fs/zfs/zio_checksum.c

168404Spjd/*
168404Spjd * CDDL HEADER START
168404Spjd *
168404Spjd * The contents of this file are subject to the terms of the
168404Spjd * Common Development and Distribution License (the "License").
168404Spjd * You may not use this file except in compliance with the License.
168404Spjd *
168404Spjd * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
168404Spjd * or http://www.opensolaris.org/os/licensing.
168404Spjd * See the License for the specific language governing permissions
168404Spjd * and limitations under the License.
168404Spjd *
168404Spjd * When distributing Covered Code, include this CDDL HEADER in each
168404Spjd * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
168404Spjd * If applicable, add the following below this CDDL HEADER, with the
168404Spjd * fields enclosed by brackets "[]" replaced with your own identifying
168404Spjd * information: Portions Copyright [yyyy] [name of copyright owner]
168404Spjd *
168404Spjd * CDDL HEADER END
168404Spjd */
168404Spjd/*
219089Spjd * Copyright (c) 2005, 2010, Oracle and/or its affiliates. All rights reserved.
290765Smav * Copyright (c) 2013, 2015 by Delphix. All rights reserved.
255750Sdelphij * Copyright (c) 2013, Joyent, Inc. All rights reserved.
290757Smav * Copyright 2013 Saso Kiselkov. All rights reserved.
168404Spjd */
168404Spjd
168404Spjd#include <sys/zfs_context.h>
168404Spjd#include <sys/spa.h>
290757Smav#include <sys/spa_impl.h>
168404Spjd#include <sys/zio.h>
168404Spjd#include <sys/zio_checksum.h>
219089Spjd#include <sys/zil.h>
219089Spjd#include <zfs_fletcher.h>
168404Spjd
168404Spjd/*
168404Spjd * Checksum vectors.
168404Spjd *
168404Spjd * In the SPA, everything is checksummed.  We support checksum vectors
168404Spjd * for three distinct reasons:
168404Spjd *
168404Spjd *   1. Different kinds of data need different levels of protection.
168404Spjd *	For SPA metadata, we always want a very strong checksum.
168404Spjd *	For user data, we let users make the trade-off between speed
168404Spjd *	and checksum strength.
168404Spjd *
168404Spjd *   2. Cryptographic hash and MAC algorithms are an area of active research.
168404Spjd *	It is likely that in future hash functions will be at least as strong
168404Spjd *	as current best-of-breed, and may be substantially faster as well.
168404Spjd *	We want the ability to take advantage of these new hashes as soon as
168404Spjd *	they become available.
168404Spjd *
168404Spjd *   3. If someone develops hardware that can compute a strong hash quickly,
168404Spjd *	we want the ability to take advantage of that hardware.
168404Spjd *
168404Spjd * Of course, we don't want a checksum upgrade to invalidate existing
219089Spjd * data, so we store the checksum *function* in eight bits of the bp.
219089Spjd * This gives us room for up to 256 different checksum functions.
168404Spjd *
168404Spjd * When writing a block, we always checksum it with the latest-and-greatest
168404Spjd * checksum function of the appropriate strength.  When reading a block,
168404Spjd * we compare the expected checksum against the actual checksum, which we
219089Spjd * compute via the checksum function specified by BP_GET_CHECKSUM(bp).
290757Smav *
290757Smav * SALTED CHECKSUMS
290757Smav *
290757Smav * To enable the use of less secure hash algorithms with dedup, we
290757Smav * introduce the notion of salted checksums (MACs, really).  A salted
290757Smav * checksum is fed both a random 256-bit value (the salt) and the data
290757Smav * to be checksummed.  This salt is kept secret (stored on the pool, but
290757Smav * never shown to the user).  Thus even if an attacker knew of collision
290757Smav * weaknesses in the hash algorithm, they won't be able to mount a known
290757Smav * plaintext attack on the DDT, since the actual hash value cannot be
290757Smav * known ahead of time.  How the salt is used is algorithm-specific
290757Smav * (some might simply prefix it to the data block, others might need to
290757Smav * utilize a full-blown HMAC).  On disk the salt is stored in a ZAP
290757Smav * object in the MOS (DMU_POOL_CHECKSUM_SALT).
290757Smav *
290757Smav * CONTEXT TEMPLATES
290757Smav *
290757Smav * Some hashing algorithms need to perform a substantial amount of
290757Smav * initialization work (e.g. salted checksums above may need to pre-hash
290757Smav * the salt) before being able to process data.  Performing this
290757Smav * redundant work for each block would be wasteful, so we instead allow
290757Smav * a checksum algorithm to do the work once (the first time it's used)
290757Smav * and then keep this pre-initialized context as a template inside the
290757Smav * spa_t (spa_cksum_tmpls).  If the zio_checksum_info_t contains
290757Smav * non-NULL ci_tmpl_init and ci_tmpl_free callbacks, they are used to
290757Smav * construct and destruct the pre-initialized checksum context.  The
290757Smav * pre-initialized context is then reused during each checksum
290757Smav * invocation and passed to the checksum function.
168404Spjd */
168404Spjd
168404Spjd/*ARGSUSED*/
168404Spjdstatic void
290757Smavzio_checksum_off(const void *buf, uint64_t size,
290757Smav    const void *ctx_template, zio_cksum_t *zcp)
168404Spjd{
168404Spjd	ZIO_SET_CHECKSUM(zcp, 0, 0, 0, 0);
168404Spjd}
168404Spjd
168404Spjdzio_checksum_info_t zio_checksum_table[ZIO_CHECKSUM_FUNCTIONS] = {
290757Smav	{{NULL, NULL}, NULL, NULL, 0, "inherit"},
290757Smav	{{NULL, NULL}, NULL, NULL, 0, "on"},
290757Smav	{{zio_checksum_off,		zio_checksum_off},
290757Smav	    NULL, NULL, 0, "off"},
290757Smav	{{zio_checksum_SHA256,		zio_checksum_SHA256},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_EMBEDDED,
290757Smav	    "label"},
290757Smav	{{zio_checksum_SHA256,		zio_checksum_SHA256},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_EMBEDDED,
290757Smav	    "gang_header"},
290757Smav	{{fletcher_2_native,		fletcher_2_byteswap},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_EMBEDDED, "zilog"},
290757Smav	{{fletcher_2_native,		fletcher_2_byteswap},
290757Smav	    NULL, NULL, 0, "fletcher2"},
290757Smav	{{fletcher_4_native,		fletcher_4_byteswap},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_METADATA, "fletcher4"},
290757Smav	{{zio_checksum_SHA256,		zio_checksum_SHA256},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_DEDUP |
290757Smav	    ZCHECKSUM_FLAG_NOPWRITE, "sha256"},
290757Smav	{{fletcher_4_native,		fletcher_4_byteswap},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_EMBEDDED, "zilog2"},
290757Smav	{{zio_checksum_off,		zio_checksum_off},
290757Smav	    NULL, NULL, 0, "noparity"},
290757Smav#ifdef illumos
290757Smav	{{zio_checksum_SHA512_native,	zio_checksum_SHA512_byteswap},
290757Smav	    NULL, NULL, ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_DEDUP |
290757Smav	    ZCHECKSUM_FLAG_NOPWRITE, "sha512"},
290757Smav	{{zio_checksum_skein_native,	zio_checksum_skein_byteswap},
290757Smav	    zio_checksum_skein_tmpl_init, zio_checksum_skein_tmpl_free,
290757Smav	    ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_DEDUP |
290757Smav	    ZCHECKSUM_FLAG_SALTED | ZCHECKSUM_FLAG_NOPWRITE, "skein"},
290757Smav	{{zio_checksum_edonr_native,	zio_checksum_edonr_byteswap},
290757Smav	    zio_checksum_edonr_tmpl_init, zio_checksum_edonr_tmpl_free,
290757Smav	    ZCHECKSUM_FLAG_METADATA | ZCHECKSUM_FLAG_SALTED |
290757Smav	    ZCHECKSUM_FLAG_NOPWRITE, "edonr"},
290757Smav#endif
168404Spjd};
168404Spjd
297114Smav/*
297114Smav * The flag corresponding to the "verify" in dedup=[checksum,]verify
297114Smav * must be cleared first, so callers should use ZIO_CHECKSUM_MASK.
