diff options
Diffstat (limited to 'fs/ecryptfs/keystore.c')
| -rw-r--r-- | fs/ecryptfs/keystore.c | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/fs/ecryptfs/keystore.c b/fs/ecryptfs/keystore.c index ac1ad48c237..2333203a120 100644 --- a/fs/ecryptfs/keystore.c +++ b/fs/ecryptfs/keystore.c | |||
| @@ -109,7 +109,7 @@ int ecryptfs_parse_packet_length(unsigned char *data, size_t *size, | |||
| 109 | (*size) += ((unsigned char)(data[1]) + 192); | 109 | (*size) += ((unsigned char)(data[1]) + 192); |
| 110 | (*length_size) = 2; | 110 | (*length_size) = 2; |
| 111 | } else if (data[0] == 255) { | 111 | } else if (data[0] == 255) { |
| 112 | /* Five-byte length; we're not supposed to see this */ | 112 | /* If support is added, adjust ECRYPTFS_MAX_PKT_LEN_SIZE */ |
| 113 | ecryptfs_printk(KERN_ERR, "Five-byte packet length not " | 113 | ecryptfs_printk(KERN_ERR, "Five-byte packet length not " |
| 114 | "supported\n"); | 114 | "supported\n"); |
| 115 | rc = -EINVAL; | 115 | rc = -EINVAL; |
| @@ -126,7 +126,7 @@ out: | |||
| 126 | /** | 126 | /** |
| 127 | * ecryptfs_write_packet_length | 127 | * ecryptfs_write_packet_length |
| 128 | * @dest: The byte array target into which to write the length. Must | 128 | * @dest: The byte array target into which to write the length. Must |
| 129 | * have at least 5 bytes allocated. | 129 | * have at least ECRYPTFS_MAX_PKT_LEN_SIZE bytes allocated. |
| 130 | * @size: The length to write. | 130 | * @size: The length to write. |
| 131 | * @packet_size_length: The number of bytes used to encode the packet | 131 | * @packet_size_length: The number of bytes used to encode the packet |
| 132 | * length is written to this address. | 132 | * length is written to this address. |
| @@ -146,6 +146,7 @@ int ecryptfs_write_packet_length(char *dest, size_t size, | |||
| 146 | dest[1] = ((size - 192) % 256); | 146 | dest[1] = ((size - 192) % 256); |
| 147 | (*packet_size_length) = 2; | 147 | (*packet_size_length) = 2; |
| 148 | } else { | 148 | } else { |
| 149 | /* If support is added, adjust ECRYPTFS_MAX_PKT_LEN_SIZE */ | ||
| 149 | rc = -EINVAL; | 150 | rc = -EINVAL; |
| 150 | ecryptfs_printk(KERN_WARNING, | 151 | ecryptfs_printk(KERN_WARNING, |
| 151 | "Unsupported packet size: [%zd]\n", size); | 152 | "Unsupported packet size: [%zd]\n", size); |
| @@ -678,10 +679,7 @@ ecryptfs_write_tag_70_packet(char *dest, size_t *remaining_bytes, | |||
| 678 | * Octets N3-N4: Block-aligned encrypted filename | 679 | * Octets N3-N4: Block-aligned encrypted filename |
| 679 | * - Consists of a minimum number of random characters, a \0 | 680 | * - Consists of a minimum number of random characters, a \0 |
| 680 | * separator, and then the filename */ | 681 | * separator, and then the filename */ |
| 681 | s->max_packet_size = (1 /* Tag 70 identifier */ | 682 | s->max_packet_size = (ECRYPTFS_TAG_70_MAX_METADATA_SIZE |
| 682 | + 3 /* Max Tag 70 packet size */ | ||
| 683 | + ECRYPTFS_SIG_SIZE /* FNEK sig */ | ||
| 684 | + 1 /* Cipher identifier */ | ||
| 685 | + s->block_aligned_filename_size); | 683 | + s->block_aligned_filename_size); |
| 686 | if (dest == NULL) { | 684 | if (dest == NULL) { |
| 687 | (*packet_size) = s->max_packet_size; | 685 | (*packet_size) = s->max_packet_size; |
| @@ -933,10 +931,10 @@ ecryptfs_parse_tag_70_packet(char **filename, size_t *filename_size, | |||
| 933 | goto out; | 931 | goto out; |
| 934 | } | 932 | } |
| 935 | s->desc.flags = CRYPTO_TFM_REQ_MAY_SLEEP; | 933 | s->desc.flags = CRYPTO_TFM_REQ_MAY_SLEEP; |
| 936 | if (max_packet_size < (1 + 1 + ECRYPTFS_SIG_SIZE + 1 + 1)) { | 934 | if (max_packet_size < ECRYPTFS_TAG_70_MIN_METADATA_SIZE) { |
| 937 | printk(KERN_WARNING "%s: max_packet_size is [%zd]; it must be " | 935 | printk(KERN_WARNING "%s: max_packet_size is [%zd]; it must be " |
| 938 | "at least [%d]\n", __func__, max_packet_size, | 936 | "at least [%d]\n", __func__, max_packet_size, |
| 939 | (1 + 1 + ECRYPTFS_SIG_SIZE + 1 + 1)); | 937 | ECRYPTFS_TAG_70_MIN_METADATA_SIZE); |
| 940 | rc = -EINVAL; | 938 | rc = -EINVAL; |
| 941 | goto out; | 939 | goto out; |
| 942 | } | 940 | } |