid
     * issues in the for loop that follows; so go get the |mx|'th element
     * (if it does not exist CRYPTO_get_ex_data() returns NULL), and assign
     * to itself. This is normally a no-op; but ensures the stack is the
     * proper size
     */
    if (!CRYPTO_set_ex_data(to, mx - 1, CRYPTO_get_ex_data(to, mx - 1)))
        goto err;

    for (i = 0; i &lt; mx; i++) {
        ptr = CRYPTO_get_ex_data(from, i);
        if (storage[i] != NULL &amp;&amp; storage[i]-&gt;dup_func != NULL)
            if (!storage[i]-&gt;dup_func(to, from, &amp;ptr, i,
                                      storage[i]-&gt;argl, storage[i]-&gt;argp))
                goto err;
        CRYPTO_set_ex_data(to, i, ptr);
    }
    toret = 1;
 err:
    if (storage != stack)
        OPENSSL_free(storage);
    return toret;
}

struct ex_callback_entry {
    const EX_CALLBACK *excb;
    int index;
};

static int ex_callback_compare(const void *a, const void *b)
{
    const struct ex_callback_entry *ap = (const struct ex_callback_entry *)a;
    const struct ex_callback_entry *bp = (const struct ex_callback_entry *)b;

    if (ap-&gt;excb == bp-&gt;excb)
        return 0;

    if (ap-&gt;excb == NULL)
        return 1;
    if (bp-&gt;excb == NULL)
        return -1;
    if (ap-&gt;excb-&gt;priority == bp-&gt;excb-&gt;priority)
        return 0;
    return ap-&gt;excb-&gt;priority &gt; bp-&gt;excb-&gt;priority ? -1 : 1;
}

/*
 * Cleanup a CRYPTO_EX_DATA variable - including calling free() callbacks for
 * each index in the class used by this variable
 */
void CRYPTO_free_ex_data(int class_index, void *obj, CRYPTO_EX_DATA *ad)
{
    int mx, i;
    EX_CALLBACKS *ip;
    void *ptr;
    const EX_CALLBACK *f;
    struct ex_callback_entry stack[10];
    struct ex_callback_entry *storage = NULL;
    OSSL_EX_DATA_GLOBAL *global = ossl_lib_ctx_get_ex_data_global(ad-&gt;ctx);

    if (global == NULL)
        goto err;

    ip = get_and_lock(global, class_index, 1);
    if (ip == NULL)
        goto err;

    mx = sk_EX_CALLBACK_num(ip-&gt;meth);
    if (mx &gt; 0) {
        if (mx &lt; (int)OSSL_NELEM(stack))
            storage = stack;
        else
            storage = OPENSSL_malloc(sizeof(*storage) * mx);
        if (storage != NULL)
            for (i = 0; i &lt; mx; i++) {
                storage[i].excb = sk_EX_CALLBACK_value(ip-&gt;meth, i);
                storage[i].index = i;
            }
    }
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);

    if (storage != NULL) {
        /* Sort according to priority. High priority first */
        qsort(storage, mx, sizeof(*storage), ex_callback_compare);
        for (i = 0; i &lt; mx; i++) {
            f = storage[i].excb;

            if (f != NULL &amp;&amp; f-&gt;free_func != NULL) {
                ptr = CRYPTO_get_ex_data(ad, storage[i].index);
                f-&gt;free_func(obj, ptr, ad, storage[i].index, f-&gt;argl, f-&gt;argp);
            }
        }
    }

    if (storage != stack)
        OPENSSL_free(storage);
 err:
    sk_void_free(ad-&gt;sk);
    ad-&gt;sk = NULL;
    ad-&gt;ctx = NULL;
}

/*
 * Allocate a given CRYPTO_EX_DATA item using the class specific allocation
 * function
 */
int CRYPTO_alloc_ex_data(int class_index, void *obj, CRYPTO_EX_DATA *ad,
                         int idx)
{
    void *curval;

    curval = CRYPTO_get_ex_data(ad, idx);
    /* Already there, no need to allocate */
    if (curval != NULL)
        return 1;

    return ossl_crypto_alloc_ex_data_intern(class_index, obj, ad, idx);
}

int ossl_crypto_alloc_ex_data_intern(int class_index, void *obj,
                                     CRYPTO_EX_DATA *ad, int idx)
{
    EX_CALLBACK *f;
    EX_CALLBACKS *ip;
    OSSL_EX_DATA_GLOBAL *global;

    global = ossl_lib_ctx_get_ex_data_global(ad-&gt;ctx);
    if (global == NULL)
        return 0;

    ip = get_and_lock(global, class_index, 1);
    if (ip == NULL)
        return 0;
    f = sk_EX_CALLBACK_value(ip-&gt;meth, idx);
    CRYPTO_THREAD_unlock(global-&gt;ex_data_lock);

    /*
     * This should end up calling CRYPTO_set_ex_data(), which allocates
     * everything necessary to support placing the new data in the right spot.
     */
    if (f-&gt;new_func == NULL)
        return 0;

    f-&gt;new_func(obj, NULL, ad, idx, f-&gt;argl, f-&gt;argp);

    return 1;
}

/*
 * For a given CRYPTO_EX_DATA variable, set the value corresponding to a
 * particular index in the class used by this variable
 */
int CRYPTO_set_ex_data(CRYPTO_EX_DATA *ad, int idx, void *val)
{
    int i;

    if (ad-&gt;sk == NULL) {
        if ((ad-&gt;sk = sk_void_new_null()) == NULL) {
            ERR_raise(ERR_LIB_CRYPTO, ERR_R_CRYPTO_LIB);
            return 0;
        }
    }

    for (i = sk_void_num(ad-&gt;sk); i &lt;= idx; ++i) {
        if (!sk_void_push(ad-&gt;sk, NULL)) {
            ERR_raise(ERR_LIB_CRYPTO, ERR_R_CRYPTO_LIB);
            return 0;
        }
    }
    if (sk_void_set(ad-&gt;sk, idx, val) != val) {
        /* Probably the index is out of bounds */
        ERR_raise(ERR_LIB_CRYPTO, ERR_R_PASSED_INVALID_ARGUMENT);
        return 0;
    }
    return 1;
}

/*
 * For a given CRYPTO_EX_DATA_ variable, get the value corresponding to a
 * particular index in the class used by this variable
 */
void *CRYPTO_get_ex_data(const CRYPTO_EX_DATA *ad, int idx)
{
    if (ad-&gt;sk == NULL || idx &gt;= sk_void_num(ad-&gt;sk))
        return NULL;
    return sk_void_value(ad-&gt;sk, idx);
}

OSSL_LIB_CTX *ossl_crypto_ex_data_get_ossl_lib_ctx(const CRYPTO_EX_DATA *ad)
{
    return ad-&gt;ctx;
}
</file>
  <file fpath="/out/src/openssl/crypto/init.c">/*
 * Copyright 2016-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* We need to use some engine deprecated APIs */
#define OPENSSL_SUPPRESS_DEPRECATED

#include "internal/e_os.h"
#include "crypto/cryptlib.h"
#include &lt;openssl/err.h&gt;
#include "crypto/rand.h"
#include "internal/bio.h"
#include &lt;openssl/evp.h&gt;
#include "crypto/evp.h"
#include "internal/conf.h"
#include "crypto/async.h"
#include "crypto/engine.h"
#include "internal/comp.h"
#include "internal/err.h"
#include "crypto/err.h"
#include "crypto/objects.h"
#include &lt;stdlib.h&gt;
#include &lt;assert.h&gt;
#include "internal/thread_once.h"
#include "crypto/dso_conf.h"
#include "internal/dso.h"
#include "crypto/store.h"
#include &lt;openssl/cmp_util.h&gt; /* for OSSL_CMP_log_close() */
#include &lt;openssl/trace.h&gt;
#include "crypto/ctype.h"

static int stopped = 0;
static uint64_t optsdone = 0;

typedef struct ossl_init_stop_st OPENSSL_INIT_STOP;
struct ossl_init_stop_st {
    void (*handler)(void);
    OPENSSL_INIT_STOP *next;
};

static OPENSSL_INIT_STOP *stop_handlers = NULL;
/* Guards access to the optsdone variable on platforms without atomics */
static CRYPTO_RWLOCK *optsdone_lock = NULL;
/* Guards simultaneous INIT_LOAD_CONFIG calls with non-NULL settings */
static CRYPTO_RWLOCK *init_lock = NULL;
static CRYPTO_THREAD_LOCAL in_init_config_local;

static CRYPTO_ONCE base = CRYPTO_ONCE_STATIC_INIT;
static int base_inited = 0;
DEFINE_RUN_ONCE_STATIC(ossl_init_base)
{
    /* no need to init trace */

    OSSL_TRACE(INIT, "ossl_init_base: setting up stop handlers\n");
#ifndef OPENSSL_NO_CRYPTO_MDEBUG
    ossl_malloc_setup_failures();
#endif

    if ((optsdone_lock = CRYPTO_THREAD_lock_new()) == NULL
        || (init_lock = CRYPTO_THREAD_lock_new()) == NULL)
        goto err;

    OPENSSL_cpuid_setup();

    if (!ossl_init_thread())
        goto err;

    if (!CRYPTO_THREAD_init_local(&amp;in_init_config_local, NULL))
        goto err;

    base_inited = 1;
    return 1;

err:
    OSSL_TRACE(INIT, "ossl_init_base failed!\n");
    CRYPTO_THREAD_lock_free(optsdone_lock);
    optsdone_lock = NULL;
    CRYPTO_THREAD_lock_free(init_lock);
    init_lock = NULL;

    return 0;
}

static CRYPTO_ONCE register_atexit = CRYPTO_ONCE_STATIC_INIT;
#if !defined(OPENSSL_SYS_UEFI) &amp;&amp; defined(_WIN32)
static int win32atexit(void)
{
    OPENSSL_cleanup();
    return 0;
}
#endif

DEFINE_RUN_ONCE_STATIC(ossl_init_register_atexit)
{
#ifndef OPENSSL_NO_ATEXIT
# ifdef OPENSSL_INIT_DEBUG
    fprintf(stderr, "OPENSSL_INIT: ossl_init_register_atexit()\n");
# endif
# ifndef OPENSSL_SYS_UEFI
#  if defined(_WIN32) &amp;&amp; !defined(__BORLANDC__)
    /* We use _onexit() in preference because it gets called on DLL unload */
    if (_onexit(win32atexit) == NULL)
        return 0;
#  else
    if (atexit(OPENSSL_cleanup) != 0)
        return 0;
#  endif
# endif
#endif

    return 1;
}

DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_register_atexit,
                           ossl_init_register_atexit)
{
#ifdef OPENSSL_INIT_DEBUG
    fprintf(stderr, "OPENSSL_INIT: ossl_init_no_register_atexit ok!\n");
#endif
    /* Do nothing in this case */
    return 1;
}

static CRYPTO_ONCE load_crypto_nodelete = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_load_crypto_nodelete)
{
    OSSL_TRACE(INIT, "ossl_init_load_crypto_nodelete()\n");

#if !defined(OPENSSL_USE_NODELETE) \
    &amp;&amp; !defined(OPENSSL_NO_PINSHARED)
# if defined(DSO_WIN32) &amp;&amp; !defined(_WIN32_WCE)
    {
        HMODULE handle = NULL;
        BOOL ret;

        /* We don't use the DSO route for WIN32 because there is a better way */
        ret = GetModuleHandleEx(GET_MODULE_HANDLE_EX_FLAG_FROM_ADDRESS
                                | GET_MODULE_HANDLE_EX_FLAG_PIN,
                                (void *)&amp;base_inited, &amp;handle);

        OSSL_TRACE1(INIT,
                    "ossl_init_load_crypto_nodelete: "
                    "obtained DSO reference? %s\n",
                    (ret == TRUE ? "No!" : "Yes."));
        return (ret == TRUE) ? 1 : 0;
    }
# elif !defined(DSO_NONE)
    /*
     * Deliberately leak a reference to ourselves. This will force the library
     * to remain loaded until the atexit() handler is run at process exit.
     */
    {
        DSO *dso;
        void *err;

        if (!err_shelve_state(&amp;err))
            return 0;

        dso = DSO_dsobyaddr(&amp;base_inited, DSO_FLAG_NO_UNLOAD_ON_FREE);
        /*
         * In case of No!, it is uncertain our exit()-handlers can still be
         * called. After dlclose() the whole library might have been unloaded
         * already.
         */
        OSSL_TRACE1(INIT, "obtained DSO reference? %s\n",
                    (dso == NULL ? "No!" : "Yes."));
        DSO_free(dso);
        err_unshelve_state(err);
    }
# endif
#endif

    return 1;
}

static CRYPTO_ONCE load_crypto_strings = CRYPTO_ONCE_STATIC_INIT;

DEFINE_RUN_ONCE_STATIC(ossl_init_load_crypto_strings)
{
    int ret = 1;
    /*
     * OPENSSL_NO_AUTOERRINIT is provided here to prevent at compile time
     * pulling in all the error strings during static linking
     */
#if !defined(OPENSSL_NO_ERR) &amp;&amp; !defined(OPENSSL_NO_AUTOERRINIT)
    void *err;

    if (!err_shelve_state(&amp;err))
        return 0;

    OSSL_TRACE(INIT, "ossl_err_load_crypto_strings()\n");
    ret = ossl_err_load_crypto_strings();

    err_unshelve_state(err);
#endif
    return ret;
}

DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_load_crypto_strings,
                           ossl_init_load_crypto_strings)
{
    /* Do nothing in this case */
    return 1;
}

static CRYPTO_ONCE add_all_ciphers = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_add_all_ciphers)
{
    /*
     * OPENSSL_NO_AUTOALGINIT is provided here to prevent at compile time
     * pulling in all the ciphers during static linking
     */
#ifndef OPENSSL_NO_AUTOALGINIT
    OSSL_TRACE(INIT, "openssl_add_all_ciphers_int()\n");
    openssl_add_all_ciphers_int();
#endif
    return 1;
}

DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_add_all_ciphers,
                           ossl_init_add_all_ciphers)
{
    /* Do nothing */
    return 1;
}

static CRYPTO_ONCE add_all_digests = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_add_all_digests)
{
    /*
     * OPENSSL_NO_AUTOALGINIT is provided here to prevent at compile time
     * pulling in all the ciphers during static linking
     */
#ifndef OPENSSL_NO_AUTOALGINIT
    OSSL_TRACE(INIT, "openssl_add_all_digests()\n");
    openssl_add_all_digests_int();
#endif
    return 1;
}

DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_add_all_digests,
                           ossl_init_add_all_digests)
{
    /* Do nothing */
    return 1;
}

static CRYPTO_ONCE config = CRYPTO_ONCE_STATIC_INIT;
static int config_inited = 0;
static const OPENSSL_INIT_SETTINGS *conf_settings = NULL;
DEFINE_RUN_ONCE_STATIC(ossl_init_config)
{
    int ret = ossl_config_int(NULL);

    config_inited = 1;
    return ret;
}
DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_config_settings, ossl_init_config)
{
    int ret = ossl_config_int(conf_settings);

    config_inited = 1;
    return ret;
}
DEFINE_RUN_ONCE_STATIC_ALT(ossl_init_no_config, ossl_init_config)
{
    OSSL_TRACE(INIT, "ossl_no_config_int()\n");
    ossl_no_config_int();
    config_inited = 1;
    return 1;
}

static CRYPTO_ONCE async = CRYPTO_ONCE_STATIC_INIT;
static int async_inited = 0;
DEFINE_RUN_ONCE_STATIC(ossl_init_async)
{
    OSSL_TRACE(INIT, "async_init()\n");
    if (!async_init())
        return 0;
    async_inited = 1;
    return 1;
}

#ifndef OPENSSL_NO_ENGINE
static CRYPTO_ONCE engine_openssl = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_openssl)
{
    OSSL_TRACE(INIT, "engine_load_openssl_int()\n");
    engine_load_openssl_int();
    return 1;
}
# ifndef OPENSSL_NO_RDRAND
static CRYPTO_ONCE engine_rdrand = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_rdrand)
{
    OSSL_TRACE(INIT, "engine_load_rdrand_int()\n");
    engine_load_rdrand_int();
    return 1;
}
# endif
static CRYPTO_ONCE engine_dynamic = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_dynamic)
{
    OSSL_TRACE(INIT, "engine_load_dynamic_int()\n");
    engine_load_dynamic_int();
    return 1;
}
# ifndef OPENSSL_NO_STATIC_ENGINE
#  ifndef OPENSSL_NO_DEVCRYPTOENG
static CRYPTO_ONCE engine_devcrypto = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_devcrypto)
{
    OSSL_TRACE(INIT, "engine_load_devcrypto_int()\n");
    engine_load_devcrypto_int();
    return 1;
}
#  endif
#  if !defined(OPENSSL_NO_PADLOCKENG)
static CRYPTO_ONCE engine_padlock = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_padlock)
{
    OSSL_TRACE(INIT, "engine_load_padlock_int()\n");
    engine_load_padlock_int();
    return 1;
}
#  endif
#  if defined(OPENSSL_SYS_WIN32) &amp;&amp; !defined(OPENSSL_NO_CAPIENG)
static CRYPTO_ONCE engine_capi = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_capi)
{
    OSSL_TRACE(INIT, "engine_load_capi_int()\n");
    engine_load_capi_int();
    return 1;
}
#  endif
#  if !defined(OPENSSL_NO_AFALGENG)
static CRYPTO_ONCE engine_afalg = CRYPTO_ONCE_STATIC_INIT;
DEFINE_RUN_ONCE_STATIC(ossl_init_engine_afalg)
{
    OSSL_TRACE(INIT, "engine_load_afalg_int()\n");
    engine_load_afalg_int();
    return 1;
}
#  endif
# endif
#endif

void OPENSSL_cleanup(void)
{
    OPENSSL_INIT_STOP *currhandler, *lasthandler;

    /*
     * At some point we should consider looking at this function with a view to
     * moving most/all of this into onfree handlers in OSSL_LIB_CTX.
     */

    /* If we've not been inited then no need to deinit */
    if (!base_inited)
        return;

    /* Might be explicitly called and also by atexit */
    if (stopped)
        return;
    stopped = 1;

    /*
     * Thread stop may not get automatically called by the thread library for
     * the very last thread in some situations, so call it directly.
     */
    OPENSSL_thread_stop();

    currhandler = stop_handlers;
    while (currhandler != NULL) {
        currhandler-&gt;handler();
        lasthandler = currhandler;
        currhandler = currhandler-&gt;next;
        OPENSSL_free(lasthandler);
    }
    stop_handlers = NULL;

    CRYPTO_THREAD_lock_free(optsdone_lock);
    optsdone_lock = NULL;
    CRYPTO_THREAD_lock_free(init_lock);
    init_lock = NULL;

    CRYPTO_THREAD_cleanup_local(&amp;in_init_config_local);

    /*
     * We assume we are single-threaded for this function, i.e. no race
     * conditions for the various "*_inited" vars below.
     */

#ifndef OPENSSL_NO_COMP
    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_comp_zlib_cleanup()\n");
    ossl_comp_zlib_cleanup();
    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_comp_brotli_cleanup()\n");
    ossl_comp_brotli_cleanup();
    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_comp_zstd_cleanup()\n");
    ossl_comp_zstd_cleanup();
#endif

    if (async_inited) {
        OSSL_TRACE(INIT, "OPENSSL_cleanup: async_deinit()\n");
        async_deinit();
    }

    /*
     * Note that cleanup order is important:
     * - ossl_rand_cleanup_int could call an ENGINE's RAND cleanup function so
     * must be called before engine_cleanup_int()
     * - ENGINEs use CRYPTO_EX_DATA and therefore, must be cleaned up
     * before the ex data handlers are wiped during default ossl_lib_ctx deinit.
     * - ossl_config_modules_free() can end up in ENGINE code so must be called
     * before engine_cleanup_int()
     * - ENGINEs and additional EVP algorithms might use added OIDs names so
     * ossl_obj_cleanup_int() must be called last
     */
    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_rand_cleanup_int()\n");
    ossl_rand_cleanup_int();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_config_modules_free()\n");
    ossl_config_modules_free();

#ifndef OPENSSL_NO_ENGINE
    OSSL_TRACE(INIT, "OPENSSL_cleanup: engine_cleanup_int()\n");
    engine_cleanup_int();
#endif

#ifndef OPENSSL_NO_DEPRECATED_3_0
    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_store_cleanup_int()\n");
    ossl_store_cleanup_int();
#endif

    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_lib_ctx_default_deinit()\n");
    ossl_lib_ctx_default_deinit();

    ossl_cleanup_thread();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: bio_cleanup()\n");
    bio_cleanup();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: evp_cleanup_int()\n");
    evp_cleanup_int();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_obj_cleanup_int()\n");
    ossl_obj_cleanup_int();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: err_int()\n");
    err_cleanup();

