kernel/linux.git/include/linux/fscrypto.h, branch v4.10.9

fscrypt: Rename FS_WRITE_PATH_FL to FS_CTX_HAS_BOUNCE_BUFFER_FL

2016-12-11T21:33:18+00:00

... to better explain its purpose after introducing in-place encryption without bounce buffer. Signed-off-by: David Gstir Signed-off-by: Theodore Ts'o

fscrypt: Delay bounce page pool allocation until needed

2016-12-11T21:33:11+00:00

Since fscrypt users can now indicated if fscrypt_encrypt_page() should use a bounce page, we can delay the bounce page pool initialization util it is really needed. That is until fscrypt_operations has no FS_CFLG_OWN_PAGES flag set. Signed-off-by: David Gstir Signed-off-by: Theodore Ts'o

fscrypt: Cleanup page locking requirements for fscrypt_{decrypt,encrypt}_page()

2016-12-11T21:26:12+00:00

Rename the FS_CFLG_INPLACE_ENCRYPTION flag to FS_CFLG_OWN_PAGES which, when set, indicates that the fs uses pages under its own control as opposed to writeback pages which require locking and a bounce buffer for encryption. Signed-off-by: David Gstir Signed-off-by: Theodore Ts'o

fscrypt: Cleanup fscrypt_{decrypt,encrypt}_page()

2016-12-11T21:26:12+00:00

- Improve documentation - Add BUG_ON(len == 0) to avoid accidental switch of offs and len parameters - Improve variable names for readability Signed-off-by: David Gstir Signed-off-by: Theodore Ts'o

fscrypt: move the policy flags and encryption mode definitions to uapi header

2016-12-11T21:26:10+00:00

These constants are part of the UAPI, so they belong in include/uapi/linux/fs.h instead of include/linux/fscrypto.h Signed-off-by: Theodore Ts'o Reviewed-by: Eric Biggers

fscrypt: move non-public structures and constants to fscrypt_private.h

2016-12-11T21:26:09+00:00

Signed-off-by: Theodore Ts'o Reviewed-by: Eric Biggers

fscrypt: unexport fscrypt_initialize()

2016-12-11T21:26:08+00:00

The fscrypt_initalize() function isn't used outside fs/crypto, so there's no point making it be an exported symbol. Signed-off-by: Theodore Ts'o Reviewed-by: Eric Biggers

fscrypt: rename get_crypt_info() to fscrypt_get_crypt_info()

2016-12-11T21:26:08+00:00

To avoid namespace collisions, rename get_crypt_info() to fscrypt_get_crypt_info(). The function is only used inside the fs/crypto directory, so declare it in the new header file, fscrypt_private.h. Signed-off-by: Theodore Ts'o Reviewed-by: Eric Biggers

fscrypto: move ioctl processing more fully into common code

2016-12-11T21:26:07+00:00

Multiple bugs were recently fixed in the "set encryption policy" ioctl. To make it clear that fscrypt_process_policy() and fscrypt_get_policy() implement ioctls and therefore their implementations must take standard security and correctness precautions, rename them to fscrypt_ioctl_set_policy() and fscrypt_ioctl_get_policy(). Make the latter take in a struct file * to make it consistent with the former. Signed-off-by: Eric Biggers Signed-off-by: Theodore Ts'o

fscrypt: Let fs select encryption index/tweak

2016-11-14T01:18:16+00:00

Avoid re-use of page index as tweak for AES-XTS when multiple parts of same page are encrypted. This will happen on multiple (partial) calls of fscrypt_encrypt_page on same page. page->index is only valid for writeback pages. Signed-off-by: David Gstir Signed-off-by: Richard Weinberger Signed-off-by: Theodore Ts'o