297114Smav */
290757Smavspa_feature_t
290757Smavzio_checksum_to_feature(enum zio_checksum cksum)
290757Smav{
290757Smav#ifdef illumos
297114Smav	VERIFY((cksum & ~ZIO_CHECKSUM_MASK) == 0);
297114Smav
290757Smav	switch (cksum) {
290757Smav	case ZIO_CHECKSUM_SHA512:
290757Smav		return (SPA_FEATURE_SHA512);
290757Smav	case ZIO_CHECKSUM_SKEIN:
290757Smav		return (SPA_FEATURE_SKEIN);
290757Smav	case ZIO_CHECKSUM_EDONR:
290757Smav		return (SPA_FEATURE_EDONR);
290757Smav	}
290757Smav#endif
290757Smav	return (SPA_FEATURE_NONE);
290757Smav}
290757Smav
219089Spjdenum zio_checksum
219089Spjdzio_checksum_select(enum zio_checksum child, enum zio_checksum parent)
168404Spjd{
168404Spjd	ASSERT(child < ZIO_CHECKSUM_FUNCTIONS);
168404Spjd	ASSERT(parent < ZIO_CHECKSUM_FUNCTIONS);
168404Spjd	ASSERT(parent != ZIO_CHECKSUM_INHERIT && parent != ZIO_CHECKSUM_ON);
168404Spjd
168404Spjd	if (child == ZIO_CHECKSUM_INHERIT)
168404Spjd		return (parent);
168404Spjd
168404Spjd	if (child == ZIO_CHECKSUM_ON)
168404Spjd		return (ZIO_CHECKSUM_ON_VALUE);
168404Spjd
168404Spjd	return (child);
168404Spjd}
168404Spjd
219089Spjdenum zio_checksum
219089Spjdzio_checksum_dedup_select(spa_t *spa, enum zio_checksum child,
219089Spjd    enum zio_checksum parent)
219089Spjd{
219089Spjd	ASSERT((child & ZIO_CHECKSUM_MASK) < ZIO_CHECKSUM_FUNCTIONS);
219089Spjd	ASSERT((parent & ZIO_CHECKSUM_MASK) < ZIO_CHECKSUM_FUNCTIONS);
219089Spjd	ASSERT(parent != ZIO_CHECKSUM_INHERIT && parent != ZIO_CHECKSUM_ON);
219089Spjd
219089Spjd	if (child == ZIO_CHECKSUM_INHERIT)
219089Spjd		return (parent);
219089Spjd
219089Spjd	if (child == ZIO_CHECKSUM_ON)
219089Spjd		return (spa_dedup_checksum(spa));
219089Spjd
219089Spjd	if (child == (ZIO_CHECKSUM_ON | ZIO_CHECKSUM_VERIFY))
219089Spjd		return (spa_dedup_checksum(spa) | ZIO_CHECKSUM_VERIFY);
219089Spjd
290757Smav	ASSERT((zio_checksum_table[child & ZIO_CHECKSUM_MASK].ci_flags &
290757Smav	    ZCHECKSUM_FLAG_DEDUP) ||
219089Spjd	    (child & ZIO_CHECKSUM_VERIFY) || child == ZIO_CHECKSUM_OFF);
219089Spjd
219089Spjd	return (child);
219089Spjd}
219089Spjd
168404Spjd/*
185029Spjd * Set the external verifier for a gang block based on <vdev, offset, txg>,
185029Spjd * a tuple which is guaranteed to be unique for the life of the pool.