    OSSL_TRACE(INIT, "OPENSSL_cleanup: CRYPTO_secure_malloc_done()\n");
    CRYPTO_secure_malloc_done();

#ifndef OPENSSL_NO_CMP
    OSSL_TRACE(INIT, "OPENSSL_cleanup: OSSL_CMP_log_close()\n");
    OSSL_CMP_log_close();
#endif

    OSSL_TRACE(INIT, "OPENSSL_cleanup: ossl_trace_cleanup()\n");
    ossl_trace_cleanup();

    base_inited = 0;
}

/*
 * If this function is called with a non NULL settings value then it must be
 * called prior to any threads making calls to any OpenSSL functions,
 * i.e. passing a non-null settings value is assumed to be single-threaded.
 */
int OPENSSL_init_crypto(uint64_t opts, const OPENSSL_INIT_SETTINGS *settings)
{
    uint64_t tmp;
    int aloaddone = 0;

   /* Applications depend on 0 being returned when cleanup was already done */
    if (stopped) {
        if (!(opts &amp; OPENSSL_INIT_BASE_ONLY))
            ERR_raise(ERR_LIB_CRYPTO, ERR_R_INIT_FAIL);
        return 0;
    }

    /*
     * We ignore failures from this function. It is probably because we are
     * on a platform that doesn't support lockless atomic loads (we may not
     * have created optsdone_lock yet so we can't use it). This is just an
     * optimisation to skip the full checks in this function if we don't need
     * to, so we carry on regardless in the event of failure.
     *
     * There could be a race here with other threads, so that optsdone has not
     * been updated yet, even though the options have in fact been initialised.
     * This doesn't matter - it just means we will run the full function
     * unnecessarily - but all the critical code is contained in RUN_ONCE
     * functions anyway so we are safe.
     */
    if (CRYPTO_atomic_load(&amp;optsdone, &amp;tmp, NULL)) {
        if ((tmp &amp; opts) == opts)
            return 1;
        aloaddone = 1;
    }

    /*
     * At some point we should look at this function with a view to moving
     * most/all of this into OSSL_LIB_CTX.
     *
     * When the caller specifies OPENSSL_INIT_BASE_ONLY, that should be the
     * *only* option specified.  With that option we return immediately after
     * doing the requested limited initialization.  Note that
     * err_shelve_state() called by us via ossl_init_load_crypto_nodelete()
     * re-enters OPENSSL_init_crypto() with OPENSSL_INIT_BASE_ONLY, but with
     * base already initialized this is a harmless NOOP.
     *
     * If we remain the only caller of err_shelve_state() the recursion should
     * perhaps be removed, but if in doubt, it can be left in place.
     */
    if (!RUN_ONCE(&amp;base, ossl_init_base))
        return 0;

    if (opts &amp; OPENSSL_INIT_BASE_ONLY)
        return 1;

    /*
     * optsdone_lock should definitely be set up now, so we can now repeat the
     * same check from above but be sure that it will work even on platforms
     * without lockless CRYPTO_atomic_load
     */
    if (!aloaddone) {
        if (!CRYPTO_atomic_load(&amp;optsdone, &amp;tmp, optsdone_lock))
            return 0;
        if ((tmp &amp; opts) == opts)
            return 1;
    }

    /*
     * Now we don't always set up exit handlers, the INIT_BASE_ONLY calls
     * should not have the side-effect of setting up exit handlers, and
     * therefore, this code block is below the INIT_BASE_ONLY-conditioned early
     * return above.
     */
    if ((opts &amp; OPENSSL_INIT_NO_ATEXIT) != 0) {
        if (!RUN_ONCE_ALT(&amp;register_atexit, ossl_init_no_register_atexit,
                          ossl_init_register_atexit))
            return 0;
    } else if (!RUN_ONCE(&amp;register_atexit, ossl_init_register_atexit)) {
        return 0;
    }

    if (!RUN_ONCE(&amp;load_crypto_nodelete, ossl_init_load_crypto_nodelete))
        return 0;

    if ((opts &amp; OPENSSL_INIT_NO_LOAD_CRYPTO_STRINGS)
            &amp;&amp; !RUN_ONCE_ALT(&amp;load_crypto_strings,
                             ossl_init_no_load_crypto_strings,
                             ossl_init_load_crypto_strings))
        return 0;

    if ((opts &amp; OPENSSL_INIT_LOAD_CRYPTO_STRINGS)
            &amp;&amp; !RUN_ONCE(&amp;load_crypto_strings, ossl_init_load_crypto_strings))
        return 0;

    if ((opts &amp; OPENSSL_INIT_NO_ADD_ALL_CIPHERS)
            &amp;&amp; !RUN_ONCE_ALT(&amp;add_all_ciphers, ossl_init_no_add_all_ciphers,
                             ossl_init_add_all_ciphers))
        return 0;

    if ((opts &amp; OPENSSL_INIT_ADD_ALL_CIPHERS)
            &amp;&amp; !RUN_ONCE(&amp;add_all_ciphers, ossl_init_add_all_ciphers))
        return 0;

    if ((opts &amp; OPENSSL_INIT_NO_ADD_ALL_DIGESTS)
            &amp;&amp; !RUN_ONCE_ALT(&amp;add_all_digests, ossl_init_no_add_all_digests,
                             ossl_init_add_all_digests))
        return 0;

    if ((opts &amp; OPENSSL_INIT_ADD_ALL_DIGESTS)
            &amp;&amp; !RUN_ONCE(&amp;add_all_digests, ossl_init_add_all_digests))
        return 0;

    if ((opts &amp; OPENSSL_INIT_ATFORK)
            &amp;&amp; !openssl_init_fork_handlers())
        return 0;

    if ((opts &amp; OPENSSL_INIT_NO_LOAD_CONFIG)
            &amp;&amp; !RUN_ONCE_ALT(&amp;config, ossl_init_no_config, ossl_init_config))
        return 0;

    if (opts &amp; OPENSSL_INIT_LOAD_CONFIG) {
        int loading = CRYPTO_THREAD_get_local(&amp;in_init_config_local) != NULL;

        /* If called recursively from OBJ_ calls, just skip it. */
        if (!loading) {
            int ret;

            if (!CRYPTO_THREAD_set_local(&amp;in_init_config_local, (void *)-1))
                return 0;
            if (settings == NULL) {
                ret = RUN_ONCE(&amp;config, ossl_init_config);
            } else {
                if (!CRYPTO_THREAD_write_lock(init_lock))
                    return 0;
                conf_settings = settings;
                ret = RUN_ONCE_ALT(&amp;config, ossl_init_config_settings,
                                   ossl_init_config);
                conf_settings = NULL;
                CRYPTO_THREAD_unlock(init_lock);
            }

            if (ret &lt;= 0)
                return 0;
        }
    }

    if ((opts &amp; OPENSSL_INIT_ASYNC)
            &amp;&amp; !RUN_ONCE(&amp;async, ossl_init_async))
        return 0;

#ifndef OPENSSL_NO_ENGINE
    if ((opts &amp; OPENSSL_INIT_ENGINE_OPENSSL)
            &amp;&amp; !RUN_ONCE(&amp;engine_openssl, ossl_init_engine_openssl))
        return 0;
# ifndef OPENSSL_NO_RDRAND
    if ((opts &amp; OPENSSL_INIT_ENGINE_RDRAND)
            &amp;&amp; !RUN_ONCE(&amp;engine_rdrand, ossl_init_engine_rdrand))
        return 0;
# endif
    if ((opts &amp; OPENSSL_INIT_ENGINE_DYNAMIC)
            &amp;&amp; !RUN_ONCE(&amp;engine_dynamic, ossl_init_engine_dynamic))
        return 0;
# ifndef OPENSSL_NO_STATIC_ENGINE
#  ifndef OPENSSL_NO_DEVCRYPTOENG
    if ((opts &amp; OPENSSL_INIT_ENGINE_CRYPTODEV)
            &amp;&amp; !RUN_ONCE(&amp;engine_devcrypto, ossl_init_engine_devcrypto))
        return 0;
#  endif
#  if !defined(OPENSSL_NO_PADLOCKENG)
    if ((opts &amp; OPENSSL_INIT_ENGINE_PADLOCK)
            &amp;&amp; !RUN_ONCE(&amp;engine_padlock, ossl_init_engine_padlock))
        return 0;
#  endif
#  if defined(OPENSSL_SYS_WIN32) &amp;&amp; !defined(OPENSSL_NO_CAPIENG)
    if ((opts &amp; OPENSSL_INIT_ENGINE_CAPI)
            &amp;&amp; !RUN_ONCE(&amp;engine_capi, ossl_init_engine_capi))
        return 0;
#  endif
#  if !defined(OPENSSL_NO_AFALGENG)
    if ((opts &amp; OPENSSL_INIT_ENGINE_AFALG)
            &amp;&amp; !RUN_ONCE(&amp;engine_afalg, ossl_init_engine_afalg))
        return 0;
#  endif
# endif
    if (opts &amp; (OPENSSL_INIT_ENGINE_ALL_BUILTIN
                | OPENSSL_INIT_ENGINE_OPENSSL
                | OPENSSL_INIT_ENGINE_AFALG)) {
        ENGINE_register_all_complete();
    }
#endif

    if (!CRYPTO_atomic_or(&amp;optsdone, opts, &amp;tmp, optsdone_lock))
        return 0;

    return 1;
}

int OPENSSL_atexit(void (*handler)(void))
{
    OPENSSL_INIT_STOP *newhand;

#if !defined(OPENSSL_USE_NODELETE)\
    &amp;&amp; !defined(OPENSSL_NO_PINSHARED)
    {
# if defined(DSO_WIN32) &amp;&amp; !defined(_WIN32_WCE)
        HMODULE handle = NULL;
        BOOL ret;
        union {
            void *sym;
            void (*func)(void);
        } handlersym;

        handlersym.func = handler;

        /*
         * We don't use the DSO route for WIN32 because there is a better
         * way
         */
        ret = GetModuleHandleEx(GET_MODULE_HANDLE_EX_FLAG_FROM_ADDRESS
                                | GET_MODULE_HANDLE_EX_FLAG_PIN,
                                handlersym.sym, &amp;handle);

        if (!ret)
            return 0;
# elif !defined(DSO_NONE)
        /*
         * Deliberately leak a reference to the handler. This will force the
         * library/code containing the handler to remain loaded until we run the
         * atexit handler. If -znodelete has been used then this is
         * unnecessary.
         */
        DSO *dso = NULL;
        union {
            void *sym;
            void (*func)(void);
        } handlersym;

        handlersym.func = handler;

        ERR_set_mark();
        dso = DSO_dsobyaddr(handlersym.sym, DSO_FLAG_NO_UNLOAD_ON_FREE);
        /* See same code above in ossl_init_base() for an explanation. */
        OSSL_TRACE1(INIT,
                   "atexit: obtained DSO reference? %s\n",
                   (dso == NULL ? "No!" : "Yes."));
        DSO_free(dso);
        ERR_pop_to_mark();
# endif
    }
#endif

    if ((newhand = OPENSSL_malloc(sizeof(*newhand))) == NULL)
        return 0;

    newhand-&gt;handler = handler;
    newhand-&gt;next = stop_handlers;
    stop_handlers = newhand;

    return 1;
}

</file>
  <file fpath="/out/src/openssl/crypto/initthread.c">/*
 * Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include &lt;openssl/crypto.h&gt;
#include &lt;openssl/core_dispatch.h&gt;
#include "crypto/cryptlib.h"
#include "prov/providercommon.h"
#include "internal/thread_once.h"
#include "crypto/context.h"

#ifdef FIPS_MODULE
#include "prov/provider_ctx.h"

/*
 * Thread aware code may want to be told about thread stop events. We register
 * to hear about those thread stop events when we see a new thread has started.
 * We call the ossl_init_thread_start function to do that. In the FIPS provider
 * we have our own copy of ossl_init_thread_start, which cascades notifications
 * about threads stopping from libcrypto to all the code in the FIPS provider
 * that needs to know about it.
 *
 * The FIPS provider tells libcrypto about which threads it is interested in
 * by calling "c_thread_start" which is a function pointer created during
 * provider initialisation (i.e. OSSL_provider_init).
 */
extern OSSL_FUNC_core_thread_start_fn *c_thread_start;
#endif

typedef struct thread_event_handler_st THREAD_EVENT_HANDLER;
struct thread_event_handler_st {
#ifndef FIPS_MODULE
    const void *index;
#endif
    void *arg;
    OSSL_thread_stop_handler_fn handfn;
    THREAD_EVENT_HANDLER *next;
};

#ifndef FIPS_MODULE
DEFINE_SPECIAL_STACK_OF(THREAD_EVENT_HANDLER_PTR, THREAD_EVENT_HANDLER *)

typedef struct global_tevent_register_st GLOBAL_TEVENT_REGISTER;
struct global_tevent_register_st {
    STACK_OF(THREAD_EVENT_HANDLER_PTR) *skhands;
    CRYPTO_RWLOCK *lock;
};

static GLOBAL_TEVENT_REGISTER *glob_tevent_reg = NULL;

static CRYPTO_ONCE tevent_register_runonce = CRYPTO_ONCE_STATIC_INIT;

DEFINE_RUN_ONCE_STATIC(create_global_tevent_register)
{
    glob_tevent_reg = OPENSSL_zalloc(sizeof(*glob_tevent_reg));
    if (glob_tevent_reg == NULL)
        return 0;

    glob_tevent_reg-&gt;skhands = sk_THREAD_EVENT_HANDLER_PTR_new_null();
    glob_tevent_reg-&gt;lock = CRYPTO_THREAD_lock_new();
    if (glob_tevent_reg-&gt;skhands == NULL || glob_tevent_reg-&gt;lock == NULL) {
        sk_THREAD_EVENT_HANDLER_PTR_free(glob_tevent_reg-&gt;skhands);
        CRYPTO_THREAD_lock_free(glob_tevent_reg-&gt;lock);
        OPENSSL_free(glob_tevent_reg);
        glob_tevent_reg = NULL;
        return 0;
    }

    return 1;
}

static GLOBAL_TEVENT_REGISTER *get_global_tevent_register(void)
{
    if (!RUN_ONCE(&amp;tevent_register_runonce, create_global_tevent_register))
        return NULL;
    return glob_tevent_reg;
}
#endif

#ifndef FIPS_MODULE
static int  init_thread_push_handlers(THREAD_EVENT_HANDLER **hands);
static void init_thread_remove_handlers(THREAD_EVENT_HANDLER **handsin);
static void init_thread_destructor(void *hands);
static int  init_thread_deregister(void *arg, int all);
#endif
static void init_thread_stop(void *arg, THREAD_EVENT_HANDLER **hands);

static THREAD_EVENT_HANDLER **
init_get_thread_local(CRYPTO_THREAD_LOCAL *local, int alloc, int keep)
{
    THREAD_EVENT_HANDLER **hands = CRYPTO_THREAD_get_local(local);

    if (alloc) {
        if (hands == NULL) {

            if ((hands = OPENSSL_zalloc(sizeof(*hands))) == NULL)
                return NULL;

            if (!CRYPTO_THREAD_set_local(local, hands)) {
                OPENSSL_free(hands);
                return NULL;
            }

#ifndef FIPS_MODULE
            if (!init_thread_push_handlers(hands)) {
                CRYPTO_THREAD_set_local(local, NULL);
                OPENSSL_free(hands);
                return NULL;
            }
#endif
        }
    } else if (!keep) {
        CRYPTO_THREAD_set_local(local, NULL);
    }

    return hands;
}

#ifndef FIPS_MODULE
/*
 * Since per-thread-specific-data destructors are not universally
 * available, i.e. not on Windows, only below CRYPTO_THREAD_LOCAL key
 * is assumed to have destructor associated. And then an effort is made
 * to call this single destructor on non-pthread platform[s].
 *
 * Initial value is "impossible". It is used as guard value to shortcut
 * destructor for threads terminating before libcrypto is initialized or
 * after it's de-initialized. Access to the key doesn't have to be
 * serialized for the said threads, because they didn't use libcrypto
 * and it doesn't matter if they pick "impossible" or dereference real
 * key value and pull NULL past initialization in the first thread that
 * intends to use libcrypto.
 */
static union {
    long sane;
    CRYPTO_THREAD_LOCAL value;
} destructor_key = { -1 };

/*
 * The thread event handler list is a thread specific linked list
 * of callback functions which are invoked in list order by the
 * current thread in case of certain events. (Currently, there is
 * only one type of event, the 'thread stop' event.)
 *
 * We also keep a global reference to that linked list, so that we
 * can deregister handlers if necessary before all the threads are
 * stopped.
 */
static int init_thread_push_handlers(THREAD_EVENT_HANDLER **hands)
{
    int ret;
    GLOBAL_TEVENT_REGISTER *gtr;

    gtr = get_global_tevent_register();
    if (gtr == NULL)
        return 0;

    if (!CRYPTO_THREAD_write_lock(gtr-&gt;lock))
        return 0;
    ret = (sk_THREAD_EVENT_HANDLER_PTR_push(gtr-&gt;skhands, hands) != 0);
    CRYPTO_THREAD_unlock(gtr-&gt;lock);

    return ret;
}

static void init_thread_remove_handlers(THREAD_EVENT_HANDLER **handsin)
{
    GLOBAL_TEVENT_REGISTER *gtr;
    int i;

    gtr = get_global_tevent_register();
    if (gtr == NULL)
        return;
    if (!CRYPTO_THREAD_write_lock(gtr-&gt;lock))
        return;
    for (i = 0; i &lt; sk_THREAD_EVENT_HANDLER_PTR_num(gtr-&gt;skhands); i++) {
        THREAD_EVENT_HANDLER **hands
            = sk_THREAD_EVENT_HANDLER_PTR_value(gtr-&gt;skhands, i);

        if (hands == handsin) {
            sk_THREAD_EVENT_HANDLER_PTR_delete(gtr-&gt;skhands, i);
            CRYPTO_THREAD_unlock(gtr-&gt;lock);
            return;
        }
    }
    CRYPTO_THREAD_unlock(gtr-&gt;lock);
    return;
}

static void init_thread_destructor(void *hands)
{
    init_thread_stop(NULL, (THREAD_EVENT_HANDLER **)hands);
    init_thread_remove_handlers(hands);
    OPENSSL_free(hands);
}

int ossl_init_thread(void)
{
    if (!CRYPTO_THREAD_init_local(&amp;destructor_key.value,
                                  init_thread_destructor))
        return 0;

    return 1;
}

void ossl_cleanup_thread(void)
{
    init_thread_deregister(NULL, 1);
    CRYPTO_THREAD_cleanup_local(&amp;destructor_key.value);
    destructor_key.sane = -1;
}

void OPENSSL_thread_stop_ex(OSSL_LIB_CTX *ctx)
{
    ctx = ossl_lib_ctx_get_concrete(ctx);
    /*
     * It would be nice if we could figure out a way to do this on all threads
     * that have used the OSSL_LIB_CTX when the context is freed. This is
     * currently not possible due to the use of thread local variables.
     */
    ossl_ctx_thread_stop(ctx);
}

void OPENSSL_thread_stop(void)
{
    if (destructor_key.sane != -1) {
        THREAD_EVENT_HANDLER **hands
            = init_get_thread_local(&amp;destructor_key.value, 0, 0);
        init_thread_stop(NULL, hands);

        init_thread_remove_handlers(hands);
        OPENSSL_free(hands);
    }
}

void ossl_ctx_thread_stop(OSSL_LIB_CTX *ctx)
{
    if (destructor_key.sane != -1) {
        THREAD_EVENT_HANDLER **hands
            = init_get_thread_local(&amp;destructor_key.value, 0, 1);
        init_thread_stop(ctx, hands);
    }
}

#else

static void ossl_arg_thread_stop(void *arg);

/* Register the current thread so that we are informed if it gets stopped */
int ossl_thread_register_fips(OSSL_LIB_CTX *libctx)
{
    return c_thread_start(FIPS_get_core_handle(libctx), ossl_arg_thread_stop,
                          libctx);
}

void *ossl_thread_event_ctx_new(OSSL_LIB_CTX *libctx)
{
    THREAD_EVENT_HANDLER **hands = NULL;
    CRYPTO_THREAD_LOCAL *tlocal = OPENSSL_zalloc(sizeof(*tlocal));

    if (tlocal == NULL)
        return NULL;

    if (!CRYPTO_THREAD_init_local(tlocal, NULL)) {
        goto err;
    }

    hands = OPENSSL_zalloc(sizeof(*hands));
    if (hands == NULL)
        goto err;

    if (!CRYPTO_THREAD_set_local(tlocal, hands))
        goto err;

    /*
     * We should ideally call ossl_thread_register_fips() here. This function
     * is called during the startup of the FIPS provider and we need to ensure
     * that the main thread is registered to receive thread callbacks in order
     * to free |hands| that we allocated above. However we are too early in
     * the FIPS provider initialisation that FIPS_get_core_handle() doesn't work
     * yet. So we defer this to the main provider OSSL_provider_init_int()
     * function.
     */

    return tlocal;
 err:
    OPENSSL_free(hands);
    OPENSSL_free(tlocal);
    return NULL;
}

void ossl_thread_event_ctx_free(void *tlocal)
{
    OPENSSL_free(tlocal);
}

static void ossl_arg_thread_stop(void *arg)
{
    ossl_ctx_thread_stop((OSSL_LIB_CTX *)arg);
}

void ossl_ctx_thread_stop(OSSL_LIB_CTX *ctx)
{
    THREAD_EVENT_HANDLER **hands;
    CRYPTO_THREAD_LOCAL *local
        = ossl_lib_ctx_get_data(ctx, OSSL_LIB_CTX_THREAD_EVENT_HANDLER_INDEX);

    if (local == NULL)
        return;
    hands = init_get_thread_local(local, 0, 0);
    init_thread_stop(ctx, hands);
    OPENSSL_free(hands);
}
#endif /* FIPS_MODULE */


static void init_thread_stop(void *arg, THREAD_EVENT_HANDLER **hands)
{
    THREAD_EVENT_HANDLER *curr, *prev = NULL, *tmp;
#ifndef FIPS_MODULE
    GLOBAL_TEVENT_REGISTER *gtr;
#endif

    /* Can't do much about this */
    if (hands == NULL)
        return;

#ifndef FIPS_MODULE
    gtr = get_global_tevent_register();
    if (gtr == NULL)
        return;

    if (!CRYPTO_THREAD_write_lock(gtr-&gt;lock))
        return;
#endif

    curr = *hands;
    while (curr != NULL) {
        if (arg != NULL &amp;&amp; curr-&gt;arg != arg) {
            prev = curr;
            curr = curr-&gt;next;
            continue;
        }
        curr-&gt;handfn(curr-&gt;arg);
        if (prev == NULL)
            *hands = curr-&gt;next;
        else
            prev-&gt;next = curr-&gt;next;

        tmp = curr;
        curr = curr-&gt;next;

        OPENSSL_free(tmp);
    }
#ifndef FIPS_MODULE
    CRYPTO_THREAD_unlock(gtr-&gt;lock);
#endif
}

int ossl_init_thread_start(const void *index, void *arg,
                           OSSL_thread_stop_handler_fn handfn)
{
    THREAD_EVENT_HANDLER **hands;
    THREAD_EVENT_HANDLER *hand;
#ifdef FIPS_MODULE
    OSSL_LIB_CTX *ctx = arg;

    /*
     * In FIPS mode the list of THREAD_EVENT_HANDLERs is unique per combination
     * of OSSL_LIB_CTX and thread. This is because in FIPS mode each
     * OSSL_LIB_CTX gets informed about thread stop events individually.
     */
    CRYPTO_THREAD_LOCAL *local
        = ossl_lib_ctx_get_data(ctx, OSSL_LIB_CTX_THREAD_EVENT_HANDLER_INDEX);
#else
    /*
     * Outside of FIPS mode the list of THREAD_EVENT_HANDLERs is unique per
     * thread, but may hold multiple OSSL_LIB_CTXs. We only get told about
     * thread stop events globally, so we have to ensure all affected
     * OSSL_LIB_CTXs are informed.
     */
    CRYPTO_THREAD_LOCAL *local = &amp;destructor_key.value;
#endif

    hands = init_get_thread_local(local, 1, 0);
    if (hands == NULL)
        return 0;

#ifdef FIPS_MODULE
    if (*hands == NULL) {
        /*
         * We've not yet registered any handlers for this thread. We need to get
         * libcrypto to tell us about later thread stop events. c_thread_start
         * is a callback to libcrypto defined in fipsprov.c
         */
        if (!ossl_thread_register_fips(ctx))
            return 0;
    }
#endif

    hand = OPENSSL_malloc(sizeof(*hand));
    if (hand == NULL)
        return 0;

    hand-&gt;handfn = handfn;
    hand-&gt;arg = arg;
#ifndef FIPS_MODULE
    hand-&gt;index = index;
#endif
    hand-&gt;next = *hands;
    *hands = hand;

    return 1;
}

#ifndef FIPS_MODULE
static int init_thread_deregister(void *index, int all)
{
    GLOBAL_TEVENT_REGISTER *gtr;
    int i;

    gtr = get_global_tevent_register();
    if (gtr == NULL)
        return 0;
    if (!all) {
        if (!CRYPTO_THREAD_write_lock(gtr-&gt;lock))
            return 0;
    } else {
        glob_tevent_reg = NULL;
    }
    for (i = 0; i &lt; sk_THREAD_EVENT_HANDLER_PTR_num(gtr-&gt;skhands); i++) {
        THREAD_EVENT_HANDLER **hands
            = sk_THREAD_EVENT_HANDLER_PTR_value(gtr-&gt;skhands, i);
        THREAD_EVENT_HANDLER *curr = NULL, *prev = NULL, *tmp;

        if (hands == NULL) {
            if (!all)
                CRYPTO_THREAD_unlock(gtr-&gt;lock);
            return 0;
        }
        curr = *hands;
        while (curr != NULL) {
            if (all || curr-&gt;index == index) {
                if (prev != NULL)
                    prev-&gt;next = curr-&gt;next;
                else
                    *hands = curr-&gt;next;
                tmp = curr;
                curr = curr-&gt;next;
                OPENSSL_free(tmp);
                continue;
            }
            prev = curr;
            curr = curr-&gt;next;
        }
        if (all)
            OPENSSL_free(hands);
    }
    if (all) {
        CRYPTO_THREAD_lock_free(gtr-&gt;lock);
        sk_THREAD_EVENT_HANDLER_PTR_free(gtr-&gt;skhands);
        OPENSSL_free(gtr);
    } else {
        CRYPTO_THREAD_unlock(gtr-&gt;lock);
    }
    return 1;
}

int ossl_init_thread_deregister(void *index)
{
    return init_thread_deregister(index, 0);
}
#endif
</file>
  <file fpath="/out/src/openssl/crypto/mem.c">/*
 * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "internal/e_os.h"
#include "internal/cryptlib.h"
#include "crypto/cryptlib.h"
#include &lt;stdio.h&gt;
#include &lt;stdlib.h&gt;
#include &lt;limits.h&gt;
#include &lt;openssl/crypto.h&gt;

/*
 * the following pointers may be changed as long as 'allow_customize' is set
 */
static int allow_customize = 1;
static CRYPTO_malloc_fn malloc_impl = CRYPTO_malloc;
static CRYPTO_realloc_fn realloc_impl = CRYPTO_realloc;
static CRYPTO_free_fn free_impl = CRYPTO_free;

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) &amp;&amp; !defined(FIPS_MODULE)
# include "internal/tsan_assist.h"

# ifdef TSAN_REQUIRES_LOCKING
#  define INCREMENT(x) /* empty */
#  define LOAD(x) 0
# else  /* TSAN_REQUIRES_LOCKING */
static TSAN_QUALIFIER int malloc_count;
static TSAN_QUALIFIER int realloc_count;
static TSAN_QUALIFIER int free_count;

#  define INCREMENT(x) tsan_counter(&amp;(x))
#  define LOAD(x)      tsan_load(&amp;x)
# endif /* TSAN_REQUIRES_LOCKING */

static char *md_failstring;
static long md_count;
static int md_fail_percent = 0;
static int md_tracefd = -1;

static void parseit(void);
static int shouldfail(void);

# define FAILTEST() if (shouldfail()) return NULL

#else

# define INCREMENT(x) /* empty */
# define FAILTEST() /* empty */
#endif

int CRYPTO_set_mem_functions(CRYPTO_malloc_fn malloc_fn,
                             CRYPTO_realloc_fn realloc_fn,
                             CRYPTO_free_fn free_fn)
{
    if (!allow_customize)
        return 0;
    if (malloc_fn != NULL)
        malloc_impl = malloc_fn;
    if (realloc_fn != NULL)
        realloc_impl = realloc_fn;
    if (free_fn != NULL)
        free_impl = free_fn;
    return 1;
}

void CRYPTO_get_mem_functions(CRYPTO_malloc_fn *malloc_fn,
                              CRYPTO_realloc_fn *realloc_fn,
                              CRYPTO_free_fn *free_fn)
{
    if (malloc_fn != NULL)
        *malloc_fn = malloc_impl;
    if (realloc_fn != NULL)
        *realloc_fn = realloc_impl;
    if (free_fn != NULL)
        *free_fn = free_impl;
}

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) &amp;&amp; !defined(FIPS_MODULE)
void CRYPTO_get_alloc_counts(int *mcount, int *rcount, int *fcount)
{
    if (mcount != NULL)
        *mcount = LOAD(malloc_count);
    if (rcount != NULL)
        *rcount = LOAD(realloc_count);
    if (fcount != NULL)
        *fcount = LOAD(free_count);
}

/*
 * Parse a "malloc failure spec" string.  This likes like a set of fields
 * separated by semicolons.  Each field has a count and an optional failure
 * percentage.  For example:
 *          100@0;100@25;0@0
 *    or    100;100@25;0
 * This means 100 mallocs succeed, then next 100 fail 25% of the time, and
 * all remaining (count is zero) succeed.
 * The failure percentge can have 2 digits after the comma.  For example:
 *          0@0.01
 * This means 0.01% of all allocations will fail.
 */
static void parseit(void)
{
    char *semi = strchr(md_failstring, ';');
    char *atsign;

    if (semi != NULL)
        *semi++ = '\0';

    /* Get the count (atol will stop at the @ if there), and percentage */
    md_count = atol(md_failstring);
    atsign = strchr(md_failstring, '@');
    md_fail_percent = atsign == NULL ? 0 : (int)(atof(atsign + 1) * 100 + 0.5);

    if (semi != NULL)
        md_failstring = semi;
}

/*
 * Windows doesn't have random() and srandom(), but it has rand() and srand().
 * Some rand() implementations aren't good, but we're not
 * dealing with secure randomness here.
 */
# ifdef _WIN32
#  define random() rand()
#  define srandom(seed) srand(seed)
# endif
/*
 * See if the current malloc should fail.
 */
static int shouldfail(void)
{
    int roll = (int)(random() % 10000);
    int shoulditfail = roll &lt; md_fail_percent;
# ifndef _WIN32
/* suppressed on Windows as POSIX-like file descriptors are non-inheritable */
    int len;
    char buff[80];

    if (md_tracefd &gt; 0) {
        BIO_snprintf(buff, sizeof(buff),
                     "%c C%ld %%%d R%d\n",
                     shoulditfail ? '-' : '+', md_count, md_fail_percent, roll);
        len = strlen(buff);
        if (write(md_tracefd, buff, len) != len)
            perror("shouldfail write failed");
    }
# endif

    if (md_count) {
        /* If we used up this one, go to the next. */
        if (--md_count == 0)
            parseit();
    }

    return shoulditfail;
}

void ossl_malloc_setup_failures(void)
{
    const char *cp = getenv("OPENSSL_MALLOC_FAILURES");

    if (cp != NULL &amp;&amp; (md_failstring = strdup(cp)) != NULL)
        parseit();
    if ((cp = getenv("OPENSSL_MALLOC_FD")) != NULL)
        md_tracefd = atoi(cp);
    if ((cp = getenv("OPENSSL_MALLOC_SEED")) != NULL)
        srandom(atoi(cp));
}
#endif

void *CRYPTO_malloc(size_t num, const char *file, int line)
{
    void *ptr;

    INCREMENT(malloc_count);
    if (malloc_impl != CRYPTO_malloc) {
        ptr = malloc_impl(num, file, line);
        if (ptr != NULL || num == 0)
            return ptr;
        goto err;
    }

    if (num == 0)
        return NULL;

    FAILTEST();
    if (allow_customize) {
        /*
         * Disallow customization after the first allocation. We only set this
         * if necessary to avoid a store to the same cache line on every
         * allocation.
         */
        allow_customize = 0;
    }

    ptr = malloc(num);
    if (ptr != NULL)
        return ptr;
 err:
    /*
     * ossl_err_get_state_int() in err.c uses CRYPTO_zalloc(num, NULL, 0) for
     * ERR_STATE allocation. Prevent mem alloc error loop while reporting error.
     */
    if (file != NULL || line != 0) {
        ERR_new();
        ERR_set_debug(file, line, NULL);
        ERR_set_error(ERR_LIB_CRYPTO, ERR_R_MALLOC_FAILURE, NULL);
    }
    return NULL;
}

void *CRYPTO_zalloc(size_t num, const char *file, int line)
{
    void *ret;

    ret = CRYPTO_malloc(num, file, line);
    if (ret != NULL)
        memset(ret, 0, num);

    return ret;
}

void *CRYPTO_realloc(void *str, size_t num, const char *file, int line)
{
    INCREMENT(realloc_count);
    if (realloc_impl != CRYPTO_realloc)
        return realloc_impl(str, num, file, line);

    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_free(str, file, line);
        return NULL;
    }

    FAILTEST();
    return realloc(str, num);
}

void *CRYPTO_clear_realloc(void *str, size_t old_len, size_t num,
                           const char *file, int line)
{
    void *ret = NULL;

    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_clear_free(str, old_len, file, line);
        return NULL;
    }

    /* Can't shrink the buffer since memcpy below copies |old_len| bytes. */
    if (num &lt; old_len) {
        OPENSSL_cleanse((char*)str + num, old_len - num);
        return str;
    }

    ret = CRYPTO_malloc(num, file, line);
    if (ret != NULL) {
        memcpy(ret, str, old_len);
        CRYPTO_clear_free(str, old_len, file, line);
    }
    return ret;
}

void CRYPTO_free(void *str, const char *file, int line)
{
    INCREMENT(free_count);
    if (free_impl != CRYPTO_free) {
        free_impl(str, file, line);
        return;
    }

    free(str);
}

void CRYPTO_clear_free(void *str, size_t num, const char *file, int line)
{
    if (str == NULL)
        return;
    if (num)
        OPENSSL_cleanse(str, num);
    CRYPTO_free(str, file, line);
}

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG)

# ifndef OPENSSL_NO_DEPRECATED_3_0
int CRYPTO_mem_ctrl(int mode)
{
    (void)mode;
    return -1;
}

int CRYPTO_set_mem_debug(int flag)
{
    (void)flag;
    return -1;
}

int CRYPTO_mem_debug_push(const char *info, const char *file, int line)
{
    (void)info; (void)file; (void)line;
    return 0;
}

int CRYPTO_mem_debug_pop(void)
{
    return 0;
}

void CRYPTO_mem_debug_malloc(void *addr, size_t num, int flag,
                             const char *file, int line)
{
    (void)addr; (void)num; (void)flag; (void)file; (void)line;
}

void CRYPTO_mem_debug_realloc(void *addr1, void *addr2, size_t num, int flag,
                              const char *file, int line)
{
    (void)addr1; (void)addr2; (void)num; (void)flag; (void)file; (void)line;
}

void CRYPTO_mem_debug_free(void *addr, int flag,
                           const char *file, int line)
{
    (void)addr; (void)flag; (void)file; (void)line;
}

int CRYPTO_mem_leaks(BIO *b)
{
    (void)b;
    return -1;
}

#  ifndef OPENSSL_NO_STDIO
int CRYPTO_mem_leaks_fp(FILE *fp)
{
    (void)fp;
    return -1;
}
#  endif

int CRYPTO_mem_leaks_cb(int (*cb)(const char *str, size_t len, void *u),
                        void *u)
{
    (void)cb; (void)u;
    return -1;
}

# endif

#endif
</file>
  <file fpath="/out/src/openssl/crypto/property/property.c">/*
 * Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
 * Copyright (c) 2019, Oracle and/or its affiliates.  All rights reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include &lt;string.h&gt;
#include &lt;stdio.h&gt;
#include &lt;stdarg.h&gt;
#include &lt;openssl/crypto.h&gt;
#include "internal/core.h"
#include "internal/property.h"
#include "internal/provider.h"
#include "internal/tsan_assist.h"
#include "crypto/ctype.h"
#include &lt;openssl/lhash.h&gt;
#include &lt;openssl/rand.h&gt;
#include "internal/thread_once.h"
#include "crypto/lhash.h"
#include "crypto/sparse_array.h"
#include "property_local.h"
#include "crypto/context.h"

/*
 * The number of elements in the query cache before we initiate a flush.
 * If reducing this, also ensure the stochastic test in test/property_test.c
 * isn't likely to fail.
 */
#define IMPL_CACHE_FLUSH_THRESHOLD  500

typedef struct {
    void *method;
    int (*up_ref)(void *);
    void (*free)(void *);
} METHOD;

typedef struct {
    const OSSL_PROVIDER *provider;
    OSSL_PROPERTY_LIST *properties;
    METHOD method;
} IMPLEMENTATION;

DEFINE_STACK_OF(IMPLEMENTATION)

typedef struct {
    const OSSL_PROVIDER *provider;
    const char *query;
    METHOD method;
    char body[1];
} QUERY;

DEFINE_LHASH_OF_EX(QUERY);

typedef struct {
    int nid;
    STACK_OF(IMPLEMENTATION) *impls;
    LHASH_OF(QUERY) *cache;
} ALGORITHM;

struct ossl_method_store_st {
    OSSL_LIB_CTX *ctx;
    SPARSE_ARRAY_OF(ALGORITHM) *algs;
    /*
     * Lock to protect the |algs| array from concurrent writing, when
     * individual implementations or queries are inserted.  This is used
     * by the appropriate functions here.
     */
    CRYPTO_RWLOCK *lock;
    /*
     * Lock to reserve the whole store.  This is used when fetching a set
     * of algorithms, via these functions, found in crypto/core_fetch.c:
     * ossl_method_construct_reserve_store()
     * ossl_method_construct_unreserve_store()
     */
    CRYPTO_RWLOCK *biglock;

    /* query cache specific values */

    /* Count of the query cache entries for all algs */
    size_t cache_nelem;

    /* Flag: 1 if query cache entries for all algs need flushing */
    int cache_need_flush;
};

typedef struct {
    LHASH_OF(QUERY) *cache;
    size_t nelem;
    uint32_t seed;
    unsigned char using_global_seed;
} IMPL_CACHE_FLUSH;

DEFINE_SPARSE_ARRAY_OF(ALGORITHM);

typedef struct ossl_global_properties_st {
    OSSL_PROPERTY_LIST *list;
#ifndef FIPS_MODULE
    unsigned int no_mirrored : 1;
#endif
} OSSL_GLOBAL_PROPERTIES;

static void ossl_method_cache_flush_alg(OSSL_METHOD_STORE *store,
                                        ALGORITHM *alg);
static void ossl_method_cache_flush(OSSL_METHOD_STORE *store, int nid);

/* Global properties are stored per library context */
void ossl_ctx_global_properties_free(void *vglobp)
{
    OSSL_GLOBAL_PROPERTIES *globp = vglobp;

    if (globp != NULL) {
        ossl_property_free(globp-&gt;list);
        OPENSSL_free(globp);
    }
}

void *ossl_ctx_global_properties_new(OSSL_LIB_CTX *ctx)
{
    return OPENSSL_zalloc(sizeof(OSSL_GLOBAL_PROPERTIES));
}

OSSL_PROPERTY_LIST **ossl_ctx_global_properties(OSSL_LIB_CTX *libctx,
                                                ossl_unused int loadconfig)
{
    OSSL_GLOBAL_PROPERTIES *globp;

#if !defined(FIPS_MODULE) &amp;&amp; !defined(OPENSSL_NO_AUTOLOAD_CONFIG)
    if (loadconfig &amp;&amp; !OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL))
        return NULL;
#endif
    globp = ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_GLOBAL_PROPERTIES);

    return globp != NULL ? &amp;globp-&gt;list : NULL;
}

#ifndef FIPS_MODULE
int ossl_global_properties_no_mirrored(OSSL_LIB_CTX *libctx)
{
    OSSL_GLOBAL_PROPERTIES *globp
        = ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_GLOBAL_PROPERTIES);

    return globp != NULL &amp;&amp; globp-&gt;no_mirrored ? 1 : 0;
}

void ossl_global_properties_stop_mirroring(OSSL_LIB_CTX *libctx)
{
    OSSL_GLOBAL_PROPERTIES *globp
        = ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_GLOBAL_PROPERTIES);

    if (globp != NULL)
        globp-&gt;no_mirrored = 1;
}
#endif

static int ossl_method_up_ref(METHOD *method)
{
    return (*method-&gt;up_ref)(method-&gt;method);
}

static void ossl_method_free(METHOD *method)
{
    (*method-&gt;free)(method-&gt;method);
}

static __owur int ossl_property_read_lock(OSSL_METHOD_STORE *p)
{
    return p != NULL ? CRYPTO_THREAD_read_lock(p-&gt;lock) : 0;
}

static __owur int ossl_property_write_lock(OSSL_METHOD_STORE *p)
{
    return p != NULL ? CRYPTO_THREAD_write_lock(p-&gt;lock) : 0;
}

static int ossl_property_unlock(OSSL_METHOD_STORE *p)
{
    return p != 0 ? CRYPTO_THREAD_unlock(p-&gt;lock) : 0;
}

static unsigned long query_hash(const QUERY *a)
{
    return OPENSSL_LH_strhash(a-&gt;query);
}

static int query_cmp(const QUERY *a, const QUERY *b)
{
    int res = strcmp(a-&gt;query, b-&gt;query);

    if (res == 0 &amp;&amp; a-&gt;provider != NULL &amp;&amp; b-&gt;provider != NULL)
        res = b-&gt;provider &gt; a-&gt;provider ? 1
            : b-&gt;provider &lt; a-&gt;provider ? -1
            : 0;
    return res;
}

static void impl_free(IMPLEMENTATION *impl)
{
    if (impl != NULL) {
        ossl_method_free(&amp;impl-&gt;method);
        OPENSSL_free(impl);
    }
}

static void impl_cache_free(QUERY *elem)
{
    if (elem != NULL) {
        ossl_method_free(&amp;elem-&gt;method);
        OPENSSL_free(elem);
    }
}

static void impl_cache_flush_alg(ossl_uintmax_t idx, ALGORITHM *alg)
{
    lh_QUERY_doall(alg-&gt;cache, &amp;impl_cache_free);
    lh_QUERY_flush(alg-&gt;cache);
}

static void alg_cleanup(ossl_uintmax_t idx, ALGORITHM *a, void *arg)
{
    OSSL_METHOD_STORE *store = arg;

    if (a != NULL) {
        sk_IMPLEMENTATION_pop_free(a-&gt;impls, &amp;impl_free);
        lh_QUERY_doall(a-&gt;cache, &amp;impl_cache_free);
        lh_QUERY_free(a-&gt;cache);
        OPENSSL_free(a);
    }
    if (store != NULL)
        ossl_sa_ALGORITHM_set(store-&gt;algs, idx, NULL);
}

/*
 * The OSSL_LIB_CTX param here allows access to underlying property data needed
 * for computation
 */
OSSL_METHOD_STORE *ossl_method_store_new(OSSL_LIB_CTX *ctx)
{
    OSSL_METHOD_STORE *res;

    res = OPENSSL_zalloc(sizeof(*res));
    if (res != NULL) {
        res-&gt;ctx = ctx;
        if ((res-&gt;algs = ossl_sa_ALGORITHM_new()) == NULL
            || (res-&gt;lock = CRYPTO_THREAD_lock_new()) == NULL
            || (res-&gt;biglock = CRYPTO_THREAD_lock_new()) == NULL) {
            ossl_method_store_free(res);
            return NULL;
        }
    }
    return res;
}

void ossl_method_store_free(OSSL_METHOD_STORE *store)
{
    if (store != NULL) {
        if (store-&gt;algs != NULL)
            ossl_sa_ALGORITHM_doall_arg(store-&gt;algs, &amp;alg_cleanup, store);
        ossl_sa_ALGORITHM_free(store-&gt;algs);
        CRYPTO_THREAD_lock_free(store-&gt;lock);
        CRYPTO_THREAD_lock_free(store-&gt;biglock);
        OPENSSL_free(store);
    }
}

int ossl_method_lock_store(OSSL_METHOD_STORE *store)
{
    return store != NULL ? CRYPTO_THREAD_write_lock(store-&gt;biglock) : 0;
}

int ossl_method_unlock_store(OSSL_METHOD_STORE *store)
{
    return store != NULL ? CRYPTO_THREAD_unlock(store-&gt;biglock) : 0;
}

static ALGORITHM *ossl_method_store_retrieve(OSSL_METHOD_STORE *store, int nid)
{
    return ossl_sa_ALGORITHM_get(store-&gt;algs, nid);
}

static int ossl_method_store_insert(OSSL_METHOD_STORE *store, ALGORITHM *alg)
{
    return ossl_sa_ALGORITHM_set(store-&gt;algs, alg-&gt;nid, alg);
}

int ossl_method_store_add(OSSL_METHOD_STORE *store, const OSSL_PROVIDER *prov,
                          int nid, const char *properties, void *method,
                          int (*method_up_ref)(void *),
                          void (*method_destruct)(void *))
{
    ALGORITHM *alg = NULL;
    IMPLEMENTATION *impl;
    int ret = 0;
    int i;

    if (nid &lt;= 0 || method == NULL || store == NULL)
        return 0;
    if (properties == NULL)
        properties = "";

    if (!ossl_assert(prov != NULL))
        return 0;

    /* Create new entry */
    impl = OPENSSL_malloc(sizeof(*impl));
    if (impl == NULL)
        return 0;
    impl-&gt;method.method = method;
    impl-&gt;method.up_ref = method_up_ref;
    impl-&gt;method.free = method_destruct;
    if (!ossl_method_up_ref(&amp;impl-&gt;method)) {
        OPENSSL_free(impl);
        return 0;
    }
    impl-&gt;provider = prov;

    /* Insert into the hash table if required */
    if (!ossl_property_write_lock(store)) {
        OPENSSL_free(impl);
        return 0;
    }
    ossl_method_cache_flush(store, nid);
    if ((impl-&gt;properties = ossl_prop_defn_get(store-&gt;ctx, properties)) == NULL) {
        impl-&gt;properties = ossl_parse_property(store-&gt;ctx, properties);
        if (impl-&gt;properties == NULL)
            goto err;
        if (!ossl_prop_defn_set(store-&gt;ctx, properties, &amp;impl-&gt;properties)) {
            ossl_property_free(impl-&gt;properties);
            impl-&gt;properties = NULL;
            goto err;
        }
    }

    alg = ossl_method_store_retrieve(store, nid);
    if (alg == NULL) {
        if ((alg = OPENSSL_zalloc(sizeof(*alg))) == NULL
                || (alg-&gt;impls = sk_IMPLEMENTATION_new_null()) == NULL
                || (alg-&gt;cache = lh_QUERY_new(&amp;query_hash, &amp;query_cmp)) == NULL)
            goto err;
        alg-&gt;nid = nid;
        if (!ossl_method_store_insert(store, alg))
            goto err;
    }

    /* Push onto stack if there isn't one there already */
    for (i = 0; i &lt; sk_IMPLEMENTATION_num(alg-&gt;impls); i++) {
        const IMPLEMENTATION *tmpimpl = sk_IMPLEMENTATION_value(alg-&gt;impls, i);

        if (tmpimpl-&gt;provider == impl-&gt;provider
            &amp;&amp; tmpimpl-&gt;properties == impl-&gt;properties)
            break;
    }
    if (i == sk_IMPLEMENTATION_num(alg-&gt;impls)
        &amp;&amp; sk_IMPLEMENTATION_push(alg-&gt;impls, impl))
        ret = 1;
    ossl_property_unlock(store);
    if (ret == 0)
        impl_free(impl);
    return ret;

err:
    ossl_property_unlock(store);
    alg_cleanup(0, alg, NULL);
    impl_free(impl);
    return 0;
}

int ossl_method_store_remove(OSSL_METHOD_STORE *store, int nid,
                             const void *method)
{
    ALGORITHM *alg = NULL;
    int i;

    if (nid &lt;= 0 || method == NULL || store == NULL)
        return 0;

    if (!ossl_property_write_lock(store))
        return 0;
    ossl_method_cache_flush(store, nid);
    alg = ossl_method_store_retrieve(store, nid);
    if (alg == NULL) {
        ossl_property_unlock(store);
        return 0;
    }

    /*
     * A sorting find then a delete could be faster but these stacks should be
     * relatively small, so we avoid the overhead.  Sorting could also surprise
     * users when result orderings change (even though they are not guaranteed).
     */
    for (i = 0; i &lt; sk_IMPLEMENTATION_num(alg-&gt;impls); i++) {
        IMPLEMENTATION *impl = sk_IMPLEMENTATION_value(alg-&gt;impls, i);

        if (impl-&gt;method.method == method) {
            impl_free(impl);
            (void)sk_IMPLEMENTATION_delete(alg-&gt;impls, i);
            ossl_property_unlock(store);
            return 1;
        }
    }
    ossl_property_unlock(store);
    return 0;
}

struct alg_cleanup_by_provider_data_st {
    OSSL_METHOD_STORE *store;
    const OSSL_PROVIDER *prov;
};

static void
alg_cleanup_by_provider(ossl_uintmax_t idx, ALGORITHM *alg, void *arg)
{
    struct alg_cleanup_by_provider_data_st *data = arg;
    int i, count;

    /*
     * We walk the stack backwards, to avoid having to deal with stack shifts
     * caused by deletion
     */
    for (count = 0, i = sk_IMPLEMENTATION_num(alg-&gt;impls); i-- &gt; 0;) {
        IMPLEMENTATION *impl = sk_IMPLEMENTATION_value(alg-&gt;impls, i);

        if (impl-&gt;provider == data-&gt;prov) {
            impl_free(impl);
            (void)sk_IMPLEMENTATION_delete(alg-&gt;impls, i);
            count++;
        }
    }

    /*
     * If we removed any implementation, we also clear the whole associated
     * cache, 'cause that's the sensible thing to do.
     * There's no point flushing the cache entries where we didn't remove
     * any implementation, though.
     */
    if (count &gt; 0)
        ossl_method_cache_flush_alg(data-&gt;store, alg);
}

int ossl_method_store_remove_all_provided(OSSL_METHOD_STORE *store,
                                          const OSSL_PROVIDER *prov)
{
    struct alg_cleanup_by_provider_data_st data;

    if (!ossl_property_write_lock(store))
        return 0;
    data.prov = prov;
    data.store = store;
    ossl_sa_ALGORITHM_doall_arg(store-&gt;algs, &amp;alg_cleanup_by_provider, &amp;data);
    ossl_property_unlock(store);
    return 1;
}

static void alg_do_one(ALGORITHM *alg, IMPLEMENTATION *impl,
                       void (*fn)(int id, void *method, void *fnarg),
                       void *fnarg)
{
    fn(alg-&gt;nid, impl-&gt;method.method, fnarg);
}

struct alg_do_each_data_st {
    void (*fn)(int id, void *method, void *fnarg);
    void *fnarg;
};

static void alg_do_each(ossl_uintmax_t idx, ALGORITHM *alg, void *arg)
{
    struct alg_do_each_data_st *data = arg;
    int i, end = sk_IMPLEMENTATION_num(alg-&gt;impls);

    for (i = 0; i &lt; end; i++) {
        IMPLEMENTATION *impl = sk_IMPLEMENTATION_value(alg-&gt;impls, i);

        alg_do_one(alg, impl, data-&gt;fn, data-&gt;fnarg);
    }
}

void ossl_method_store_do_all(OSSL_METHOD_STORE *store,
                              void (*fn)(int id, void *method, void *fnarg),
                              void *fnarg)
{
    struct alg_do_each_data_st data;

    data.fn = fn;
    data.fnarg = fnarg;
    if (store != NULL)
        ossl_sa_ALGORITHM_doall_arg(store-&gt;algs, alg_do_each, &amp;data);
}

int ossl_method_store_fetch(OSSL_METHOD_STORE *store,
                            int nid, const char *prop_query,
                            const OSSL_PROVIDER **prov_rw, void **method)
{
    OSSL_PROPERTY_LIST **plp;
    ALGORITHM *alg;
    IMPLEMENTATION *impl, *best_impl = NULL;
    OSSL_PROPERTY_LIST *pq = NULL, *p2 = NULL;
    const OSSL_PROVIDER *prov = prov_rw != NULL ? *prov_rw : NULL;
    int ret = 0;
    int j, best = -1, score, optional;

    if (nid &lt;= 0 || method == NULL || store == NULL)
        return 0;

#if !defined(FIPS_MODULE) &amp;&amp; !defined(OPENSSL_NO_AUTOLOAD_CONFIG)
    if (ossl_lib_ctx_is_default(store-&gt;ctx)
            &amp;&amp; !OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CONFIG, NULL))
        return 0;
#endif

    /* This only needs to be a read lock, because the query won't create anything */
    if (!ossl_property_read_lock(store))
        return 0;
    alg = ossl_method_store_retrieve(store, nid);
    if (alg == NULL) {
        ossl_property_unlock(store);
        return 0;
    }

    if (prop_query != NULL)
        p2 = pq = ossl_parse_query(store-&gt;ctx, prop_query, 0);
    plp = ossl_ctx_global_properties(store-&gt;ctx, 0);
    if (plp != NULL &amp;&amp; *plp != NULL) {
        if (pq == NULL) {
            pq = *plp;
        } else {
            p2 = ossl_property_merge(pq, *plp);
            ossl_property_free(pq);
            if (p2 == NULL)
                goto fin;
            pq = p2;
        }
    }

    if (pq == NULL) {
        for (j = 0; j &lt; sk_IMPLEMENTATION_num(alg-&gt;impls); j++) {
            if ((impl = sk_IMPLEMENTATION_value(alg-&gt;impls, j)) != NULL
                &amp;&amp; (prov == NULL || impl-&gt;provider == prov)) {
                best_impl = impl;
                ret = 1;
                break;
            }
        }
        goto fin;
    }
    optional = ossl_property_has_optional(pq);
    for (j = 0; j &lt; sk_IMPLEMENTATION_num(alg-&gt;impls); j++) {
        if ((impl = sk_IMPLEMENTATION_value(alg-&gt;impls, j)) != NULL
            &amp;&amp; (prov == NULL || impl-&gt;provider == prov)) {
            score = ossl_property_match_count(pq, impl-&gt;properties);
            if (score &gt; best) {
                best_impl = impl;
                best = score;
                ret = 1;
                if (!optional)
                    goto fin;
            }
        }
    }
fin:
    if (ret &amp;&amp; ossl_method_up_ref(&amp;best_impl-&gt;method)) {
        *method = best_impl-&gt;method.method;
        if (prov_rw != NULL)
            *prov_rw = best_impl-&gt;provider;
    } else {
        ret = 0;
    }
    ossl_property_unlock(store);
    ossl_property_free(p2);
    return ret;
}

static void ossl_method_cache_flush_alg(OSSL_METHOD_STORE *store,
                                        ALGORITHM *alg)
{
    store-&gt;cache_nelem -= lh_QUERY_num_items(alg-&gt;cache);
    impl_cache_flush_alg(0, alg);
}

static void ossl_method_cache_flush(OSSL_METHOD_STORE *store, int nid)
{
    ALGORITHM *alg = ossl_method_store_retrieve(store, nid);

    if (alg != NULL)
        ossl_method_cache_flush_alg(store, alg);
}

int ossl_method_store_cache_flush_all(OSSL_METHOD_STORE *store)
{
    if (!ossl_property_write_lock(store))
        return 0;
    ossl_sa_ALGORITHM_doall(store-&gt;algs, &amp;impl_cache_flush_alg);
    store-&gt;cache_nelem = 0;
    ossl_property_unlock(store);
    return 1;
}

IMPLEMENT_LHASH_DOALL_ARG(QUERY, IMPL_CACHE_FLUSH);

/*
 * Flush an element from the query cache (perhaps).
 *
 * In order to avoid taking a write lock or using atomic operations
 * to keep accurate least recently used (LRU) or least frequently used
 * (LFU) information, the procedure used here is to stochastically
 * flush approximately half the cache.
 *
 * This procedure isn't ideal, LRU or LFU would be better.  However,
 * in normal operation, reaching a full cache would be unexpected.
 * It means that no steady state of algorithm queries has been reached.
 * That is, it is most likely an attack of some form.  A suboptimal clearance
 * strategy that doesn't degrade performance of the normal case is
 * preferable to a more refined approach that imposes a performance
 * impact.
 */
static void impl_cache_flush_cache(QUERY *c, IMPL_CACHE_FLUSH *state)
{
    uint32_t n;

    /*
     * Implement the 32 bit xorshift as suggested by George Marsaglia in:
     *      https://doi.org/10.18637/jss.v008.i14
     *
     * This is a very fast PRNG so there is no need to extract bits one at a
     * time and use the entire value each time.
     */
    n = state-&gt;seed;
    n ^= n &lt;&lt; 13;
    n ^= n &gt;&gt; 17;
    n ^= n &lt;&lt; 5;
    state-&gt;seed = n;

    if ((n &amp; 1) != 0)
        impl_cache_free(lh_QUERY_delete(state-&gt;cache, c));
    else
        state-&gt;nelem++;
}

static void impl_cache_flush_one_alg(ossl_uintmax_t idx, ALGORITHM *alg,
                                     void *v)
{
    IMPL_CACHE_FLUSH *state = (IMPL_CACHE_FLUSH *)v;

    state-&gt;cache = alg-&gt;cache;
    lh_QUERY_doall_IMPL_CACHE_FLUSH(state-&gt;cache, &amp;impl_cache_flush_cache,
                                    state);
}

static void ossl_method_cache_flush_some(OSSL_METHOD_STORE *store)
{
    IMPL_CACHE_FLUSH state;
    static TSAN_QUALIFIER uint32_t global_seed = 1;

    state.nelem = 0;
    state.using_global_seed = 0;
    if ((state.seed = OPENSSL_rdtsc()) == 0) {
        /* If there is no timer available, seed another way */
        state.using_global_seed = 1;
        state.seed = tsan_load(&amp;global_seed);
    }
    store-&gt;cache_need_flush = 0;
    ossl_sa_ALGORITHM_doall_arg(store-&gt;algs, &amp;impl_cache_flush_one_alg, &amp;state);
    store-&gt;cache_nelem = state.nelem;
    /* Without a timer, update the global seed */
    if (state.using_global_seed)
        tsan_add(&amp;global_seed, state.seed);
}

int ossl_method_store_cache_get(OSSL_METHOD_STORE *store, OSSL_PROVIDER *prov,
                                int nid, const char *prop_query, void **method)
{
    ALGORITHM *alg;
    QUERY elem, *r;
    int res = 0;

    if (nid &lt;= 0 || store == NULL || prop_query == NULL)
        return 0;

    if (!ossl_property_read_lock(store))
        return 0;
    alg = ossl_method_store_retrieve(store, nid);
    if (alg == NULL)
        goto err;

    elem.query = prop_query;
    elem.provider = prov;
    r = lh_QUERY_retrieve(alg-&gt;cache, &amp;elem);
    if (r == NULL)
        goto err;
    if (ossl_method_up_ref(&amp;r-&gt;method)) {
        *method = r-&gt;method.method;
        res = 1;
    }
err:
    ossl_property_unlock(store);
    return res;
}

int ossl_method_store_cache_set(OSSL_METHOD_STORE *store, OSSL_PROVIDER *prov,
                                int nid, const char *prop_query, void *method,
                                int (*method_up_ref)(void *),
                                void (*method_destruct)(void *))
{
    QUERY elem, *old, *p = NULL;
    ALGORITHM *alg;
    size_t len;
    int res = 1;

    if (nid &lt;= 0 || store == NULL || prop_query == NULL)
        return 0;

    if (!ossl_assert(prov != NULL))
        return 0;

    if (!ossl_property_write_lock(store))
        return 0;
    if (store-&gt;cache_need_flush)
        ossl_method_cache_flush_some(store);
    alg = ossl_method_store_retrieve(store, nid);
    if (alg == NULL)
        goto err;

    if (method == NULL) {
        elem.query = prop_query;
        elem.provider = prov;
        if ((old = lh_QUERY_delete(alg-&gt;cache, &amp;elem)) != NULL) {
            impl_cache_free(old);
            store-&gt;cache_nelem--;
        }
        goto end;
    }
    p = OPENSSL_malloc(sizeof(*p) + (len = strlen(prop_query)));
    if (p != NULL) {
        p-&gt;query = p-&gt;body;
        p-&gt;provider = prov;
        p-&gt;method.method = method;
        p-&gt;method.up_ref = method_up_ref;
        p-&gt;method.free = method_destruct;
        if (!ossl_method_up_ref(&amp;p-&gt;method))
            goto err;
        memcpy((char *)p-&gt;query, prop_query, len + 1);
        if ((old = lh_QUERY_insert(alg-&gt;cache, p)) != NULL) {
            impl_cache_free(old);
            goto end;
        }
        if (!lh_QUERY_error(alg-&gt;cache)) {
            if (++store-&gt;cache_nelem &gt;= IMPL_CACHE_FLUSH_THRESHOLD)
                store-&gt;cache_need_flush = 1;
            goto end;
        }
        ossl_method_free(&amp;p-&gt;method);
    }
err:
    res = 0;
    OPENSSL_free(p);
end:
    ossl_property_unlock(store);
    return res;
}
</file>
  <file fpath="/out/src/openssl/crypto/provider_conf.c">/*
 * Copyright 2019-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include &lt;string.h&gt;
#include &lt;openssl/trace.h&gt;
#include &lt;openssl/err.h&gt;
#include &lt;openssl/conf.h&gt;
#include &lt;openssl/safestack.h&gt;
#include &lt;openssl/provider.h&gt;
#include "internal/provider.h"
#include "internal/cryptlib.h"
#include "provider_local.h"
#include "crypto/context.h"

DEFINE_STACK_OF(OSSL_PROVIDER)

/* PROVIDER config module */

typedef struct {
    CRYPTO_RWLOCK *lock;
    STACK_OF(OSSL_PROVIDER) *activated_providers;
} PROVIDER_CONF_GLOBAL;

void *ossl_prov_conf_ctx_new(OSSL_LIB_CTX *libctx)
{
    PROVIDER_CONF_GLOBAL *pcgbl = OPENSSL_zalloc(sizeof(*pcgbl));

    if (pcgbl == NULL)
        return NULL;

    pcgbl-&gt;lock = CRYPTO_THREAD_lock_new();
    if (pcgbl-&gt;lock == NULL) {
        OPENSSL_free(pcgbl);
        return NULL;
    }

    return pcgbl;
}

void ossl_prov_conf_ctx_free(void *vpcgbl)
{
    PROVIDER_CONF_GLOBAL *pcgbl = vpcgbl;

    sk_OSSL_PROVIDER_pop_free(pcgbl-&gt;activated_providers,
                              ossl_provider_free);

    OSSL_TRACE(CONF, "Cleaned up providers\n");
    CRYPTO_THREAD_lock_free(pcgbl-&gt;lock);
    OPENSSL_free(pcgbl);
}

static const char *skip_dot(const char *name)
{
    const char *p = strchr(name, '.');

    if (p != NULL)
        return p + 1;
    return name;
}

/*
 * Parse the provider params section
 * Returns:
 * 1 for success
 * 0 for non-fatal errors
 * &lt; 0 for fatal errors
 */
static int provider_conf_params_internal(OSSL_PROVIDER *prov,
                                         OSSL_PROVIDER_INFO *provinfo,
                                         const char *name, const char *value,
                                         const CONF *cnf,
                                         STACK_OF(OPENSSL_CSTRING) *visited)
{
    STACK_OF(CONF_VALUE) *sect;
    int ok = 1;
    int rc = 0;

    sect = NCONF_get_section(cnf, value);
    if (sect != NULL) {
        int i;
        char buffer[512];
        size_t buffer_len = 0;

        OSSL_TRACE1(CONF, "Provider params: start section %s\n", value);

        /*
         * Check to see if the provided section value has already
         * been visited.  If it has, then we have a recursive lookup
         * in the configuration which isn't valid.  As such we should error
         * out
         */
        for (i = 0; i &lt; sk_OPENSSL_CSTRING_num(visited); i++) {
            if (sk_OPENSSL_CSTRING_value(visited, i) == value) {
                ERR_raise(ERR_LIB_CONF, CONF_R_RECURSIVE_SECTION_REFERENCE);
                return -1;
            }
        }

        /*
         * We've not visited this node yet, so record it on the stack
         */
        if (!sk_OPENSSL_CSTRING_push(visited, value))
            return -1;

        if (name != NULL) {
            OPENSSL_strlcpy(buffer, name, sizeof(buffer));
            OPENSSL_strlcat(buffer, ".", sizeof(buffer));
            buffer_len = strlen(buffer);
        }

        for (i = 0; i &lt; sk_CONF_VALUE_num(sect); i++) {
            CONF_VALUE *sectconf = sk_CONF_VALUE_value(sect, i);

            if (buffer_len + strlen(sectconf-&gt;name) &gt;= sizeof(buffer)) {
                sk_OPENSSL_CSTRING_pop(visited);
                return -1;
            }
            buffer[buffer_len] = '\0';
            OPENSSL_strlcat(buffer, sectconf-&gt;name, sizeof(buffer));
            rc = provider_conf_params_internal(prov, provinfo, buffer,
                                               sectconf-&gt;value, cnf, visited);
            if (rc &lt; 0) {
                sk_OPENSSL_CSTRING_pop(visited);
                return rc;
            }
        }
        sk_OPENSSL_CSTRING_pop(visited);

        OSSL_TRACE1(CONF, "Provider params: finish section %s\n", value);
    } else {
        OSSL_TRACE2(CONF, "Provider params: %s = %s\n", name, value);
        if (prov != NULL)
            ok = ossl_provider_add_parameter(prov, name, value);
        else
            ok = ossl_provider_info_add_parameter(provinfo, name, value);
    }

    return ok;
}

/*
 * recursively parse the provider configuration section
 * of the config file. 
 * Returns
 * 1 on success
 * 0 on non-fatal error
 * &lt; 0 on fatal errors
 */
static int provider_conf_params(OSSL_PROVIDER *prov,
                                OSSL_PROVIDER_INFO *provinfo,
                                const char *name, const char *value,
                                const CONF *cnf)
{
    int rc;
    STACK_OF(OPENSSL_CSTRING) *visited = sk_OPENSSL_CSTRING_new_null();

    if (visited == NULL)
        return -1;

    rc = provider_conf_params_internal(prov, provinfo, name,
                                       value, cnf, visited);

    sk_OPENSSL_CSTRING_free(visited);

    return rc;
}

static int prov_already_activated(const char *name,
                                  STACK_OF(OSSL_PROVIDER) *activated)
{
    int i, max;

    if (activated == NULL)
        return 0;

    max = sk_OSSL_PROVIDER_num(activated);
    for (i = 0; i &lt; max; i++) {
        OSSL_PROVIDER *tstprov = sk_OSSL_PROVIDER_value(activated, i);

        if (strcmp(OSSL_PROVIDER_get0_name(tstprov), name) == 0) {
            return 1;
        }
    }

    return 0;
}

/*
 * Attempt to activate a provider
 * Returns:
 * 1 on successful activation
 * 0 on failed activation for non-fatal error
 * &lt; 0 on failed activation for fatal errors
 */
static int provider_conf_activate(OSSL_LIB_CTX *libctx, const char *name,
                                  const char *value, const char *path,
                                  int soft, const CONF *cnf)
{
    PROVIDER_CONF_GLOBAL *pcgbl
        = ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_PROVIDER_CONF_INDEX);
    OSSL_PROVIDER *prov = NULL, *actual = NULL;
    int ok = 0;

    if (pcgbl == NULL || !CRYPTO_THREAD_write_lock(pcgbl-&gt;lock)) {
        ERR_raise(ERR_LIB_CRYPTO, ERR_R_INTERNAL_ERROR);
        return -1;
    }
    if (!prov_already_activated(name, pcgbl-&gt;activated_providers)) {
        /*
        * There is an attempt to activate a provider, so we should disable
        * loading of fallbacks. Otherwise a misconfiguration could mean the
        * intended provider does not get loaded. Subsequent fetches could
        * then fallback to the default provider - which may be the wrong
        * thing.
        */
        if (!ossl_provider_disable_fallback_loading(libctx)) {
            CRYPTO_THREAD_unlock(pcgbl-&gt;lock);
            ERR_raise(ERR_LIB_CRYPTO, ERR_R_INTERNAL_ERROR);
            return -1;
        }
        prov = ossl_provider_find(libctx, name, 1);
        if (prov == NULL)
            prov = ossl_provider_new(libctx, name, NULL, NULL, 1);
        if (prov == NULL) {
            CRYPTO_THREAD_unlock(pcgbl-&gt;lock);
            if (soft)
                ERR_clear_error();
            return (soft == 0) ? -1 : 0;
        }

        if (path != NULL)
            ossl_provider_set_module_path(prov, path);

        ok = provider_conf_params(prov, NULL, NULL, value, cnf);

        if (ok == 1) {
            if (!ossl_provider_activate(prov, 1, 0)) {
                ok = 0;
            } else if (!ossl_provider_add_to_store(prov, &amp;actual, 0)) {
                ossl_provider_deactivate(prov, 1);
                ok = 0;
            } else if (actual != prov
                       &amp;&amp; !ossl_provider_activate(actual, 1, 0)) {
                ossl_provider_free(actual);
                ok = 0;
            } else {
                if (pcgbl-&gt;activated_providers == NULL)
                    pcgbl-&gt;activated_providers = sk_OSSL_PROVIDER_new_null();
                if (pcgbl-&gt;activated_providers == NULL
                    || !sk_OSSL_PROVIDER_push(pcgbl-&gt;activated_providers,
                                              actual)) {
                    ossl_provider_deactivate(actual, 1);
                    ossl_provider_free(actual);
                    ok = 0;
                } else {
                    ok = 1;
                }
            }
        }

        if (ok &lt;= 0)
            ossl_provider_free(prov);
    }
    CRYPTO_THREAD_unlock(pcgbl-&gt;lock);

    return ok;
}

static int provider_conf_parse_bool_setting(const char *confname,
                                            const char *confvalue, int *val)
{

    if (confvalue == NULL) {
        ERR_raise_data(ERR_LIB_CRYPTO, CRYPTO_R_PROVIDER_SECTION_ERROR,
                               "directive %s set to unrecognized value",
                               confname);
        return 0;
    }
    if ((strcmp(confvalue, "1") == 0)
        || (strcmp(confvalue, "yes") == 0)
        || (strcmp(confvalue, "YES") == 0)
        || (strcmp(confvalue, "true") == 0)
        || (strcmp(confvalue, "TRUE") == 0)
        || (strcmp(confvalue, "on") == 0)
        || (strcmp(confvalue, "ON") == 0)) {
            *val = 1;
    } else if ((strcmp(confvalue, "0") == 0)
               || (strcmp(confvalue, "no") == 0)
               || (strcmp(confvalue, "NO") == 0)
               || (strcmp(confvalue, "false") == 0)
               || (strcmp(confvalue, "FALSE") == 0)
               || (strcmp(confvalue, "off") == 0)
               || (strcmp(confvalue, "OFF") == 0)) {
            *val = 0;
    } else {
        ERR_raise_data(ERR_LIB_CRYPTO, CRYPTO_R_PROVIDER_SECTION_ERROR,
                               "directive %s set to unrecognized value",
                               confname);
        return 0;
    }

    return 1;
}

static int provider_conf_load(OSSL_LIB_CTX *libctx, const char *name,
                              const char *value, const CONF *cnf)
{
    int i;
    STACK_OF(CONF_VALUE) *ecmds;
    int soft = 0;
    const char *path = NULL;
    int activate = 0;
    int ok = 0;
    int added = 0;

    name = skip_dot(name);
    OSSL_TRACE1(CONF, "Configuring provider %s\n", name);
    /* Value is a section containing PROVIDER commands */
    ecmds = NCONF_get_section(cnf, value);

    if (!ecmds) {
        ERR_raise_data(ERR_LIB_CRYPTO, CRYPTO_R_PROVIDER_SECTION_ERROR,
                       "section=%s not found", value);
        return 0;
    }

    /* Find the needed data first */
    for (i = 0; i &lt; sk_CONF_VALUE_num(ecmds); i++) {
        CONF_VALUE *ecmd = sk_CONF_VALUE_value(ecmds, i);
        const char *confname = skip_dot(ecmd-&gt;name);
        const char *confvalue = ecmd-&gt;value;

        OSSL_TRACE2(CONF, "Provider command: %s = %s\n",
                    confname, confvalue);

        /* First handle some special pseudo confs */

        /* Override provider name to use */
        if (strcmp(confname, "identity") == 0) {
            name = confvalue;
        } else if (strcmp(confname, "soft_load") == 0) {
            if (!provider_conf_parse_bool_setting(confname,
                                                  confvalue, &amp;soft))
                return 0;
        /* Load a dynamic PROVIDER */
        } else if (strcmp(confname, "module") == 0) {
            path = confvalue;
        } else if (strcmp(confname, "activate") == 0) {
            if (!provider_conf_parse_bool_setting(confname,
                                                  confvalue, &amp;activate))
                return 0;
        }
    }

    if (activate) {
        ok = provider_conf_activate(libctx, name, value, path, soft, cnf);
    } else {
        OSSL_PROVIDER_INFO entry;

        memset(&amp;entry, 0, sizeof(entry));
        ok = 1;
        if (name != NULL) {
            entry.name = OPENSSL_strdup(name);
            if (entry.name == NULL)
                ok = 0;
        }
        if (ok &amp;&amp; path != NULL) {
            entry.path = OPENSSL_strdup(path);
            if (entry.path == NULL)
                ok = 0;
        }
        if (ok)
            ok = provider_conf_params(NULL, &amp;entry, NULL, value, cnf);
        if (ok &gt;= 1 &amp;&amp; (entry.path != NULL || entry.parameters != NULL)) {
            ok = ossl_provider_info_add_to_store(libctx, &amp;entry);
            added = 1;
        }
        if (added == 0)
            ossl_provider_info_clear(&amp;entry);
    }

    /*
     * Provider activation returns a tristate:
     * 1 for successful activation
     * 0 for non-fatal activation failure
     * &lt; 0 for fatal activation failure
     * We return success (1) for activation, (1) for non-fatal activation
     * failure, and (0) for fatal activation failure
     */
    return ok &gt;= 0;
}

static int provider_conf_init(CONF_IMODULE *md, const CONF *cnf)
{
    STACK_OF(CONF_VALUE) *elist;
    CONF_VALUE *cval;
    int i;

    OSSL_TRACE1(CONF, "Loading providers module: section %s\n",
                CONF_imodule_get_value(md));

    /* Value is a section containing PROVIDERs to configure */
    elist = NCONF_get_section(cnf, CONF_imodule_get_value(md));

    if (!elist) {
        ERR_raise(ERR_LIB_CRYPTO, CRYPTO_R_PROVIDER_SECTION_ERROR);
        return 0;
    }

    for (i = 0; i &lt; sk_CONF_VALUE_num(elist); i++) {
        cval = sk_CONF_VALUE_value(elist, i);
        if (!provider_conf_load(NCONF_get0_libctx((CONF *)cnf),
                                cval-&gt;name, cval-&gt;value, cnf))
            return 0;
    }

    return 1;
}

void ossl_provider_add_conf_module(void)
{
    OSSL_TRACE(CONF, "Adding config module 'providers'\n");
    CONF_module_add("providers", provider_conf_init, NULL);
}
</file>
  <file fpath="/out/src/openssl/crypto/rand/rand_lib.c">/*
 * Copyright 1995-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* We need to use some engine deprecated APIs */
#define OPENSSL_SUPPRESS_DEPRECATED

#include &lt;openssl/err.h&gt;
#include &lt;openssl/opensslconf.h&gt;
#include &lt;openssl/core_names.h&gt;
#include "internal/cryptlib.h"
#include "internal/thread_once.h"
#include "crypto/rand.h"
#include "crypto/cryptlib.h"
#include "rand_local.h"
#include "crypto/context.h"

#ifndef FIPS_MODULE
# include &lt;stdio.h&gt;
# include &lt;time.h&gt;
# include &lt;limits.h&gt;
# include &lt;openssl/conf.h&gt;
# include &lt;openssl/trace.h&gt;
# include &lt;openssl/engine.h&gt;
# include "crypto/rand_pool.h"
# include "prov/seeding.h"
# include "internal/e_os.h"
# include "internal/property.h"

# ifndef OPENSSL_NO_ENGINE
/* non-NULL if default_RAND_meth is ENGINE-provided */
static ENGINE *funct_ref;
static CRYPTO_RWLOCK *rand_engine_lock;
# endif
# ifndef OPENSSL_NO_DEPRECATED_3_0
static CRYPTO_RWLOCK *rand_meth_lock;
static const RAND_METHOD *default_RAND_meth;
# endif
static CRYPTO_ONCE rand_init = CRYPTO_ONCE_STATIC_INIT;

static int rand_inited = 0;

DEFINE_RUN_ONCE_STATIC(do_rand_init)
{
# ifndef OPENSSL_NO_ENGINE
    rand_engine_lock = CRYPTO_THREAD_lock_new();
    if (rand_engine_lock == NULL)
        return 0;
# endif

# ifndef OPENSSL_NO_DEPRECATED_3_0
    rand_meth_lock = CRYPTO_THREAD_lock_new();
    if (rand_meth_lock == NULL)
        goto err;
# endif

    if (!ossl_rand_pool_init())
        goto err;

    rand_inited = 1;
    return 1;

 err:
# ifndef OPENSSL_NO_DEPRECATED_3_0
    CRYPTO_THREAD_lock_free(rand_meth_lock);
    rand_meth_lock = NULL;
# endif
# ifndef OPENSSL_NO_ENGINE
    CRYPTO_THREAD_lock_free(rand_engine_lock);
    rand_engine_lock = NULL;
# endif
    return 0;
}

void ossl_rand_cleanup_int(void)
{
# ifndef OPENSSL_NO_DEPRECATED_3_0
    const RAND_METHOD *meth = default_RAND_meth;

    if (!rand_inited)
        return;

    if (meth != NULL &amp;&amp; meth-&gt;cleanup != NULL)
        meth-&gt;cleanup();
    RAND_set_rand_method(NULL);
# endif
    ossl_rand_pool_cleanup();
# ifndef OPENSSL_NO_ENGINE
    CRYPTO_THREAD_lock_free(rand_engine_lock);
    rand_engine_lock = NULL;
# endif
# ifndef OPENSSL_NO_DEPRECATED_3_0
    CRYPTO_THREAD_lock_free(rand_meth_lock);
    rand_meth_lock = NULL;
# endif
    ossl_release_default_drbg_ctx();
    rand_inited = 0;
}

/*
 * RAND_close_seed_files() ensures that any seed file descriptors are
 * closed after use.  This only applies to libcrypto/default provider,
 * it does not apply to other providers.
 */
void RAND_keep_random_devices_open(int keep)
{
    if (RUN_ONCE(&amp;rand_init, do_rand_init))
        ossl_rand_pool_keep_random_devices_open(keep);
}

/*
 * RAND_poll() reseeds the default RNG using random input
 *
 * The random input is obtained from polling various entropy
 * sources which depend on the operating system and are
 * configurable via the --with-rand-seed configure option.
 */
int RAND_poll(void)
{
    static const char salt[] = "polling";

# ifndef OPENSSL_NO_DEPRECATED_3_0
    const RAND_METHOD *meth = RAND_get_rand_method();
    int ret = meth == RAND_OpenSSL();

    if (meth == NULL)
        return 0;

    if (!ret) {
        /* fill random pool and seed the current legacy RNG */
        RAND_POOL *pool = ossl_rand_pool_new(RAND_DRBG_STRENGTH, 1,
                                             (RAND_DRBG_STRENGTH + 7) / 8,
                                             RAND_POOL_MAX_LENGTH);

        if (pool == NULL)
            return 0;

        if (ossl_pool_acquire_entropy(pool) == 0)
            goto err;

        if (meth-&gt;add == NULL
            || meth-&gt;add(ossl_rand_pool_buffer(pool),
                         ossl_rand_pool_length(pool),
                         (ossl_rand_pool_entropy(pool) / 8.0)) == 0)
            goto err;

        ret = 1;
     err:
        ossl_rand_pool_free(pool);
        return ret;
    }
# endif

    RAND_seed(salt, sizeof(salt));
    return 1;
}

# ifndef OPENSSL_NO_DEPRECATED_3_0
static int rand_set_rand_method_internal(const RAND_METHOD *meth,
                                         ossl_unused ENGINE *e)
{
    if (!RUN_ONCE(&amp;rand_init, do_rand_init))
        return 0;

    if (!CRYPTO_THREAD_write_lock(rand_meth_lock))
        return 0;
#  ifndef OPENSSL_NO_ENGINE
    ENGINE_finish(funct_ref);
    funct_ref = e;
#  endif
    default_RAND_meth = meth;
    CRYPTO_THREAD_unlock(rand_meth_lock);
    return 1;
}

int RAND_set_rand_method(const RAND_METHOD *meth)
{
    return rand_set_rand_method_internal(meth, NULL);
}

const RAND_METHOD *RAND_get_rand_method(void)
{
    const RAND_METHOD *tmp_meth = NULL;

    if (!RUN_ONCE(&amp;rand_init, do_rand_init))
        return NULL;

    if (!CRYPTO_THREAD_read_lock(rand_meth_lock))
        return NULL;
    tmp_meth = default_RAND_meth;
    CRYPTO_THREAD_unlock(rand_meth_lock);
    if (tmp_meth != NULL)
        return tmp_meth;

    if (!CRYPTO_THREAD_write_lock(rand_meth_lock))
        return NULL;
    if (default_RAND_meth == NULL) {
#  ifndef OPENSSL_NO_ENGINE
        ENGINE *e;

        /* If we have an engine that can do RAND, use it. */
        if ((e = ENGINE_get_default_RAND()) != NULL
                &amp;&amp; (tmp_meth = ENGINE_get_RAND(e)) != NULL) {
            funct_ref = e;
            default_RAND_meth = tmp_meth;
        } else {
            ENGINE_finish(e);
            default_RAND_meth = &amp;ossl_rand_meth;
        }
#  else
        default_RAND_meth = &amp;ossl_rand_meth;
#  endif
    }
    tmp_meth = default_RAND_meth;
    CRYPTO_THREAD_unlock(rand_meth_lock);
    return tmp_meth;
}

