diff options
author | Linus Torvalds <torvalds@linux-foundation.org> | 2017-01-02 18:32:59 -0800 |
---|---|---|
committer | Linus Torvalds <torvalds@linux-foundation.org> | 2017-01-02 18:32:59 -0800 |
commit | c8b4ec8351d21da3299b045b37920e5cf5590793 (patch) | |
tree | 24143a2a29a0577df09857478a0c56794b46dfd7 /fs | |
parent | da2875673660c114dc7d65edcd1f97023d0ed624 (diff) | |
parent | 42d97eb0ade31e1bc537d086842f5d6e766d9d51 (diff) | |
download | linux-stable-c8b4ec8351d21da3299b045b37920e5cf5590793.tar.gz linux-stable-c8b4ec8351d21da3299b045b37920e5cf5590793.tar.bz2 linux-stable-c8b4ec8351d21da3299b045b37920e5cf5590793.zip |
Merge tag 'fscrypt-for-stable' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/fscrypt
Pull fscrypt fixes from Ted Ts'o:
"Two fscrypt bug fixes, one of which was unmasked by an update to the
crypto tree during the merge window"
* tag 'fscrypt-for-stable' of git://git.kernel.org/pub/scm/linux/kernel/git/tytso/fscrypt:
fscrypt: fix renaming and linking special files
fscrypt: fix the test_dummy_encryption mount option
Diffstat (limited to 'fs')
-rw-r--r-- | fs/crypto/keyinfo.c | 3 | ||||
-rw-r--r-- | fs/crypto/policy.c | 5 |
2 files changed, 7 insertions, 1 deletions
diff --git a/fs/crypto/keyinfo.c b/fs/crypto/keyinfo.c index 6eeea1dcba41..95cd4c3b06c3 100644 --- a/fs/crypto/keyinfo.c +++ b/fs/crypto/keyinfo.c @@ -248,7 +248,8 @@ retry: goto out; if (fscrypt_dummy_context_enabled(inode)) { - memset(raw_key, 0x42, FS_AES_256_XTS_KEY_SIZE); + memset(raw_key, 0x42, keysize/2); + memset(raw_key+keysize/2, 0x24, keysize - (keysize/2)); goto got_key; } diff --git a/fs/crypto/policy.c b/fs/crypto/policy.c index 6ed7c2eebeec..d6cd7ea4851d 100644 --- a/fs/crypto/policy.c +++ b/fs/crypto/policy.c @@ -179,6 +179,11 @@ int fscrypt_has_permitted_context(struct inode *parent, struct inode *child) BUG_ON(1); } + /* No restrictions on file types which are never encrypted */ + if (!S_ISREG(child->i_mode) && !S_ISDIR(child->i_mode) && + !S_ISLNK(child->i_mode)) + return 1; + /* no restrictions if the parent directory is not encrypted */ if (!parent->i_sb->s_cop->is_encrypted(parent)) return 1; |