projects / firefly-linux-kernel-4.4.55.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c10ffe9) | patch
fscrypt: fix renaming and linking special files
authorEric Biggers <ebiggers@google.com>
Mon, 19 Dec 2016 22:20:13 +0000 (14:20 -0800)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 22 Mar 2017 11:04:18 +0000 (12:04 +0100)
commitfd74e8d258da9f9678da6bf88a0b02b2c1b71d0c
tree21b9defc87b96bb70dd8dca531f65c804f49188atree | snapshot
parentc10ffe988f15a0306d5d8cb1c6b475c9fe2fc2c9commit | diff
fscrypt: fix renaming and linking special files

commit 42d97eb0ade31e1bc537d086842f5d6e766d9d51 upstream.

Attempting to link a device node, named pipe, or socket file into an
encrypted directory through rename(2) or link(2) always failed with
EPERM.  This happened because fscrypt_has_permitted_context() saw that
the file was unencrypted and forbid creating the link.  This behavior
was unexpected because such files are never encrypted; only regular
files, directories, and symlinks can be encrypted.

To fix this, make fscrypt_has_permitted_context() always return true on
special files.

This will be covered by a test in my encryption xfstests patchset.

Fixes: 9bd8212f981e ("ext4 crypto: add encryption policy and password salt support")
Signed-off-by: Eric Biggers <ebiggers@google.com>
Reviewed-by: Richard Weinberger <richard@nod.at>
Signed-off-by: Theodore Ts'o <tytso@mit.edu>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
fs/ext4/crypto_policy.c diff | blob | history
fs/f2fs/crypto_policy.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.