ecryptfs: enhancing ecryptfs to be configurable with encryption type
PFK: fixed issue where key in TZ was not set properly
eCryptfs: fixed some major bugs
eCryptfs: fixes issue where files sometimes got corrupted upon close
eCryptfs: fixed bug in cipher handling
security: pfe: Fix the qualifier used to print size_t
ecryptfs: forbid opening files without mmap handler
Revert "ecryptfs: forbid opening files without mmap handler"
UPSTREAM: ecryptfs: fix handling of directory opening
ecryptfs: forbid opening files without mmap handler
Bug: 68721442
Bug: 68995224
Change-Id: I202cfbc36607a44b6cb3dfa5c4416e0adddf32a8
Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
When the userspace messaging (for the less common case of userspace key
wrap/unwrap via ecryptfsd) is not needed, allow eCryptfs to build with
it removed. This saves on kernel code size and reduces potential attack
surface by removing the /dev/ecryptfs node.
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Some eCryptfs specific definitions, such as the current version and the
authentication token structure, are moved to the new include file
'include/linux/ecryptfs.h', in order to be available for all kernel
subsystems.
Signed-off-by: Roberto Sassu <roberto.sassu@polito.it>
Acked-by: Gianluca Ramunno <ramunno@polito.it>
Acked-by: Tyler Hicks <tyhicks@linux.vnet.ibm.com>
Acked-by: David Howells <dhowells@redhat.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