#  if !defined(OPENSSL_NO_ENGINE)
int RAND_set_rand_engine(ENGINE *engine)
{
    const RAND_METHOD *tmp_meth = NULL;

    if (!RUN_ONCE(&amp;rand_init, do_rand_init))
        return 0;

    if (engine != NULL) {
        if (!ENGINE_init(engine))
            return 0;
        tmp_meth = ENGINE_get_RAND(engine);
        if (tmp_meth == NULL) {
            ENGINE_finish(engine);
            return 0;
        }
    }
    if (!CRYPTO_THREAD_write_lock(rand_engine_lock)) {
        ENGINE_finish(engine);
        return 0;
    }

    /* This function releases any prior ENGINE so call it first */
    rand_set_rand_method_internal(tmp_meth, engine);
    CRYPTO_THREAD_unlock(rand_engine_lock);
    return 1;
}
#  endif
# endif /* OPENSSL_NO_DEPRECATED_3_0 */

void RAND_seed(const void *buf, int num)
{
    EVP_RAND_CTX *drbg;
# ifndef OPENSSL_NO_DEPRECATED_3_0
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth-&gt;seed != NULL) {
        meth-&gt;seed(buf, num);
        return;
    }
# endif

    drbg = RAND_get0_primary(NULL);
    if (drbg != NULL &amp;&amp; num &gt; 0)
        EVP_RAND_reseed(drbg, 0, NULL, 0, buf, num);
}

void RAND_add(const void *buf, int num, double randomness)
{
    EVP_RAND_CTX *drbg;
# ifndef OPENSSL_NO_DEPRECATED_3_0
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth-&gt;add != NULL) {
        meth-&gt;add(buf, num, randomness);
        return;
    }
# endif
    drbg = RAND_get0_primary(NULL);
    if (drbg != NULL &amp;&amp; num &gt; 0)
# ifdef OPENSSL_RAND_SEED_NONE
        /* Without an entropy source, we have to rely on the user */
        EVP_RAND_reseed(drbg, 0, buf, num, NULL, 0);
# else
        /* With an entropy source, we downgrade this to additional input */
        EVP_RAND_reseed(drbg, 0, NULL, 0, buf, num);
# endif
}

# if !defined(OPENSSL_NO_DEPRECATED_1_1_0)
int RAND_pseudo_bytes(unsigned char *buf, int num)
{
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth-&gt;pseudorand != NULL)
        return meth-&gt;pseudorand(buf, num);
    ERR_raise(ERR_LIB_RAND, RAND_R_FUNC_NOT_IMPLEMENTED);
    return -1;
}
# endif

int RAND_status(void)
{
    EVP_RAND_CTX *rand;
# ifndef OPENSSL_NO_DEPRECATED_3_0
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth != RAND_OpenSSL())
        return meth-&gt;status != NULL ? meth-&gt;status() : 0;
# endif

    if ((rand = RAND_get0_primary(NULL)) == NULL)
        return 0;
    return EVP_RAND_get_state(rand) == EVP_RAND_STATE_READY;
}
# else  /* !FIPS_MODULE */

# ifndef OPENSSL_NO_DEPRECATED_3_0
const RAND_METHOD *RAND_get_rand_method(void)
{
    return NULL;
}
# endif
#endif /* !FIPS_MODULE */

/*
 * This function is not part of RAND_METHOD, so if we're not using
 * the default method, then just call RAND_bytes().  Otherwise make
 * sure we're instantiated and use the private DRBG.
 */
int RAND_priv_bytes_ex(OSSL_LIB_CTX *ctx, unsigned char *buf, size_t num,
                       unsigned int strength)
{
    EVP_RAND_CTX *rand;
#if !defined(OPENSSL_NO_DEPRECATED_3_0) &amp;&amp; !defined(FIPS_MODULE)
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth != RAND_OpenSSL()) {
        if (meth-&gt;bytes != NULL)
            return meth-&gt;bytes(buf, num);
        ERR_raise(ERR_LIB_RAND, RAND_R_FUNC_NOT_IMPLEMENTED);
        return -1;
    }
#endif

    rand = RAND_get0_private(ctx);
    if (rand != NULL)
        return EVP_RAND_generate(rand, buf, num, strength, 0, NULL, 0);

    return 0;
}

int RAND_priv_bytes(unsigned char *buf, int num)
{
    if (num &lt; 0)
        return 0;
    return RAND_priv_bytes_ex(NULL, buf, (size_t)num, 0);
}

int RAND_bytes_ex(OSSL_LIB_CTX *ctx, unsigned char *buf, size_t num,
                  unsigned int strength)
{
    EVP_RAND_CTX *rand;
#if !defined(OPENSSL_NO_DEPRECATED_3_0) &amp;&amp; !defined(FIPS_MODULE)
    const RAND_METHOD *meth = RAND_get_rand_method();

    if (meth != NULL &amp;&amp; meth != RAND_OpenSSL()) {
        if (meth-&gt;bytes != NULL)
            return meth-&gt;bytes(buf, num);
        ERR_raise(ERR_LIB_RAND, RAND_R_FUNC_NOT_IMPLEMENTED);
        return -1;
    }
#endif

    rand = RAND_get0_public(ctx);
    if (rand != NULL)
        return EVP_RAND_generate(rand, buf, num, strength, 0, NULL, 0);

    return 0;
}

int RAND_bytes(unsigned char *buf, int num)
{
    if (num &lt; 0)
        return 0;
    return RAND_bytes_ex(NULL, buf, (size_t)num, 0);
}

typedef struct rand_global_st {
    /*
     * The three shared DRBG instances
     *
     * There are three shared DRBG instances: &lt;primary&gt;, &lt;public&gt;, and
     * &lt;private&gt;.  The &lt;public&gt; and &lt;private&gt; DRBGs are secondary ones.
     * These are used for non-secret (e.g. nonces) and secret
     * (e.g. private keys) data respectively.
     */
    CRYPTO_RWLOCK *lock;

    EVP_RAND_CTX *seed;

    /*
     * The &lt;primary&gt; DRBG
     *
     * Not used directly by the application, only for reseeding the two other
     * DRBGs. It reseeds itself by pulling either randomness from os entropy
     * sources or by consuming randomness which was added by RAND_add().
     *
     * The &lt;primary&gt; DRBG is a global instance which is accessed concurrently by
     * all threads. The necessary locking is managed automatically by its child
     * DRBG instances during reseeding.
     */
    EVP_RAND_CTX *primary;

    /*
     * The &lt;public&gt; DRBG
     *
     * Used by default for generating random bytes using RAND_bytes().
     *
     * The &lt;public&gt; secondary DRBG is thread-local, i.e., there is one instance
     * per thread.
     */
    CRYPTO_THREAD_LOCAL public;

    /*
     * The &lt;private&gt; DRBG
     *
     * Used by default for generating private keys using RAND_priv_bytes()
     *
     * The &lt;private&gt; secondary DRBG is thread-local, i.e., there is one
     * instance per thread.
     */
    CRYPTO_THREAD_LOCAL private;

    /* Which RNG is being used by default and it's configuration settings */
    char *rng_name;
    char *rng_cipher;
    char *rng_digest;
    char *rng_propq;

    /* Allow the randomness source to be changed */
    char *seed_name;
    char *seed_propq;
} RAND_GLOBAL;

/*
 * Initialize the OSSL_LIB_CTX global DRBGs on first use.
 * Returns the allocated global data on success or NULL on failure.
 */
void *ossl_rand_ctx_new(OSSL_LIB_CTX *libctx)
{
    RAND_GLOBAL *dgbl = OPENSSL_zalloc(sizeof(*dgbl));

    if (dgbl == NULL)
        return NULL;

#ifndef FIPS_MODULE
    /*
     * We need to ensure that base libcrypto thread handling has been
     * initialised.
     */
     OPENSSL_init_crypto(OPENSSL_INIT_BASE_ONLY, NULL);
#endif

    dgbl-&gt;lock = CRYPTO_THREAD_lock_new();
    if (dgbl-&gt;lock == NULL)
        goto err1;

    if (!CRYPTO_THREAD_init_local(&amp;dgbl-&gt;private, NULL))
        goto err1;

    if (!CRYPTO_THREAD_init_local(&amp;dgbl-&gt;public, NULL))
        goto err2;

    return dgbl;

 err2:
    CRYPTO_THREAD_cleanup_local(&amp;dgbl-&gt;private);
 err1:
    CRYPTO_THREAD_lock_free(dgbl-&gt;lock);
    OPENSSL_free(dgbl);
    return NULL;
}

void ossl_rand_ctx_free(void *vdgbl)
{
    RAND_GLOBAL *dgbl = vdgbl;

    if (dgbl == NULL)
        return;

    CRYPTO_THREAD_lock_free(dgbl-&gt;lock);
    CRYPTO_THREAD_cleanup_local(&amp;dgbl-&gt;private);
    CRYPTO_THREAD_cleanup_local(&amp;dgbl-&gt;public);
    EVP_RAND_CTX_free(dgbl-&gt;primary);
    EVP_RAND_CTX_free(dgbl-&gt;seed);
    OPENSSL_free(dgbl-&gt;rng_name);
    OPENSSL_free(dgbl-&gt;rng_cipher);
    OPENSSL_free(dgbl-&gt;rng_digest);
    OPENSSL_free(dgbl-&gt;rng_propq);
    OPENSSL_free(dgbl-&gt;seed_name);
    OPENSSL_free(dgbl-&gt;seed_propq);

    OPENSSL_free(dgbl);
}

static RAND_GLOBAL *rand_get_global(OSSL_LIB_CTX *libctx)
{
    return ossl_lib_ctx_get_data(libctx, OSSL_LIB_CTX_DRBG_INDEX);
}

static void rand_delete_thread_state(void *arg)
{
    OSSL_LIB_CTX *ctx = arg;
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *rand;

    if (dgbl == NULL)
        return;

    rand = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;public);
    CRYPTO_THREAD_set_local(&amp;dgbl-&gt;public, NULL);
    EVP_RAND_CTX_free(rand);

    rand = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;private);
    CRYPTO_THREAD_set_local(&amp;dgbl-&gt;private, NULL);
    EVP_RAND_CTX_free(rand);
}

#ifndef FIPS_MODULE
static EVP_RAND_CTX *rand_new_seed(OSSL_LIB_CTX *libctx)
{
    EVP_RAND *rand;
    RAND_GLOBAL *dgbl = rand_get_global(libctx);
    EVP_RAND_CTX *ctx = NULL;
    const char *propq;
    char *name, *props = NULL;
    size_t props_len;
    OSSL_PROPERTY_LIST *pl1, *pl2, *pl3 = NULL;

    if (dgbl == NULL)
        return NULL;
    propq = dgbl-&gt;seed_propq;
    if (dgbl-&gt;seed_name != NULL) {
        name = dgbl-&gt;seed_name;
    } else {
        /*
         * Default to our internal seed source.  This isn't part of the FIPS
         * provider so we need to override any FIPS properties.
         */
        if (propq == NULL || *propq == '\0') {
            propq = "-fips";
        } else {
            pl1 = ossl_parse_query(libctx, propq, 1);
            if (pl1 == NULL) {
                ERR_raise(ERR_LIB_RAND, RAND_R_INVALID_PROPERTY_QUERY);
                return NULL;
            }
            pl2 = ossl_parse_query(libctx, "-fips", 1);
            if (pl2 == NULL) {
                ossl_property_free(pl1);
                ERR_raise(ERR_LIB_RAND, ERR_R_INTERNAL_ERROR);
                return NULL;
            }
            pl3 = ossl_property_merge(pl2, pl1);
            ossl_property_free(pl1);
            ossl_property_free(pl2);
            if (pl3 == NULL) {
                ERR_raise(ERR_LIB_RAND, ERR_R_INTERNAL_ERROR);
                return NULL;
            }
            props_len = ossl_property_list_to_string(libctx, pl3, NULL, 0);
            if (props_len == 0) {
                /* Shouldn't happen since we added a query element */
                ERR_raise(ERR_LIB_RAND, ERR_R_INTERNAL_ERROR);
                goto err;
            } else {
                props = OPENSSL_malloc(props_len);
                if (props == NULL) {
                    ERR_raise(ERR_LIB_RAND, ERR_R_MALLOC_FAILURE);
                    goto err;
                }
                if (ossl_property_list_to_string(libctx, pl3,
                                                 props, props_len) == 0) {
                    ERR_raise(ERR_LIB_RAND, ERR_R_INTERNAL_ERROR);
                    goto err;
                }
                ossl_property_free(pl3);
                pl3 = NULL;
                propq = props;
            }
        }
        name = "SEED-SRC";
    }

    rand = EVP_RAND_fetch(libctx, name, propq);
    if (rand == NULL) {
        ERR_raise(ERR_LIB_RAND, RAND_R_UNABLE_TO_FETCH_DRBG);
        goto err;
    }
    ctx = EVP_RAND_CTX_new(rand, NULL);
    EVP_RAND_free(rand);
    if (ctx == NULL) {
        ERR_raise(ERR_LIB_RAND, RAND_R_UNABLE_TO_CREATE_DRBG);
        goto err;
    }
    if (!EVP_RAND_instantiate(ctx, 0, 0, NULL, 0, NULL)) {
        ERR_raise(ERR_LIB_RAND, RAND_R_ERROR_INSTANTIATING_DRBG);
        goto err;
    }
    OPENSSL_free(props);
    return ctx;
 err:
    EVP_RAND_CTX_free(ctx);
    ossl_property_free(pl3);
    OPENSSL_free(props);
    return NULL;
}

EVP_RAND_CTX *ossl_rand_get0_seed_noncreating(OSSL_LIB_CTX *ctx)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *ret;

    if (dgbl == NULL)
        return NULL;

    if (!CRYPTO_THREAD_read_lock(dgbl-&gt;lock))
        return NULL;
    ret = dgbl-&gt;seed;
    CRYPTO_THREAD_unlock(dgbl-&gt;lock);
    return ret;
}
#endif

static EVP_RAND_CTX *rand_new_drbg(OSSL_LIB_CTX *libctx, EVP_RAND_CTX *parent,
                                   unsigned int reseed_interval,
                                   time_t reseed_time_interval, int use_df)
{
    EVP_RAND *rand;
    RAND_GLOBAL *dgbl = rand_get_global(libctx);
    EVP_RAND_CTX *ctx;
    OSSL_PARAM params[8], *p = params;
    const OSSL_PARAM *settables;
    char *name, *cipher;

    if (dgbl == NULL)
        return NULL;
    name = dgbl-&gt;rng_name != NULL ? dgbl-&gt;rng_name : "CTR-DRBG";
    rand = EVP_RAND_fetch(libctx, name, dgbl-&gt;rng_propq);
    if (rand == NULL) {
        ERR_raise(ERR_LIB_RAND, RAND_R_UNABLE_TO_FETCH_DRBG);
        return NULL;
    }
    ctx = EVP_RAND_CTX_new(rand, parent);
    EVP_RAND_free(rand);
    if (ctx == NULL) {
        ERR_raise(ERR_LIB_RAND, RAND_R_UNABLE_TO_CREATE_DRBG);
        return NULL;
    }

    settables = EVP_RAND_CTX_settable_params(ctx);
    if (OSSL_PARAM_locate_const(settables, OSSL_DRBG_PARAM_CIPHER)) {
        cipher = dgbl-&gt;rng_cipher != NULL ? dgbl-&gt;rng_cipher : "AES-256-CTR";
        *p++ = OSSL_PARAM_construct_utf8_string(OSSL_DRBG_PARAM_CIPHER,
                                                cipher, 0);
    }
    if (dgbl-&gt;rng_digest != NULL
            &amp;&amp; OSSL_PARAM_locate_const(settables, OSSL_DRBG_PARAM_DIGEST))
        *p++ = OSSL_PARAM_construct_utf8_string(OSSL_DRBG_PARAM_DIGEST,
                                                dgbl-&gt;rng_digest, 0);
    if (dgbl-&gt;rng_propq != NULL)
        *p++ = OSSL_PARAM_construct_utf8_string(OSSL_DRBG_PARAM_PROPERTIES,
                                                dgbl-&gt;rng_propq, 0);
    if (OSSL_PARAM_locate_const(settables, OSSL_ALG_PARAM_MAC))
        *p++ = OSSL_PARAM_construct_utf8_string(OSSL_ALG_PARAM_MAC, "HMAC", 0);
    if (OSSL_PARAM_locate_const(settables, OSSL_DRBG_PARAM_USE_DF))
        *p++ = OSSL_PARAM_construct_int(OSSL_DRBG_PARAM_USE_DF, &amp;use_df);
    *p++ = OSSL_PARAM_construct_uint(OSSL_DRBG_PARAM_RESEED_REQUESTS,
                                     &amp;reseed_interval);
    *p++ = OSSL_PARAM_construct_time_t(OSSL_DRBG_PARAM_RESEED_TIME_INTERVAL,
                                       &amp;reseed_time_interval);
    *p = OSSL_PARAM_construct_end();
    if (!EVP_RAND_instantiate(ctx, 0, 0, NULL, 0, params)) {
        ERR_raise(ERR_LIB_RAND, RAND_R_ERROR_INSTANTIATING_DRBG);
        EVP_RAND_CTX_free(ctx);
        return NULL;
    }
    return ctx;
}

/*
 * Get the primary random generator.
 * Returns pointer to its EVP_RAND_CTX on success, NULL on failure.
 *
 */
EVP_RAND_CTX *RAND_get0_primary(OSSL_LIB_CTX *ctx)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *ret;

    if (dgbl == NULL)
        return NULL;

    if (!CRYPTO_THREAD_read_lock(dgbl-&gt;lock))
        return NULL;

    ret = dgbl-&gt;primary;
    CRYPTO_THREAD_unlock(dgbl-&gt;lock);

    if (ret != NULL)
        return ret;

    if (!CRYPTO_THREAD_write_lock(dgbl-&gt;lock))
        return NULL;

    ret = dgbl-&gt;primary;
    if (ret != NULL) {
        CRYPTO_THREAD_unlock(dgbl-&gt;lock);
        return ret;
    }

#ifndef FIPS_MODULE
    if (dgbl-&gt;seed == NULL) {
        ERR_set_mark();
        dgbl-&gt;seed = rand_new_seed(ctx);
        ERR_pop_to_mark();
    }
#endif

    ret = dgbl-&gt;primary = rand_new_drbg(ctx, dgbl-&gt;seed,
                                        PRIMARY_RESEED_INTERVAL,
                                        PRIMARY_RESEED_TIME_INTERVAL, 1);
    /*
    * The primary DRBG may be shared between multiple threads so we must
    * enable locking.
    */
    if (ret != NULL &amp;&amp; !EVP_RAND_enable_locking(ret)) {
        ERR_raise(ERR_LIB_EVP, EVP_R_UNABLE_TO_ENABLE_LOCKING);
        EVP_RAND_CTX_free(ret);
        ret = dgbl-&gt;primary = NULL;
    }
    CRYPTO_THREAD_unlock(dgbl-&gt;lock);

    return ret;
}

/*
 * Get the public random generator.
 * Returns pointer to its EVP_RAND_CTX on success, NULL on failure.
 */
EVP_RAND_CTX *RAND_get0_public(OSSL_LIB_CTX *ctx)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *rand, *primary;

    if (dgbl == NULL)
        return NULL;

    rand = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;public);
    if (rand == NULL) {
        primary = RAND_get0_primary(ctx);
        if (primary == NULL)
            return NULL;

        ctx = ossl_lib_ctx_get_concrete(ctx);
        /*
         * If the private is also NULL then this is the first time we've
         * used this thread.
         */
        if (CRYPTO_THREAD_get_local(&amp;dgbl-&gt;private) == NULL
                &amp;&amp; !ossl_init_thread_start(NULL, ctx, rand_delete_thread_state))
            return NULL;
        rand = rand_new_drbg(ctx, primary, SECONDARY_RESEED_INTERVAL,
                             SECONDARY_RESEED_TIME_INTERVAL, 0);
        CRYPTO_THREAD_set_local(&amp;dgbl-&gt;public, rand);
    }
    return rand;
}

/*
 * Get the private random generator.
 * Returns pointer to its EVP_RAND_CTX on success, NULL on failure.
 */
EVP_RAND_CTX *RAND_get0_private(OSSL_LIB_CTX *ctx)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *rand, *primary;

    if (dgbl == NULL)
        return NULL;

    rand = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;private);
    if (rand == NULL) {
        primary = RAND_get0_primary(ctx);
        if (primary == NULL)
            return NULL;

        ctx = ossl_lib_ctx_get_concrete(ctx);
        /*
         * If the public is also NULL then this is the first time we've
         * used this thread.
         */
        if (CRYPTO_THREAD_get_local(&amp;dgbl-&gt;public) == NULL
                &amp;&amp; !ossl_init_thread_start(NULL, ctx, rand_delete_thread_state))
            return NULL;
        rand = rand_new_drbg(ctx, primary, SECONDARY_RESEED_INTERVAL,
                             SECONDARY_RESEED_TIME_INTERVAL, 0);
        CRYPTO_THREAD_set_local(&amp;dgbl-&gt;private, rand);
    }
    return rand;
}

