Re: [PATCH 01/06] ecryptfs: Validate minimum header extent size

From: Michael Halcrow
Date: Tue Jun 27 2006 - 12:16:45 EST

Next message: Andrey Savochkin: "Re: [patch 2/6] [Network namespace] Network device sharing by view"
Previous message: Michael Halcrow: "Re: [PATCH 03/06] ecryptfs: Validate packet length prior to parsing, add comments"
In reply to: Stephan Müller: "[PATCH 01/06] ecryptfs: Validate minimum header extent size"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jun 27, 2006 at 01:46:27AM +0200, Stephan M?ller wrote:
> The encrypted file ecryptfs maintains has in the first page meta
> data that is needed for ecryptfs operation. As the encrypted file is
> untrusted, every bit read of that file must be validated.
>
> The patch ensures that crypt_stat->num_header_extents_at_front is
> checked for improper values.

All of Stephan's patches in this set, with my fix on top of #3, look
good to me.

Mike
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrey Savochkin: "Re: [patch 2/6] [Network namespace] Network device sharing by view"
Previous message: Michael Halcrow: "Re: [PATCH 03/06] ecryptfs: Validate packet length prior to parsing, add comments"
In reply to: Stephan Müller: "[PATCH 01/06] ecryptfs: Validate minimum header extent size"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]