Proper cipher support isn't checked at mount time
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
eCryptfs |
Fix Released
|
Low
|
Tim Sally | ||
linux (Ubuntu) |
Fix Released
|
Undecided
|
Tim Gardner | ||
Lucid |
Fix Released
|
Undecided
|
Colin Ian King | ||
Oneiric |
Fix Released
|
Undecided
|
Colin Ian King | ||
Precise |
Fix Released
|
Undecided
|
Colin Ian King | ||
Quantal |
Fix Released
|
Undecided
|
Tim Gardner |
Bug Description
eCryptfs should check to see if we have the appropriate cipher code (as defined in RFC 2440) for a given cipher at mount time. We are currently waiting all the way until a write occurs to detect if we know of the proper cipher code.
To reproduce:
---
gentoo-virt mnt # mount -it ecryptfs /mnt/.ecryptfs-ext3 /mnt/ecryptfs-ext3/ -o \
ecryptfs_
gentoo-virt ecryptfs-ext3 # echo "camellia cipher test" > /mnt/ecryptfs-
-bash: /mnt/ecryptfs-
---
Relevant log entries:
---
Mar 6 10:15:57 gentoo-virt kernel: write_tag_3_packet: Unable to generate code for cipher [camellia]
Mar 6 10:15:57 gentoo-virt kernel: ecryptfs_
Mar 6 10:15:57 gentoo-virt kernel: ecryptfs_
Mar 6 10:15:57 gentoo-virt kernel: ecryptfs_
Mar 6 10:15:57 gentoo-virt kernel: Error writing headers; rc = [-22]
---
Related branches
Changed in ecryptfs: | |
assignee: | nobody → tyhicks |
importance: | Undecided → Medium |
status: | New → Triaged |
tags: | added: kernel |
Changed in ecryptfs: | |
assignee: | Tyler Hicks (tyhicks) → Tim Sally (tsally) |
Changed in ecryptfs: | |
status: | Fix Committed → Fix Released |
Changed in linux (Ubuntu Quantal): | |
assignee: | nobody → Tim Gardner (timg-tpi) |
status: | New → Fix Committed |
Changed in linux (Ubuntu Lucid): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Oneiric): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Precise): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Lucid): | |
assignee: | nobody → Colin King (colin-king) |
Changed in linux (Ubuntu Oneiric): | |
assignee: | nobody → Colin King (colin-king) |
Changed in linux (Ubuntu Precise): | |
assignee: | nobody → Colin King (colin-king) |
Making this low importance, we don't handle it too bad currently, but it would be nice for the check to be done at mount time.