185029Spjd */
185029Spjdstatic void
185029Spjdzio_checksum_gang_verifier(zio_cksum_t *zcp, blkptr_t *bp)
185029Spjd{
185029Spjd	dva_t *dva = BP_IDENTITY(bp);
219089Spjd	uint64_t txg = BP_PHYSICAL_BIRTH(bp);
185029Spjd
185029Spjd	ASSERT(BP_IS_GANG(bp));
185029Spjd
185029Spjd	ZIO_SET_CHECKSUM(zcp, DVA_GET_VDEV(dva), DVA_GET_OFFSET(dva), txg, 0);
185029Spjd}
185029Spjd
185029Spjd/*
185029Spjd * Set the external verifier for a label block based on its offset.
185029Spjd * The vdev is implicit, and the txg is unknowable at pool open time --
185029Spjd * hence the logic in vdev_uberblock_load() to find the most recent copy.
185029Spjd */
185029Spjdstatic void
185029Spjdzio_checksum_label_verifier(zio_cksum_t *zcp, uint64_t offset)
185029Spjd{
185029Spjd	ZIO_SET_CHECKSUM(zcp, offset, 0, 0, 0);
185029Spjd}
185029Spjd
185029Spjd/*
290757Smav * Calls the template init function of a checksum which supports context
290757Smav * templates and installs the template into the spa_t.
290757Smav */
290757Smavstatic void
290757Smavzio_checksum_template_init(enum zio_checksum checksum, spa_t *spa)
290757Smav{
290757Smav	zio_checksum_info_t *ci = &zio_checksum_table[checksum];
290757Smav
290757Smav	if (ci->ci_tmpl_init == NULL)
290757Smav		return;
290757Smav	if (spa->spa_cksum_tmpls[checksum] != NULL)
290757Smav		return;
290757Smav
290757Smav	VERIFY(ci->ci_tmpl_free != NULL);
290757Smav	mutex_enter(&spa->spa_cksum_tmpls_lock);
290757Smav	if (spa->spa_cksum_tmpls[checksum] == NULL) {
290757Smav		spa->spa_cksum_tmpls[checksum] =
290757Smav		    ci->ci_tmpl_init(&spa->spa_cksum_salt);
290757Smav		VERIFY(spa->spa_cksum_tmpls[checksum] != NULL);
290757Smav	}
290757Smav	mutex_exit(&spa->spa_cksum_tmpls_lock);
290757Smav}
290757Smav
290757Smav/*
168404Spjd * Generate the checksum.
168404Spjd */
168404Spjdvoid
185029Spjdzio_checksum_compute(zio_t *zio, enum zio_checksum checksum,
290765Smav    void *data, uint64_t size)
168404Spjd{
185029Spjd	blkptr_t *bp = zio->io_bp;
185029Spjd	uint64_t offset = zio->io_offset;
168404Spjd	zio_checksum_info_t *ci = &zio_checksum_table[checksum];
219089Spjd	zio_cksum_t cksum;
290757Smav	spa_t *spa = zio->io_spa;
168404Spjd
185029Spjd	ASSERT((uint_t)checksum < ZIO_CHECKSUM_FUNCTIONS);
168404Spjd	ASSERT(ci->ci_func[0] != NULL);
168404Spjd
290757Smav	zio_checksum_template_init(checksum, spa);
290757Smav
290757Smav	if (ci->ci_flags & ZCHECKSUM_FLAG_EMBEDDED) {
219089Spjd		zio_eck_t *eck;
219089Spjd
219089Spjd		if (checksum == ZIO_CHECKSUM_ZILOG2) {
219089Spjd			zil_chain_t *zilc = data;
219089Spjd
219089Spjd			size = P2ROUNDUP_TYPED(zilc->zc_nused, ZIL_MIN_BLKSZ,
219089Spjd			    uint64_t);
219089Spjd			eck = &zilc->zc_eck;
219089Spjd		} else {