#ifdef FIPS_MODULE
EVP_RAND_CTX *ossl_rand_get0_private_noncreating(OSSL_LIB_CTX *ctx)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);

    if (dgbl == NULL)
        return NULL;

    return CRYPTO_THREAD_get_local(&amp;dgbl-&gt;private);
}
#endif

int RAND_set0_public(OSSL_LIB_CTX *ctx, EVP_RAND_CTX *rand)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *old;
    int r;

    if (dgbl == NULL)
        return 0;
    old = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;public);
    if ((r = CRYPTO_THREAD_set_local(&amp;dgbl-&gt;public, rand)) &gt; 0)
        EVP_RAND_CTX_free(old);
    return r;
}

int RAND_set0_private(OSSL_LIB_CTX *ctx, EVP_RAND_CTX *rand)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);
    EVP_RAND_CTX *old;
    int r;

    if (dgbl == NULL)
        return 0;
    old = CRYPTO_THREAD_get_local(&amp;dgbl-&gt;private);
    if ((r = CRYPTO_THREAD_set_local(&amp;dgbl-&gt;private, rand)) &gt; 0)
        EVP_RAND_CTX_free(old);
    return r;
}

#ifndef FIPS_MODULE
static int random_set_string(char **p, const char *s)
{
    char *d = NULL;

    if (s != NULL) {
        d = OPENSSL_strdup(s);
        if (d == NULL)
            return 0;
    }
    OPENSSL_free(*p);
    *p = d;
    return 1;
}

/*
 * Load the DRBG definitions from a configuration file.
 */
static int random_conf_init(CONF_IMODULE *md, const CONF *cnf)
{
    STACK_OF(CONF_VALUE) *elist;
    CONF_VALUE *cval;
    RAND_GLOBAL *dgbl = rand_get_global(NCONF_get0_libctx((CONF *)cnf));
    int i, r = 1;

    OSSL_TRACE1(CONF, "Loading random module: section %s\n",
                CONF_imodule_get_value(md));

    /* Value is a section containing RANDOM configuration */
    elist = NCONF_get_section(cnf, CONF_imodule_get_value(md));
    if (elist == NULL) {
        ERR_raise(ERR_LIB_CRYPTO, CRYPTO_R_RANDOM_SECTION_ERROR);
        return 0;
    }

    if (dgbl == NULL)
        return 0;

    for (i = 0; i &lt; sk_CONF_VALUE_num(elist); i++) {
        cval = sk_CONF_VALUE_value(elist, i);
        if (OPENSSL_strcasecmp(cval-&gt;name, "random") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;rng_name, cval-&gt;value))
                return 0;
        } else if (OPENSSL_strcasecmp(cval-&gt;name, "cipher") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;rng_cipher, cval-&gt;value))
                return 0;
        } else if (OPENSSL_strcasecmp(cval-&gt;name, "digest") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;rng_digest, cval-&gt;value))
                return 0;
        } else if (OPENSSL_strcasecmp(cval-&gt;name, "properties") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;rng_propq, cval-&gt;value))
                return 0;
        } else if (OPENSSL_strcasecmp(cval-&gt;name, "seed") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;seed_name, cval-&gt;value))
                return 0;
        } else if (OPENSSL_strcasecmp(cval-&gt;name, "seed_properties") == 0) {
            if (!random_set_string(&amp;dgbl-&gt;seed_propq, cval-&gt;value))
                return 0;
        } else {
            ERR_raise_data(ERR_LIB_CRYPTO,
                           CRYPTO_R_UNKNOWN_NAME_IN_RANDOM_SECTION,
                           "name=%s, value=%s", cval-&gt;name, cval-&gt;value);
            r = 0;
        }
    }
    return r;
}


static void random_conf_deinit(CONF_IMODULE *md)
{
    OSSL_TRACE(CONF, "Cleaned up random\n");
}

void ossl_random_add_conf_module(void)
{
    OSSL_TRACE(CONF, "Adding config module 'random'\n");
    CONF_module_add("random", random_conf_init, random_conf_deinit);
}

int RAND_set_DRBG_type(OSSL_LIB_CTX *ctx, const char *drbg, const char *propq,
                       const char *cipher, const char *digest)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);

    if (dgbl == NULL)
        return 0;
    if (dgbl-&gt;primary != NULL) {
        ERR_raise(ERR_LIB_CRYPTO, RAND_R_ALREADY_INSTANTIATED);
        return 0;
    }
    return random_set_string(&amp;dgbl-&gt;rng_name, drbg)
        &amp;&amp; random_set_string(&amp;dgbl-&gt;rng_propq, propq)
        &amp;&amp; random_set_string(&amp;dgbl-&gt;rng_cipher, cipher)
        &amp;&amp; random_set_string(&amp;dgbl-&gt;rng_digest, digest);
}

int RAND_set_seed_source_type(OSSL_LIB_CTX *ctx, const char *seed,
                              const char *propq)
{
    RAND_GLOBAL *dgbl = rand_get_global(ctx);

    if (dgbl == NULL)
        return 0;
    if (dgbl-&gt;seed != NULL) {
        ERR_raise(ERR_LIB_CRYPTO, RAND_R_ALREADY_INSTANTIATED);
        return 0;
    }
    return random_set_string(&amp;dgbl-&gt;seed_name, seed)
        &amp;&amp; random_set_string(&amp;dgbl-&gt;seed_propq, propq);
}

#endif
</file>
  <file fpath="/out/src/openssl/crypto/sparse_array.c">/*
 * Copyright 2019-2022 The OpenSSL Project Authors. All Rights Reserved.
 * Copyright (c) 2019, Oracle and/or its affiliates.  All rights reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include &lt;openssl/crypto.h&gt;
#include &lt;openssl/bn.h&gt;
#include "crypto/sparse_array.h"

/*
 * How many bits are used to index each level in the tree structure?
 * This setting determines the number of pointers stored in each node of the
 * tree used to represent the sparse array.  Having more pointers reduces the
 * depth of the tree but potentially wastes more memory.  That is, this is a
 * direct space versus time tradeoff.
 *
 * The default is to use four bits which means that there are 16
 * pointers in each tree node.
 *
 * The library builder is also permitted to define other sizes in the closed
 * interval [2, sizeof(ossl_uintmax_t) * 8].  Space use generally scales
 * exponentially with the block size, although the implementation only
 * creates enough blocks to support the largest used index.  The depth is:
 *      ceil(log_2(largest index) / 2^{block size})
 * E.g. with a block size of 4, and a largest index of 1000, the depth
 * will be three.
 */
#ifndef OPENSSL_SA_BLOCK_BITS
# define OPENSSL_SA_BLOCK_BITS           4
#elif OPENSSL_SA_BLOCK_BITS &lt; 2 || OPENSSL_SA_BLOCK_BITS &gt; (BN_BITS2 - 1)
# error OPENSSL_SA_BLOCK_BITS is out of range
#endif

/*
 * From the number of bits, work out:
 *    the number of pointers in a tree node;
 *    a bit mask to quickly extract an index and
 *    the maximum depth of the tree structure.
  */
#define SA_BLOCK_MAX            (1 &lt;&lt; OPENSSL_SA_BLOCK_BITS)
#define SA_BLOCK_MASK           (SA_BLOCK_MAX - 1)
#define SA_BLOCK_MAX_LEVELS     (((int)sizeof(ossl_uintmax_t) * 8 \
                                  + OPENSSL_SA_BLOCK_BITS - 1) \
                                 / OPENSSL_SA_BLOCK_BITS)

struct sparse_array_st {
    int levels;
    ossl_uintmax_t top;
    size_t nelem;
    void **nodes;
};

OPENSSL_SA *ossl_sa_new(void)
{
    OPENSSL_SA *res = OPENSSL_zalloc(sizeof(*res));

    return res;
}

static void sa_doall(const OPENSSL_SA *sa, void (*node)(void **),
                     void (*leaf)(ossl_uintmax_t, void *, void *), void *arg)
{
    int i[SA_BLOCK_MAX_LEVELS];
    void *nodes[SA_BLOCK_MAX_LEVELS];
    ossl_uintmax_t idx = 0;
    int l = 0;

    i[0] = 0;
    nodes[0] = sa-&gt;nodes;
    while (l &gt;= 0) {
        const int n = i[l];
        void ** const p = nodes[l];

        if (n &gt;= SA_BLOCK_MAX) {
            if (p != NULL &amp;&amp; node != NULL)
                (*node)(p);
            l--;
            idx &gt;&gt;= OPENSSL_SA_BLOCK_BITS;
        } else {
            i[l] = n + 1;
            if (p != NULL &amp;&amp; p[n] != NULL) {
                idx = (idx &amp; ~SA_BLOCK_MASK) | n;
                if (l &lt; sa-&gt;levels - 1) {
                    i[++l] = 0;
                    nodes[l] = p[n];
                    idx &lt;&lt;= OPENSSL_SA_BLOCK_BITS;
                } else if (leaf != NULL) {
                    (*leaf)(idx, p[n], arg);
                }
            }
        }
    }
}

static void sa_free_node(void **p)
{
    OPENSSL_free(p);
}

static void sa_free_leaf(ossl_uintmax_t n, void *p, void *arg)
{
    OPENSSL_free(p);
}

void ossl_sa_free(OPENSSL_SA *sa)
{
    if (sa != NULL) {
        sa_doall(sa, &amp;sa_free_node, NULL, NULL);
        OPENSSL_free(sa);
    }
}

void ossl_sa_free_leaves(OPENSSL_SA *sa)
{
    sa_doall(sa, &amp;sa_free_node, &amp;sa_free_leaf, NULL);
    OPENSSL_free(sa);
}

/* Wrap this in a structure to avoid compiler warnings */
struct trampoline_st {
    void (*func)(ossl_uintmax_t, void *);
};

static void trampoline(ossl_uintmax_t n, void *l, void *arg)
{
    ((const struct trampoline_st *)arg)-&gt;func(n, l);
}

void ossl_sa_doall(const OPENSSL_SA *sa, void (*leaf)(ossl_uintmax_t, void *))
{
    struct trampoline_st tramp;

    tramp.func = leaf;
    if (sa != NULL)
        sa_doall(sa, NULL, &amp;trampoline, &amp;tramp);
}

void ossl_sa_doall_arg(const OPENSSL_SA *sa,
                          void (*leaf)(ossl_uintmax_t, void *, void *),
                          void *arg)
{
    if (sa != NULL)
        sa_doall(sa, NULL, leaf, arg);
}

size_t ossl_sa_num(const OPENSSL_SA *sa)
{
    return sa == NULL ? 0 : sa-&gt;nelem;
}

void *ossl_sa_get(const OPENSSL_SA *sa, ossl_uintmax_t n)
{
    int level;
    void **p, *r = NULL;

    if (sa == NULL || sa-&gt;nelem == 0)
        return NULL;

    if (n &lt;= sa-&gt;top) {
        p = sa-&gt;nodes;
        for (level = sa-&gt;levels - 1; p != NULL &amp;&amp; level &gt; 0; level--)
            p = (void **)p[(n &gt;&gt; (OPENSSL_SA_BLOCK_BITS * level))
                           &amp; SA_BLOCK_MASK];
        r = p == NULL ? NULL : p[n &amp; SA_BLOCK_MASK];
    }
    return r;
}

static ossl_inline void **alloc_node(void)
{
    return OPENSSL_zalloc(SA_BLOCK_MAX * sizeof(void *));
}

int ossl_sa_set(OPENSSL_SA *sa, ossl_uintmax_t posn, void *val)
{
    int i, level = 1;
    ossl_uintmax_t n = posn;
    void **p;

    if (sa == NULL)
        return 0;

    for (level = 1; level &lt; SA_BLOCK_MAX_LEVELS; level++)
        if ((n &gt;&gt;= OPENSSL_SA_BLOCK_BITS) == 0)
            break;

    for (;sa-&gt;levels &lt; level; sa-&gt;levels++) {
        p = alloc_node();
        if (p == NULL)
            return 0;
        p[0] = sa-&gt;nodes;
        sa-&gt;nodes = p;
    }
    if (sa-&gt;top &lt; posn)
        sa-&gt;top = posn;

    p = sa-&gt;nodes;
    for (level = sa-&gt;levels - 1; level &gt; 0; level--) {
        i = (posn &gt;&gt; (OPENSSL_SA_BLOCK_BITS * level)) &amp; SA_BLOCK_MASK;
        if (p[i] == NULL &amp;&amp; (p[i] = alloc_node()) == NULL)
            return 0;
        p = p[i];
    }
    p += posn &amp; SA_BLOCK_MASK;
    if (val == NULL &amp;&amp; *p != NULL)
        sa-&gt;nelem--;
    else if (val != NULL &amp;&amp; *p == NULL)
        sa-&gt;nelem++;
    *p = val;
    return 1;
}
</file>
  <file fpath="/out/src/openssl/crypto/threads_pthread.c">/*
 * Copyright 2016-2023 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

/* We need to use the OPENSSL_fork_*() deprecated APIs */
#define OPENSSL_SUPPRESS_DEPRECATED

#include &lt;openssl/crypto.h&gt;
#include &lt;crypto/cryptlib.h&gt;
#include "internal/cryptlib.h"
#include "internal/rcu.h"
#include "rcu_internal.h"

#if defined(__sun)
# include &lt;atomic.h&gt;
#endif

#if defined(__apple_build_version__) &amp;&amp; __apple_build_version__ &lt; 6000000
/*
 * OS/X 10.7 and 10.8 had a weird version of clang which has __ATOMIC_ACQUIRE and
 * __ATOMIC_ACQ_REL but which expects only one parameter for __atomic_is_lock_free()
 * rather than two which has signature __atomic_is_lock_free(sizeof(_Atomic(T))).
 * All of this makes impossible to use __atomic_is_lock_free here.
 *
 * See: https://github.com/llvm/llvm-project/commit/a4c2602b714e6c6edb98164550a5ae829b2de760
 */
#define BROKEN_CLANG_ATOMICS
#endif

#if defined(OPENSSL_THREADS) &amp;&amp; !defined(CRYPTO_TDEBUG) &amp;&amp; !defined(OPENSSL_SYS_WINDOWS)

# if defined(OPENSSL_SYS_UNIX)
#  include &lt;sys/types.h&gt;
#  include &lt;unistd.h&gt;
#endif

# include &lt;assert.h&gt;

# ifdef PTHREAD_RWLOCK_INITIALIZER
#  define USE_RWLOCK
# endif

# if defined(__GNUC__) &amp;&amp; defined(__ATOMIC_ACQUIRE) &amp;&amp; !defined(BROKEN_CLANG_ATOMICS)
# define ATOMIC_LOAD_N(p,o) __atomic_load_n(p, o)
# define ATOMIC_STORE_N(p, v, o) __atomic_store_n(p, v, o)
# define ATOMIC_STORE(p, v, o) __atomic_store(p, v, o)
# define ATOMIC_EXCHANGE_N(p, v, o) __atomic_exchange_n(p, v, o)
# define ATOMIC_ADD_FETCH(p, v, o) __atomic_add_fetch(p, v, o)
# define ATOMIC_FETCH_ADD(p, v, o) __atomic_fetch_add(p, v, o)
# define ATOMIC_SUB_FETCH(p, v, o) __atomic_sub_fetch(p, v, o)
# define ATOMIC_AND_FETCH(p, m, o) __atomic_and_fetch(p, m, o)
# define ATOMIC_OR_FETCH(p, m, o) __atomic_or_fetch(p, m, o)
#else
static pthread_mutex_t atomic_sim_lock = PTHREAD_MUTEX_INITIALIZER;

static inline void *fallback_atomic_load_n(void **p)
{
    void *ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    ret = *(void **)p;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_LOAD_N(p, o) fallback_atomic_load_n((void **)p)

static inline void *fallback_atomic_store_n(void **p, void *v)
{
    void *ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    ret = *p;
    *p = v;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_STORE_N(p, v, o) fallback_atomic_store_n((void **)p, (void *)v)

static inline void fallback_atomic_store(void **p, void **v)
{
    void *ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    ret = *p;
    *p = *v;
    v = ret;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
}

# define ATOMIC_STORE(p, v, o) fallback_atomic_store((void **)p, (void **)v)

static inline void *fallback_atomic_exchange_n(void **p, void *v)
{
    void *ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    ret = *p;
    *p = v;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

#define ATOMIC_EXCHANGE_N(p, v, o) fallback_atomic_exchange_n((void **)p, (void *)v)

static inline uint64_t fallback_atomic_add_fetch(uint64_t *p, uint64_t v)
{
    uint64_t ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    *p += v;
    ret = *p;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_ADD_FETCH(p, v, o) fallback_atomic_add_fetch(p, v)

static inline uint64_t fallback_atomic_fetch_add(uint64_t *p, uint64_t v)
{
    uint64_t ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    ret = *p;
    *p += v;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_FETCH_ADD(p, v, o) fallback_atomic_fetch_add(p, v)

static inline uint64_t fallback_atomic_sub_fetch(uint64_t *p, uint64_t v)
{
    uint64_t ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    *p -= v;
    ret = *p;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_SUB_FETCH(p, v, o) fallback_atomic_sub_fetch(p, v)

static inline uint64_t fallback_atomic_and_fetch(uint64_t *p, uint64_t m)
{
    uint64_t ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    *p &amp;= m;
    ret = *p;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_AND_FETCH(p, v, o) fallback_atomic_and_fetch(p, v)

static inline uint64_t fallback_atomic_or_fetch(uint64_t *p, uint64_t m)
{
    uint64_t ret;

    pthread_mutex_lock(&amp;atomic_sim_lock);
    *p |= m;
    ret = *p;
    pthread_mutex_unlock(&amp;atomic_sim_lock);
    return ret;
}

# define ATOMIC_OR_FETCH(p, v, o) fallback_atomic_or_fetch(p, v)
#endif

static CRYPTO_THREAD_LOCAL rcu_thr_key;

/*
 * users is broken up into 2 parts
 * bits 0-15 current readers
 * bit 32-63 - ID
 */
# define READER_SHIFT 0
# define ID_SHIFT 32
# define READER_SIZE 16
# define ID_SIZE 32

# define READER_MASK     (((uint64_t)1 &lt;&lt; READER_SIZE) - 1)
# define ID_MASK         (((uint64_t)1 &lt;&lt; ID_SIZE) - 1)
# define READER_COUNT(x) (((uint64_t)(x) &gt;&gt; READER_SHIFT) &amp; READER_MASK)
# define ID_VAL(x)       (((uint64_t)(x) &gt;&gt; ID_SHIFT) &amp; ID_MASK)
# define VAL_READER      ((uint64_t)1 &lt;&lt; READER_SHIFT)
# define VAL_ID(x)       ((uint64_t)x &lt;&lt; ID_SHIFT)

/*
 * This is the core of an rcu lock. It tracks the readers and writers for the
 * current quiescence point for a given lock. Users is the 64 bit value that
 * stores the READERS/ID as defined above
 *
 */
struct rcu_qp {
    uint64_t users;
};

struct thread_qp {
    struct rcu_qp *qp;
    unsigned int depth;
    CRYPTO_RCU_LOCK *lock;
};

#define MAX_QPS 10
/*
 * This is the per thread tracking data
 * that is assigned to each thread participating
 * in an rcu qp
 *
 * qp points to the qp that it last acquired
 *
 */
struct rcu_thr_data {
    struct thread_qp thread_qps[MAX_QPS];
};

/*
 * This is the internal version of a CRYPTO_RCU_LOCK
 * it is cast from CRYPTO_RCU_LOCK
 */
struct rcu_lock_st {
    /* Callbacks to call for next ossl_synchronize_rcu */
    struct rcu_cb_item *cb_items;

    /* rcu generation counter for in-order retirement */
    uint32_t id_ctr;

    /* Array of quiescent points for synchronization */
    struct rcu_qp *qp_group;

    /* Number of elements in qp_group array */
    size_t group_count;

    /* Index of the current qp in the qp_group array */
    uint64_t reader_idx;

    /* value of the next id_ctr value to be retired */
    uint32_t next_to_retire;

    /* index of the next free rcu_qp in the qp_group */
    uint64_t current_alloc_idx;

    /* number of qp's in qp_group array currently being retired */
    uint32_t writers_alloced;

    /* lock protecting write side operations */
    pthread_mutex_t write_lock;

    /* lock protecting updates to writers_alloced/current_alloc_idx */
    pthread_mutex_t alloc_lock;

    /* signal to wake threads waiting on alloc_lock */
    pthread_cond_t alloc_signal;

    /* lock to enforce in-order retirement */
    pthread_mutex_t prior_lock;

    /* signal to wake threads waiting on prior_lock */
    pthread_cond_t prior_signal;
};

/*
 * Called on thread exit to free the pthread key
 * associated with this thread, if any
 */
static void free_rcu_thr_data(void *ptr)
{
    struct rcu_thr_data *data =
                        (struct rcu_thr_data *)CRYPTO_THREAD_get_local(&amp;rcu_thr_key);

    OPENSSL_free(data);
    CRYPTO_THREAD_set_local(&amp;rcu_thr_key, NULL);
}

static void ossl_rcu_init(void)
{
    CRYPTO_THREAD_init_local(&amp;rcu_thr_key, NULL);
}

/* Read side acquisition of the current qp */
static struct rcu_qp *get_hold_current_qp(struct rcu_lock_st *lock)
{
    uint64_t qp_idx;

    /* get the current qp index */
    for (;;) {
        /*
         * Notes on use of __ATOMIC_ACQUIRE
         * We need to ensure the following:
         * 1) That subsequent operations aren't optimized by hoisting them above
         * this operation.  Specifically, we don't want the below re-load of
         * qp_idx to get optimized away
         * 2) We want to ensure that any updating of reader_idx on the write side
         * of the lock is flushed from a local cpu cache so that we see any
         * updates prior to the load.  This is a non-issue on cache coherent
         * systems like x86, but is relevant on other arches
         * Note: This applies to the reload below as well
         */
        qp_idx = (uint64_t)ATOMIC_LOAD_N(&amp;lock-&gt;reader_idx, __ATOMIC_ACQUIRE);

        /*
         * Notes of use of __ATOMIC_RELEASE
         * This counter is only read by the write side of the lock, and so we
         * specify __ATOMIC_RELEASE here to ensure that the write side of the
         * lock see this during the spin loop read of users, as it waits for the
         * reader count to approach zero
         */
        ATOMIC_ADD_FETCH(&amp;lock-&gt;qp_group[qp_idx].users, VAL_READER,
                         __ATOMIC_RELEASE);

        /* if the idx hasn't changed, we're good, else try again */
        if (qp_idx == (uint64_t)ATOMIC_LOAD_N(&amp;lock-&gt;reader_idx, __ATOMIC_ACQUIRE))
            break;

        /*
         * Notes on use of __ATOMIC_RELEASE
         * As with the add above, we want to ensure that this decrement is
         * seen by the write side of the lock as soon as it happens to prevent
         * undue spinning waiting for write side completion
         */
        ATOMIC_SUB_FETCH(&amp;lock-&gt;qp_group[qp_idx].users, VAL_READER,
                         __ATOMIC_RELEASE);
    }

    return &amp;lock-&gt;qp_group[qp_idx];
}

void ossl_rcu_read_lock(CRYPTO_RCU_LOCK *lock)
{
    struct rcu_thr_data *data;
    int i, available_qp = -1;

    /*
     * we're going to access current_qp here so ask the
     * processor to fetch it
     */
    data = CRYPTO_THREAD_get_local(&amp;rcu_thr_key);

    if (data == NULL) {
        data = OPENSSL_zalloc(sizeof(*data));
        OPENSSL_assert(data != NULL);
        CRYPTO_THREAD_set_local(&amp;rcu_thr_key, data);
        ossl_init_thread_start(NULL, NULL, free_rcu_thr_data);
    }

    for (i = 0; i &lt; MAX_QPS; i++) {
        if (data-&gt;thread_qps[i].qp == NULL &amp;&amp; available_qp == -1)
            available_qp = i;
        /* If we have a hold on this lock already, we're good */
        if (data-&gt;thread_qps[i].lock == lock) {
            data-&gt;thread_qps[i].depth++;
            return;
        }
    }

    /*
     * if we get here, then we don't have a hold on this lock yet
     */
    assert(available_qp != -1);

    data-&gt;thread_qps[available_qp].qp = get_hold_current_qp(lock);
    data-&gt;thread_qps[available_qp].depth = 1;
    data-&gt;thread_qps[available_qp].lock = lock;
}

void ossl_rcu_read_unlock(CRYPTO_RCU_LOCK *lock)
{
    int i;
    struct rcu_thr_data *data = CRYPTO_THREAD_get_local(&amp;rcu_thr_key);
    uint64_t ret;

    assert(data != NULL);

    for (i = 0; i &lt; MAX_QPS; i++) {
        if (data-&gt;thread_qps[i].lock == lock) {
            /*
             * As with read side acquisition, we use __ATOMIC_RELEASE here
             * to ensure that the decrement is published immediately
             * to any write side waiters
             */
            data-&gt;thread_qps[i].depth--;
            if (data-&gt;thread_qps[i].depth == 0) {
                ret = ATOMIC_SUB_FETCH(&amp;data-&gt;thread_qps[i].qp-&gt;users, VAL_READER,
                                       __ATOMIC_RELEASE);
                OPENSSL_assert(ret != UINT64_MAX);
                data-&gt;thread_qps[i].qp = NULL;
                data-&gt;thread_qps[i].lock = NULL;
            }
            return;
        }
    }
    /*
     * If we get here, we're trying to unlock a lock that we never acquired -
     * that's fatal.
     */
    assert(0);
}

/*
 * Write side allocation routine to get the current qp
 * and replace it with a new one
 */
static struct rcu_qp *update_qp(CRYPTO_RCU_LOCK *lock)
{
    uint64_t new_id;
    uint64_t current_idx;

    pthread_mutex_lock(&amp;lock-&gt;alloc_lock);

    /*
     * we need at least one qp to be available with one
     * left over, so that readers can start working on
     * one that isn't yet being waited on
     */
    while (lock-&gt;group_count - lock-&gt;writers_alloced &lt; 2)
        /* we have to wait for one to be free */
        pthread_cond_wait(&amp;lock-&gt;alloc_signal, &amp;lock-&gt;alloc_lock);

    current_idx = lock-&gt;current_alloc_idx;

    /* Allocate the qp */
    lock-&gt;writers_alloced++;

    /* increment the allocation index */
    lock-&gt;current_alloc_idx =
        (lock-&gt;current_alloc_idx + 1) % lock-&gt;group_count;

    /* get and insert a new id */
    new_id = lock-&gt;id_ctr;
    lock-&gt;id_ctr++;

    new_id = VAL_ID(new_id);
    /*
     * Even though we are under a write side lock here
     * We need to use atomic instructions to ensure that the results
     * of this update are published to the read side prior to updating the
     * reader idx below
     */
    ATOMIC_AND_FETCH(&amp;lock-&gt;qp_group[current_idx].users, ID_MASK,
                     __ATOMIC_RELEASE);
    ATOMIC_OR_FETCH(&amp;lock-&gt;qp_group[current_idx].users, new_id,
                    __ATOMIC_RELEASE);

    /*
     * Update the reader index to be the prior qp.
     * Note the use of __ATOMIC_RELEASE here is based on the corresponding use
     * of __ATOMIC_ACQUIRE in get_hold_current_qp, as we want any publication
     * of this value to be seen on the read side immediately after it happens
     */
    ATOMIC_STORE_N(&amp;lock-&gt;reader_idx, lock-&gt;current_alloc_idx,
                   __ATOMIC_RELEASE);

    /* wake up any waiters */
    pthread_cond_signal(&amp;lock-&gt;alloc_signal);
    pthread_mutex_unlock(&amp;lock-&gt;alloc_lock);
    return &amp;lock-&gt;qp_group[current_idx];
}

static void retire_qp(CRYPTO_RCU_LOCK *lock, struct rcu_qp *qp)
{
    pthread_mutex_lock(&amp;lock-&gt;alloc_lock);
    lock-&gt;writers_alloced--;
    pthread_cond_signal(&amp;lock-&gt;alloc_signal);
    pthread_mutex_unlock(&amp;lock-&gt;alloc_lock);
}

static struct rcu_qp *allocate_new_qp_group(CRYPTO_RCU_LOCK *lock,
                                            int count)
{
    struct rcu_qp *new =
        OPENSSL_zalloc(sizeof(*new) * count);

    lock-&gt;group_count = count;
    return new;
}

void ossl_rcu_write_lock(CRYPTO_RCU_LOCK *lock)
{
    pthread_mutex_lock(&amp;lock-&gt;write_lock);
}

void ossl_rcu_write_unlock(CRYPTO_RCU_LOCK *lock)
{
    pthread_mutex_unlock(&amp;lock-&gt;write_lock);
}

void ossl_synchronize_rcu(CRYPTO_RCU_LOCK *lock)
{
    struct rcu_qp *qp;
    uint64_t count;
    struct rcu_cb_item *cb_items, *tmpcb;

    /*
     * __ATOMIC_ACQ_REL is used here to ensure that we get any prior published
     * writes before we read, and publish our write immediately
     */
    cb_items = ATOMIC_EXCHANGE_N(&amp;lock-&gt;cb_items, NULL, __ATOMIC_ACQ_REL);

    qp = update_qp(lock);

    /*
     * wait for the reader count to reach zero
     * Note the use of __ATOMIC_ACQUIRE here to ensure that any
     * prior __ATOMIC_RELEASE write operation in get_hold_current_qp
     * is visible prior to our read
     */
    do {
        count = (uint64_t)ATOMIC_LOAD_N(&amp;qp-&gt;users, __ATOMIC_ACQUIRE);
    } while (READER_COUNT(count) != 0);

    /* retire in order */
    pthread_mutex_lock(&amp;lock-&gt;prior_lock);
    while (lock-&gt;next_to_retire != ID_VAL(count))
        pthread_cond_wait(&amp;lock-&gt;prior_signal, &amp;lock-&gt;prior_lock);
    lock-&gt;next_to_retire++;
    pthread_cond_broadcast(&amp;lock-&gt;prior_signal);
    pthread_mutex_unlock(&amp;lock-&gt;prior_lock);

    retire_qp(lock, qp);

    /* handle any callbacks that we have */
    while (cb_items != NULL) {
        tmpcb = cb_items;
        cb_items = cb_items-&gt;next;
        tmpcb-&gt;fn(tmpcb-&gt;data);
        OPENSSL_free(tmpcb);
    }
}

int ossl_rcu_call(CRYPTO_RCU_LOCK *lock, rcu_cb_fn cb, void *data)
{
    struct rcu_cb_item *new =
        OPENSSL_zalloc(sizeof(*new));

    if (new == NULL)
        return 0;

    new-&gt;data = data;
    new-&gt;fn = cb;
    /*
     * Use __ATOMIC_ACQ_REL here to indicate that any prior writes to this
     * list are visible to us prior to reading, and publish the new value
     * immediately
     */
    new-&gt;next = ATOMIC_EXCHANGE_N(&amp;lock-&gt;cb_items, new, __ATOMIC_ACQ_REL);

    return 1;
}

void *ossl_rcu_uptr_deref(void **p)
{
    return (void *)ATOMIC_LOAD_N(p, __ATOMIC_ACQUIRE);
}

void ossl_rcu_assign_uptr(void **p, void **v)
{
    ATOMIC_STORE(p, v, __ATOMIC_RELEASE);
}

static CRYPTO_ONCE rcu_init_once = CRYPTO_ONCE_STATIC_INIT;

CRYPTO_RCU_LOCK *ossl_rcu_lock_new(int num_writers)
{
    struct rcu_lock_st *new;

    if (!CRYPTO_THREAD_run_once(&amp;rcu_init_once, ossl_rcu_init))
        return NULL;

    if (num_writers &lt; 1)
        num_writers = 1;

    new = OPENSSL_zalloc(sizeof(*new));
    if (new == NULL)
        return NULL;

    pthread_mutex_init(&amp;new-&gt;write_lock, NULL);
    pthread_mutex_init(&amp;new-&gt;prior_lock, NULL);
    pthread_mutex_init(&amp;new-&gt;alloc_lock, NULL);
    pthread_cond_init(&amp;new-&gt;prior_signal, NULL);
    pthread_cond_init(&amp;new-&gt;alloc_signal, NULL);
    new-&gt;qp_group = allocate_new_qp_group(new, num_writers + 1);
    if (new-&gt;qp_group == NULL) {
        OPENSSL_free(new);
        new = NULL;
    }
    return new;
}

void ossl_rcu_lock_free(CRYPTO_RCU_LOCK *lock)
{
    struct rcu_lock_st *rlock = (struct rcu_lock_st *)lock;

    if (lock == NULL)
        return;

    /* make sure we're synchronized */
    ossl_synchronize_rcu(rlock);

    OPENSSL_free(rlock-&gt;qp_group);
    /* There should only be a single qp left now */
    OPENSSL_free(rlock);
}

CRYPTO_RWLOCK *CRYPTO_THREAD_lock_new(void)
{
# ifdef USE_RWLOCK
    CRYPTO_RWLOCK *lock;

    if ((lock = OPENSSL_zalloc(sizeof(pthread_rwlock_t))) == NULL)
        /* Don't set error, to avoid recursion blowup. */
        return NULL;

    if (pthread_rwlock_init(lock, NULL) != 0) {
        OPENSSL_free(lock);
        return NULL;
    }
# else
    pthread_mutexattr_t attr;
    CRYPTO_RWLOCK *lock;

    if ((lock = OPENSSL_zalloc(sizeof(pthread_mutex_t))) == NULL)
        /* Don't set error, to avoid recursion blowup. */
        return NULL;

    /*
     * We don't use recursive mutexes, but try to catch errors if we do.
     */
    pthread_mutexattr_init(&amp;attr);
#  if !defined (__TANDEM) &amp;&amp; !defined (_SPT_MODEL_)
#   if !defined(NDEBUG) &amp;&amp; !defined(OPENSSL_NO_MUTEX_ERRORCHECK)
    pthread_mutexattr_settype(&amp;attr, PTHREAD_MUTEX_ERRORCHECK);
#   endif
#  else
    /* The SPT Thread Library does not define MUTEX attributes. */
#  endif

    if (pthread_mutex_init(lock, &amp;attr) != 0) {
        pthread_mutexattr_destroy(&amp;attr);
        OPENSSL_free(lock);
        return NULL;
    }

    pthread_mutexattr_destroy(&amp;attr);
# endif

    return lock;
}

__owur int CRYPTO_THREAD_read_lock(CRYPTO_RWLOCK *lock)
{
# ifdef USE_RWLOCK
    if (pthread_rwlock_rdlock(lock) != 0)
        return 0;
# else
    if (pthread_mutex_lock(lock) != 0) {
        assert(errno != EDEADLK &amp;&amp; errno != EBUSY);
        return 0;
    }
# endif

    return 1;
}

__owur int CRYPTO_THREAD_write_lock(CRYPTO_RWLOCK *lock)
{
# ifdef USE_RWLOCK
    if (pthread_rwlock_wrlock(lock) != 0)
        return 0;
# else
    if (pthread_mutex_lock(lock) != 0) {
        assert(errno != EDEADLK &amp;&amp; errno != EBUSY);
        return 0;
    }
# endif

    return 1;
}

int CRYPTO_THREAD_unlock(CRYPTO_RWLOCK *lock)
{
# ifdef USE_RWLOCK
    if (pthread_rwlock_unlock(lock) != 0)
        return 0;
# else
    if (pthread_mutex_unlock(lock) != 0) {
        assert(errno != EPERM);
        return 0;
    }
# endif

    return 1;
}

void CRYPTO_THREAD_lock_free(CRYPTO_RWLOCK *lock)
{
    if (lock == NULL)
        return;

# ifdef USE_RWLOCK
    pthread_rwlock_destroy(lock);
# else
    pthread_mutex_destroy(lock);
# endif
    OPENSSL_free(lock);

    return;
}

int CRYPTO_THREAD_run_once(CRYPTO_ONCE *once, void (*init)(void))
{
    if (pthread_once(once, init) != 0)
        return 0;

    return 1;
}

int CRYPTO_THREAD_init_local(CRYPTO_THREAD_LOCAL *key, void (*cleanup)(void *))
{
    if (pthread_key_create(key, cleanup) != 0)
        return 0;

    return 1;
}

void *CRYPTO_THREAD_get_local(CRYPTO_THREAD_LOCAL *key)
{
    return pthread_getspecific(*key);
}

int CRYPTO_THREAD_set_local(CRYPTO_THREAD_LOCAL *key, void *val)
{
    if (pthread_setspecific(*key, val) != 0)
        return 0;

    return 1;
}

int CRYPTO_THREAD_cleanup_local(CRYPTO_THREAD_LOCAL *key)
{
    if (pthread_key_delete(*key) != 0)
        return 0;

    return 1;
}

CRYPTO_THREAD_ID CRYPTO_THREAD_get_current_id(void)
{
    return pthread_self();
}

int CRYPTO_THREAD_compare_id(CRYPTO_THREAD_ID a, CRYPTO_THREAD_ID b)
{
    return pthread_equal(a, b);
}

int CRYPTO_atomic_add(int *val, int amount, int *ret, CRYPTO_RWLOCK *lock)
{
# if defined(__GNUC__) &amp;&amp; defined(__ATOMIC_ACQ_REL) &amp;&amp; !defined(BROKEN_CLANG_ATOMICS)
    if (__atomic_is_lock_free(sizeof(*val), val)) {
        *ret = __atomic_add_fetch(val, amount, __ATOMIC_ACQ_REL);
        return 1;
    }
# elif defined(__sun) &amp;&amp; (defined(__SunOS_5_10) || defined(__SunOS_5_11))
    /* This will work for all future Solaris versions. */
    if (ret != NULL) {
        *ret = atomic_add_int_nv((volatile unsigned int *)val, amount);
        return 1;
    }
# endif
    if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
        return 0;

    *val += amount;
    *ret  = *val;

    if (!CRYPTO_THREAD_unlock(lock))
        return 0;

    return 1;
}

int CRYPTO_atomic_or(uint64_t *val, uint64_t op, uint64_t *ret,
                     CRYPTO_RWLOCK *lock)
{
# if defined(__GNUC__) &amp;&amp; defined(__ATOMIC_ACQ_REL) &amp;&amp; !defined(BROKEN_CLANG_ATOMICS)
    if (__atomic_is_lock_free(sizeof(*val), val)) {
        *ret = __atomic_or_fetch(val, op, __ATOMIC_ACQ_REL);
        return 1;
    }
# elif defined(__sun) &amp;&amp; (defined(__SunOS_5_10) || defined(__SunOS_5_11))
    /* This will work for all future Solaris versions. */
    if (ret != NULL) {
        *ret = atomic_or_64_nv(val, op);
        return 1;
    }
# endif
    if (lock == NULL || !CRYPTO_THREAD_write_lock(lock))
        return 0;
    *val |= op;
    *ret  = *val;

    if (!CRYPTO_THREAD_unlock(lock))
        return 0;

    return 1;
}

int CRYPTO_atomic_load(uint64_t *val, uint64_t *ret, CRYPTO_RWLOCK *lock)
{
# if defined(__GNUC__) &amp;&amp; defined(__ATOMIC_ACQUIRE) &amp;&amp; !defined(BROKEN_CLANG_ATOMICS)
    if (__atomic_is_lock_free(sizeof(*val), val)) {
        __atomic_load(val, ret, __ATOMIC_ACQUIRE);
        return 1;
    }
# elif defined(__sun) &amp;&amp; (defined(__SunOS_5_10) || defined(__SunOS_5_11))
    /* This will work for all future Solaris versions. */
    if (ret != NULL) {
        *ret = atomic_or_64_nv(val, 0);
        return 1;
    }
# endif
    if (lock == NULL || !CRYPTO_THREAD_read_lock(lock))
        return 0;
    *ret  = *val;
    if (!CRYPTO_THREAD_unlock(lock))
        return 0;

    return 1;
}

int CRYPTO_atomic_load_int(int *val, int *ret, CRYPTO_RWLOCK *lock)
{
# if defined(__GNUC__) &amp;&amp; defined(__ATOMIC_ACQUIRE) &amp;&amp; !defined(BROKEN_CLANG_ATOMICS)
    if (__atomic_is_lock_free(sizeof(*val), val)) {
        __atomic_load(val, ret, __ATOMIC_ACQUIRE);
        return 1;
    }
# elif defined(__sun) &amp;&amp; (defined(__SunOS_5_10) || defined(__SunOS_5_11))
    /* This will work for all future Solaris versions. */
    if (ret != NULL) {
        *ret = (int *)atomic_or_uint_nv((unsigned int *)val, 0);
        return 1;
    }
# endif
    if (lock == NULL || !CRYPTO_THREAD_read_lock(lock))
        return 0;
    *ret  = *val;
    if (!CRYPTO_THREAD_unlock(lock))
        return 0;

    return 1;
}

# ifndef FIPS_MODULE
int openssl_init_fork_handlers(void)
{
    return 1;
}
# endif /* FIPS_MODULE */

int openssl_get_fork_id(void)
{
    return getpid();
}
#endif
</file>
</source-code>
