ecryptfs team mailing list archive

Thread
Date

[Bug 641703] Re: ecryptfs over fuseblk lower layer appears to succeed but writes lower layer in plaintext, fails on readback

To: ecryptfs@xxxxxxxxxxxxxxxxxxx
From: Tyler Hicks <tyhicks@xxxxxxxxxxxxxxxxxx>
Date: Tue, 02 Nov 2010 14:39:58 -0000
Reply-to: Bug 641703 <641703@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

The fix was released in 2.6.37-rc1:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=2e21b3f124eceb6ab5a07c8a061adce14ac94e14

** Changed in: ecryptfs
       Status: In Progress => Fix Released

** Visibility changed to: Public

-- 
ecryptfs over fuseblk lower layer appears to succeed but writes lower layer in plaintext, fails on readback
https://bugs.launchpad.net/bugs/641703
You received this bug notification because you are a member of eCryptfs,
which is a direct subscriber.

Status in eCryptfs - Enterprise Cryptographic Filesystem: Fix Released

Bug description:
ecryptfs 83-0ubuntu3
linux-image-2.6.32-24-generic 2.6.32-24.42

When "ecryptfs" is run over a fuseblk lower layer, such as an ntfs-3g or sshfs lower layer, creating and writing files appears to work. However, trying to read the resulting files either silently fails or produces I/O errors with kernel log entries "Valid eCryptfs headers not found in file header region or xattr region", and when the lower layer is inspected, the contents of the files have been written in plaintext.

Note that, if the mount options permit plaintext passthrough, reads and writes may appear to work for files that are larger than the ecryptfs block size (i.e., it seems that complete 12288-byte blocks will be read, though the last incomplete block will be truncated), but the underlying lower layer has still been written in plaintext.

A session log reproducing the problem is attached.

References

[Bug 641703] [NEW] ecryptfs over fuseblk lower layer appears to succeed but writes lower layer in plaintext, fails on readback
From: Kevin Buhr, 2010-09-17