219089Spjd			eck = (zio_eck_t *)((char *)data + size) - 1;
219089Spjd		}
185029Spjd		if (checksum == ZIO_CHECKSUM_GANG_HEADER)
219089Spjd			zio_checksum_gang_verifier(&eck->zec_cksum, bp);
185029Spjd		else if (checksum == ZIO_CHECKSUM_LABEL)
219089Spjd			zio_checksum_label_verifier(&eck->zec_cksum, offset);
185029Spjd		else
219089Spjd			bp->blk_cksum = eck->zec_cksum;
219089Spjd		eck->zec_magic = ZEC_MAGIC;
290757Smav		ci->ci_func[0](data, size, spa->spa_cksum_tmpls[checksum],
290757Smav		    &cksum);
219089Spjd		eck->zec_cksum = cksum;
168404Spjd	} else {
290757Smav		ci->ci_func[0](data, size, spa->spa_cksum_tmpls[checksum],
290757Smav		    &bp->blk_cksum);
168404Spjd	}
168404Spjd}
168404Spjd
168404Spjdint
307266Smavzio_checksum_error_impl(spa_t *spa, blkptr_t *bp, enum zio_checksum checksum,
307266Smav    void *data, uint64_t size, uint64_t offset, zio_bad_cksum_t *info)
168404Spjd{
307266Smav	zio_checksum_info_t *ci = &zio_checksum_table[checksum];
307266Smav	zio_cksum_t actual_cksum, expected_cksum;
185029Spjd	int byteswap;
168404Spjd
168404Spjd	if (checksum >= ZIO_CHECKSUM_FUNCTIONS || ci->ci_func[0] == NULL)
249195Smm		return (SET_ERROR(EINVAL));
168404Spjd
290757Smav	zio_checksum_template_init(checksum, spa);
290757Smav
290757Smav	if (ci->ci_flags & ZCHECKSUM_FLAG_EMBEDDED) {
219089Spjd		zio_eck_t *eck;
307266Smav		zio_cksum_t verifier;
219089Spjd
219089Spjd		if (checksum == ZIO_CHECKSUM_ZILOG2) {
219089Spjd			zil_chain_t *zilc = data;
219089Spjd			uint64_t nused;
219089Spjd
219089Spjd			eck = &zilc->zc_eck;
219089Spjd			if (eck->zec_magic == ZEC_MAGIC)
219089Spjd				nused = zilc->zc_nused;
219089Spjd			else if (eck->zec_magic == BSWAP_64(ZEC_MAGIC))
219089Spjd				nused = BSWAP_64(zilc->zc_nused);
219089Spjd			else
249195Smm				return (SET_ERROR(ECKSUM));
219089Spjd
219089Spjd			if (nused > size)
249195Smm				return (SET_ERROR(ECKSUM));
219089Spjd
219089Spjd			size = P2ROUNDUP_TYPED(nused, ZIL_MIN_BLKSZ, uint64_t);
219089Spjd		} else {
219089Spjd			eck = (zio_eck_t *)((char *)data + size) - 1;
219089Spjd		}
219089Spjd
168404Spjd		if (checksum == ZIO_CHECKSUM_GANG_HEADER)
185029Spjd			zio_checksum_gang_verifier(&verifier, bp);
185029Spjd		else if (checksum == ZIO_CHECKSUM_LABEL)
185029Spjd			zio_checksum_label_verifier(&verifier, offset);
185029Spjd		else
185029Spjd			verifier = bp->blk_cksum;
168404Spjd
219089Spjd		byteswap = (eck->zec_magic == BSWAP_64(ZEC_MAGIC));
185029Spjd
185029Spjd		if (byteswap)
185029Spjd			byteswap_uint64_array(&verifier, sizeof (zio_cksum_t));
185029Spjd
219089Spjd		expected_cksum = eck->zec_cksum;
219089Spjd		eck->zec_cksum = verifier;
290757Smav		ci->ci_func[byteswap](data, size,
290757Smav		    spa->spa_cksum_tmpls[checksum], &actual_cksum);
219089Spjd		eck->zec_cksum = expected_cksum;
185029Spjd
307266Smav		if (byteswap) {
168404Spjd			byteswap_uint64_array(&expected_cksum,
168404Spjd			    sizeof (zio_cksum_t));
307266Smav		}
168404Spjd	} else {
185029Spjd		byteswap = BP_SHOULD_BYTESWAP(bp);
185029Spjd		expected_cksum = bp->blk_cksum;
290757Smav		ci->ci_func[byteswap](data, size,
290757Smav		    spa->spa_cksum_tmpls[checksum], &actual_cksum);
168404Spjd	}
168404Spjd
307266Smav	if (info != NULL) {
307266Smav		info->zbc_expected = expected_cksum;
307266Smav		info->zbc_actual = actual_cksum;
307266Smav		info->zbc_checksum_name = ci->ci_name;
307266Smav		info->zbc_byteswapped = byteswap;
307266Smav		info->zbc_injected = 0;
307266Smav		info->zbc_has_cksum = 1;
307266Smav	}
219089Spjd
185029Spjd	if (!ZIO_CHECKSUM_EQUAL(actual_cksum, expected_cksum))
249195Smm		return (SET_ERROR(ECKSUM));
168404Spjd
307266Smav	return (0);
307266Smav}
307266Smav
307266Smavint
307266Smavzio_checksum_error(zio_t *zio, zio_bad_cksum_t *info)
307266Smav{
307266Smav	blkptr_t *bp = zio->io_bp;
307266Smav	uint_t checksum = (bp == NULL ? zio->io_prop.zp_checksum :
307266Smav	    (BP_IS_GANG(bp) ? ZIO_CHECKSUM_GANG_HEADER : BP_GET_CHECKSUM(bp)));
307266Smav	int error;
307266Smav	uint64_t size = (bp == NULL ? zio->io_size :
307266Smav	    (BP_IS_GANG(bp) ? SPA_GANGBLOCKSIZE : BP_GET_PSIZE(bp)));
307266Smav	uint64_t offset = zio->io_offset;
307266Smav	void *data = zio->io_data;
307266Smav	spa_t *spa = zio->io_spa;
307266Smav
307266Smav	error = zio_checksum_error_impl(spa, bp, checksum, data, size,
307266Smav	    offset, info);
307266Smav	if (error != 0 && zio_injection_enabled && !zio->io_error &&
219089Spjd	    (error = zio_handle_fault_injection(zio, ECKSUM)) != 0) {
168404Spjd
219089Spjd		info->zbc_injected = 1;
219089Spjd		return (error);
219089Spjd	}
307266Smav	return (error);
168404Spjd}
290757Smav
290757Smav/*
290757Smav * Called by a spa_t that's about to be deallocated. This steps through
290757Smav * all of the checksum context templates and deallocates any that were
290757Smav * initialized using the algorithm-specific template init function.
290757Smav */
290757Smavvoid
290757Smavzio_checksum_templates_free(spa_t *spa)
290757Smav{
290757Smav	for (enum zio_checksum checksum = 0;
290757Smav	    checksum < ZIO_CHECKSUM_FUNCTIONS; checksum++) {
290757Smav		if (spa->spa_cksum_tmpls[checksum] != NULL) {
290757Smav			zio_checksum_info_t *ci = &zio_checksum_table[checksum];
290757Smav
290757Smav			VERIFY(ci->ci_tmpl_free != NULL);
290757Smav			ci->ci_tmpl_free(spa->spa_cksum_tmpls[checksum]);
290757Smav			spa->spa_cksum_tmpls[checksum] = NULL;
290757Smav		}
290757Smav	}
290757Smav}