Commit 629a4956 authored by Chao Yu's avatar Chao Yu Committed by Greg Kroah-Hartman

f2fs crypto: handle unexpected lack of encryption keys

commit ae108668 upstream.

This patch syncs f2fs with commit abdd438b ("ext4 crypto: handle
unexpected lack of encryption keys") from ext4.

Fix up attempts by users to try to write to a file when they don't
have access to the encryption key.
Signed-off-by: default avatarTheodore Ts'o <tytso@mit.edu>
Signed-off-by: default avatarChao Yu <chao2.yu@samsung.com>
Signed-off-by: default avatarJaegeuk Kim <jaegeuk@kernel.org>
Signed-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
parent 73b5a188
...@@ -192,7 +192,8 @@ int f2fs_inherit_context(struct inode *parent, struct inode *child, ...@@ -192,7 +192,8 @@ int f2fs_inherit_context(struct inode *parent, struct inode *child,
return res; return res;
ci = F2FS_I(parent)->i_crypt_info; ci = F2FS_I(parent)->i_crypt_info;
BUG_ON(ci == NULL); if (ci == NULL)
return -ENOKEY;
ctx.format = F2FS_ENCRYPTION_CONTEXT_FORMAT_V1; ctx.format = F2FS_ENCRYPTION_CONTEXT_FORMAT_V1;
......
...@@ -425,6 +425,8 @@ static int f2fs_file_mmap(struct file *file, struct vm_area_struct *vma) ...@@ -425,6 +425,8 @@ static int f2fs_file_mmap(struct file *file, struct vm_area_struct *vma)
err = f2fs_get_encryption_info(inode); err = f2fs_get_encryption_info(inode);
if (err) if (err)
return 0; return 0;
if (!f2fs_encrypted_inode(inode))
return -ENOKEY;
} }
/* we don't need to use inline_data strictly */ /* we don't need to use inline_data strictly */
...@@ -444,7 +446,9 @@ static int f2fs_file_open(struct inode *inode, struct file *filp) ...@@ -444,7 +446,9 @@ static int f2fs_file_open(struct inode *inode, struct file *filp)
if (!ret && f2fs_encrypted_inode(inode)) { if (!ret && f2fs_encrypted_inode(inode)) {
ret = f2fs_get_encryption_info(inode); ret = f2fs_get_encryption_info(inode);
if (ret) if (ret)
ret = -EACCES; return -EACCES;
if (!f2fs_encrypted_inode(inode))
return -ENOKEY;
} }
return ret; return ret;
} }
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment