diff options
| author | Tyler Hicks <tyhicks@linux.vnet.ibm.com> | 2011-02-23 01:14:19 -0500 |
|---|---|---|
| committer | Tyler Hicks <tyhicks@linux.vnet.ibm.com> | 2011-03-28 02:47:43 -0400 |
| commit | bd4f0fe8bb7c73c738e1e11bc90d6e2cf9c6e20e (patch) | |
| tree | caa1915ec444bbdb52a1646274d73e733979bb44 | |
| parent | 40471856f2e38e9bfa8d605295e8234421110dd6 (diff) | |
eCryptfs: Remove unnecessary grow_file() function
When creating a new eCryptfs file, the crypto metadata is written out
and then the lower file was being "grown" with 4 kB of encrypted zeroes.
I suspect that growing the encrypted file was to prevent an information
leak that the unencrypted file was empty. However, the unencrypted file
size is stored, in plaintext, in the metadata so growing the file is
unnecessary.
Signed-off-by: Tyler Hicks <tyhicks@linux.vnet.ibm.com>
| -rw-r--r-- | fs/ecryptfs/crypto.c | 1 | ||||
| -rw-r--r-- | fs/ecryptfs/inode.c | 23 |
2 files changed, 1 insertions, 23 deletions
diff --git a/fs/ecryptfs/crypto.c b/fs/ecryptfs/crypto.c index bfd8b680e648..98a2a314ea68 100644 --- a/fs/ecryptfs/crypto.c +++ b/fs/ecryptfs/crypto.c | |||
| @@ -1389,6 +1389,7 @@ int ecryptfs_write_metadata(struct dentry *ecryptfs_dentry) | |||
| 1389 | rc = -ENOMEM; | 1389 | rc = -ENOMEM; |
| 1390 | goto out; | 1390 | goto out; |
| 1391 | } | 1391 | } |
| 1392 | /* Zeroed page ensures the in-header unencrypted i_size is set to 0 */ | ||
| 1392 | rc = ecryptfs_write_headers_virt(virt, virt_len, &size, crypt_stat, | 1393 | rc = ecryptfs_write_headers_virt(virt, virt_len, &size, crypt_stat, |
| 1393 | ecryptfs_dentry); | 1394 | ecryptfs_dentry); |
| 1394 | if (unlikely(rc)) { | 1395 | if (unlikely(rc)) { |
diff --git a/fs/ecryptfs/inode.c b/fs/ecryptfs/inode.c index b592938a84bc..8fa365acb789 100644 --- a/fs/ecryptfs/inode.c +++ b/fs/ecryptfs/inode.c | |||
| @@ -143,26 +143,6 @@ out: | |||
| 143 | } | 143 | } |
| 144 | 144 | ||
| 145 | /** | 145 | /** |
| 146 | * grow_file | ||
| 147 | * @ecryptfs_dentry: the eCryptfs dentry | ||
| 148 | * | ||
| 149 | * This is the code which will grow the file to its correct size. | ||
| 150 | */ | ||
| 151 | static int grow_file(struct dentry *ecryptfs_dentry) | ||
| 152 | { | ||
| 153 | struct inode *ecryptfs_inode = ecryptfs_dentry->d_inode; | ||
| 154 | char zero_virt[] = { 0x00 }; | ||
| 155 | int rc = 0; | ||
| 156 | |||
| 157 | rc = ecryptfs_write(ecryptfs_inode, zero_virt, 0, 1); | ||
| 158 | i_size_write(ecryptfs_inode, 0); | ||
| 159 | rc = ecryptfs_write_inode_size_to_metadata(ecryptfs_inode); | ||
| 160 | ecryptfs_inode_to_private(ecryptfs_inode)->crypt_stat.flags |= | ||
| 161 | ECRYPTFS_NEW_FILE; | ||
| 162 | return rc; | ||
| 163 | } | ||
| 164 | |||
| 165 | /** | ||
| 166 | * ecryptfs_initialize_file | 146 | * ecryptfs_initialize_file |
| 167 | * | 147 | * |
| 168 | * Cause the file to be changed from a basic empty file to an ecryptfs | 148 | * Cause the file to be changed from a basic empty file to an ecryptfs |
| @@ -202,9 +182,6 @@ static int ecryptfs_initialize_file(struct dentry *ecryptfs_dentry) | |||
| 202 | printk(KERN_ERR "Error writing headers; rc = [%d]\n", rc); | 182 | printk(KERN_ERR "Error writing headers; rc = [%d]\n", rc); |
| 203 | goto out; | 183 | goto out; |
| 204 | } | 184 | } |
| 205 | rc = grow_file(ecryptfs_dentry); | ||
| 206 | if (rc) | ||
| 207 | printk(KERN_ERR "Error growing file; rc = [%d]\n", rc); | ||
| 208 | out: | 185 | out: |
| 209 | return rc; | 186 | return rc; |
| 210 | } | 187 | } |