67bd5401e9
Summary: Cleaned up the public API to use the EncryptedEnv. This change will allow providers to be developed and added to the system easier in the future. It will also allow better integration in the future with the OPTIONS file. - The internal classes were moved out of the public API into an internal "env_encryption_ctr.h" header. Short-cut constructors were added to provide the original API functionality. - The APIs to the constructors were changed to take shared_ptr, rather than raw pointers or references to allow better memory management and alternative implementations. - CreateFromString methods were added to allow future expansion to other provider and cipher implementations through a standard API. Additionally, there was a code duplication in the NewXXXFile methods. This common code was moved under a templatized function. A first-pass at structuring the code was made to potentially allow multiple EncryptionProviders in a single EncryptedEnv. The idea was that different providers may use different cipher keys or different versions/algorithms. The EncryptedEnv should have some means of picking different providers based on information. The groundwork was started for this (the use of the provider_ member variable was localized) but the work has not been completed. Pull Request resolved: https://github.com/facebook/rocksdb/pull/7279 Reviewed By: jay-zhuang Differential Revision: D23709440 Pulled By: zhichao-cao fbshipit-source-id: 0e845fff0e03a52603eb9672b4ade32d063ff2f2
138 lines
5.0 KiB
C++
138 lines
5.0 KiB
C++
// Copyright (c) 2016-present, Facebook, Inc. All rights reserved.
|
|
// This source code is licensed under both the GPLv2 (found in the
|
|
// COPYING file in the root directory) and Apache 2.0 License
|
|
// (found in the LICENSE.Apache file in the root directory).
|
|
|
|
#pragma once
|
|
|
|
#if !defined(ROCKSDB_LITE)
|
|
|
|
#include "rocksdb/env_encryption.h"
|
|
|
|
namespace ROCKSDB_NAMESPACE {
|
|
|
|
// Implements a BlockCipher using ROT13.
|
|
//
|
|
// Note: This is a sample implementation of BlockCipher,
|
|
// it is NOT considered safe and should NOT be used in production.
|
|
class ROT13BlockCipher : public BlockCipher {
|
|
private:
|
|
size_t blockSize_;
|
|
|
|
public:
|
|
ROT13BlockCipher(size_t blockSize) : blockSize_(blockSize) {}
|
|
virtual ~ROT13BlockCipher(){};
|
|
const char* Name() const override;
|
|
// BlockSize returns the size of each block supported by this cipher stream.
|
|
size_t BlockSize() override { return blockSize_; }
|
|
|
|
// Encrypt a block of data.
|
|
// Length of data is equal to BlockSize().
|
|
Status Encrypt(char* data) override;
|
|
|
|
// Decrypt a block of data.
|
|
// Length of data is equal to BlockSize().
|
|
Status Decrypt(char* data) override;
|
|
};
|
|
|
|
// CTRCipherStream implements BlockAccessCipherStream using an
|
|
// Counter operations mode.
|
|
// See https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation
|
|
//
|
|
// Note: This is a possible implementation of BlockAccessCipherStream,
|
|
// it is considered suitable for use.
|
|
class CTRCipherStream final : public BlockAccessCipherStream {
|
|
private:
|
|
std::shared_ptr<BlockCipher> cipher_;
|
|
std::string iv_;
|
|
uint64_t initialCounter_;
|
|
|
|
public:
|
|
CTRCipherStream(const std::shared_ptr<BlockCipher>& c, const char* iv,
|
|
uint64_t initialCounter)
|
|
: cipher_(c), iv_(iv, c->BlockSize()), initialCounter_(initialCounter){};
|
|
virtual ~CTRCipherStream(){};
|
|
|
|
// BlockSize returns the size of each block supported by this cipher stream.
|
|
size_t BlockSize() override { return cipher_->BlockSize(); }
|
|
|
|
protected:
|
|
// Allocate scratch space which is passed to EncryptBlock/DecryptBlock.
|
|
void AllocateScratch(std::string&) override;
|
|
|
|
// Encrypt a block of data at the given block index.
|
|
// Length of data is equal to BlockSize();
|
|
Status EncryptBlock(uint64_t blockIndex, char* data, char* scratch) override;
|
|
|
|
// Decrypt a block of data at the given block index.
|
|
// Length of data is equal to BlockSize();
|
|
Status DecryptBlock(uint64_t blockIndex, char* data, char* scratch) override;
|
|
};
|
|
|
|
// This encryption provider uses a CTR cipher stream, with a given block cipher
|
|
// and IV.
|
|
//
|
|
// Note: This is a possible implementation of EncryptionProvider,
|
|
// it is considered suitable for use, provided a safe BlockCipher is used.
|
|
class CTREncryptionProvider : public EncryptionProvider {
|
|
private:
|
|
std::shared_ptr<BlockCipher> cipher_;
|
|
|
|
protected:
|
|
// For optimal performance when using direct IO, the prefix length should be a
|
|
// multiple of the page size. This size is to ensure the first real data byte
|
|
// is placed at largest known alignment point for direct io.
|
|
const static size_t defaultPrefixLength = 4096;
|
|
|
|
public:
|
|
explicit CTREncryptionProvider(
|
|
const std::shared_ptr<BlockCipher>& c = nullptr)
|
|
: cipher_(c){};
|
|
virtual ~CTREncryptionProvider() {}
|
|
|
|
const char* Name() const override;
|
|
|
|
// GetPrefixLength returns the length of the prefix that is added to every
|
|
// file
|
|
// and used for storing encryption options.
|
|
// For optimal performance when using direct IO, the prefix length should be a
|
|
// multiple of the page size.
|
|
size_t GetPrefixLength() const override;
|
|
|
|
// CreateNewPrefix initialized an allocated block of prefix memory
|
|
// for a new file.
|
|
Status CreateNewPrefix(const std::string& fname, char* prefix,
|
|
size_t prefixLength) const override;
|
|
|
|
// CreateCipherStream creates a block access cipher stream for a file given
|
|
// given name and options.
|
|
Status CreateCipherStream(
|
|
const std::string& fname, const EnvOptions& options, Slice& prefix,
|
|
std::unique_ptr<BlockAccessCipherStream>* result) override;
|
|
|
|
Status AddCipher(const std::string& descriptor, const char* /*cipher*/,
|
|
size_t /*len*/, bool /*for_write*/) override;
|
|
|
|
protected:
|
|
Status TEST_Initialize() override;
|
|
|
|
// PopulateSecretPrefixPart initializes the data into a new prefix block
|
|
// that will be encrypted. This function will store the data in plain text.
|
|
// It will be encrypted later (before written to disk).
|
|
// Returns the amount of space (starting from the start of the prefix)
|
|
// that has been initialized.
|
|
virtual size_t PopulateSecretPrefixPart(char* prefix, size_t prefixLength,
|
|
size_t blockSize) const;
|
|
|
|
// CreateCipherStreamFromPrefix creates a block access cipher stream for a
|
|
// file given
|
|
// given name and options. The given prefix is already decrypted.
|
|
virtual Status CreateCipherStreamFromPrefix(
|
|
const std::string& fname, const EnvOptions& options,
|
|
uint64_t initialCounter, const Slice& iv, const Slice& prefix,
|
|
std::unique_ptr<BlockAccessCipherStream>* result);
|
|
};
|
|
} // namespace ROCKSDB_NAMESPACE
|
|
|
|
#endif // !defined(ROCKSDB_LITE)
|