6 #include "libbcachefs/checksum.h"
8 #include "libbcachefs.h"
10 int cmd_unlock(int argc, char *argv[])
12 struct bch_opts opts = bch2_opts_empty();
13 struct bch_sb_handle sb;
17 die("Please supply a single device");
19 int ret = bch2_read_super(argv[1], &opts, &sb);
21 die("Error opening %s: %s", argv[1], strerror(-ret));
23 passphrase = read_passphrase("Enter passphrase: ");
25 bch2_add_key(sb.sb, passphrase);
27 memzero_explicit(passphrase, strlen(passphrase));
32 int cmd_set_passphrase(int argc, char *argv[])
34 struct bch_opts opts = bch2_opts_empty();
38 die("Please supply one or more devices");
40 opt_set(opts, nostart, true);
41 c = bch2_fs_open(argv + 1, argc - 1, opts);
43 die("Error opening %s: %s", argv[1], strerror(-PTR_ERR(c)));
45 struct bch_sb_field_crypt *crypt = bch2_sb_get_crypt(c->disk_sb);
47 die("Filesystem does not have encryption enabled");
49 struct bch_encrypted_key new_key;
50 new_key.magic = BCH_KEY_MAGIC;
52 int ret = bch2_decrypt_sb_key(c, crypt, &new_key.key);
54 die("Error getting current key");
56 char *new_passphrase = read_passphrase_twice("Enter new passphrase: ");
57 struct bch_key passphrase_key = derive_passphrase(crypt, new_passphrase);
59 if (bch2_chacha_encrypt_key(&passphrase_key, __bch2_sb_key_nonce(c->disk_sb),
60 &new_key, sizeof(new_key)))
61 die("error encrypting key");
69 int cmd_remove_passphrase(int argc, char *argv[])
71 struct bch_opts opts = bch2_opts_empty();
75 die("Please supply one or more devices");
77 opt_set(opts, nostart, true);
78 c = bch2_fs_open(argv + 1, argc - 1, opts);
80 die("Error opening %s: %s", argv[1], strerror(-PTR_ERR(c)));
82 struct bch_sb_field_crypt *crypt = bch2_sb_get_crypt(c->disk_sb);
84 die("Filesystem does not have encryption enabled");
86 struct bch_encrypted_key new_key;
87 new_key.magic = BCH_KEY_MAGIC;
89 int ret = bch2_decrypt_sb_key(c, crypt, &new_key.key);
91 die("Error getting current key");