nametransform: check name validity on encryption

xfstests generic/523 discovered that we allowed to set xattrs with "/" in the name, but did not allow to read them later. With this change we do not allow to set them in the first place.
author: Jakob Unterwurzacher 2021-06-02 14:21:30 +0200
committer: Jakob Unterwurzacher 2021-06-02 14:29:48 +0200
commit: 04858ddd222bbf7156f33f99cfb293a9b1e15ec8 (patch)
tree: 732cbf83c9d842a911d515abbad7c153c4159354 /internal/fusefrontend_reverse/ctlsock_interface.go
parent: 242cdf966f262b2e20785eb0ff49ac55a8bd4636 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/internal/fusefrontend_reverse/ctlsock_interface.go b/internal/fusefrontend_reverse/ctlsock_interface.go
index 6bf2e6a..2157044 100644
--- a/internal/fusefrontend_reverse/ctlsock_interface.go
+++ b/internal/fusefrontend_reverse/ctlsock_interface.go
@@ -23,7 +23,10 @@ func (rn *RootNode) EncryptPath(plainPath string) (string, error) {
 	parts := strings.Split(plainPath, "/")
 	for _, part := range parts {
 		dirIV := pathiv.Derive(cipherPath, pathiv.PurposeDirIV)
-		encryptedPart := rn.nameTransform.EncryptName(part, dirIV)
+		encryptedPart, err := rn.nameTransform.EncryptName(part, dirIV)
+		if err != nil {
+			return "", err
+		}
 		if rn.args.LongNames && len(encryptedPart) > unix.NAME_MAX {
 			encryptedPart = rn.nameTransform.HashLongName(encryptedPart)
 		}
author	Jakob Unterwurzacher	2021-06-02 14:21:30 +0200
committer	Jakob Unterwurzacher	2021-06-02 14:29:48 +0200
commit	04858ddd222bbf7156f33f99cfb293a9b1e15ec8 (patch)
tree	732cbf83c9d842a911d515abbad7c153c4159354 /internal/fusefrontend_reverse/ctlsock_interface.go
parent	242cdf966f262b2e20785eb0ff49ac55a8bd4636 (diff)