Security certifications such as FIPS require the capability to securely delete files, which is problematic under JFFS2's log-based model. We can ensure that all dirty or obsolete data has been cleared at the conclusion of secure deletion by forcibly driving the existing garbage collection system however. To that end, these patches provide two pieces of functionality: 1. -POLL signal handling in jffs2_gc to force complete collection of dirty blocks up to the time it was started. 2. Synchronisation with userspace (via debugfs files) to allow secure deletion to wait until that process has completed. Theuns Verwoerd (2): jffs2: Provide forced dirty node cleanup via POLL signal jffs2: Provide jffs2_sync files to track gc POLL progress fs/jffs2/Kconfig | 8 ++++++++ fs/jffs2/background.c | 31 ++++++++++++++++++++++++++++++- fs/jffs2/build.c | 1 + fs/jffs2/jffs2_fs_sb.h | 2 ++ fs/jffs2/nodelist.h | 1 + fs/jffs2/nodemgmt.c | 6 +++++- fs/jffs2/super.c | 40 ++++++++++++++++++++++++++++++++++++++++ 7 files changed, 87 insertions(+), 2 deletions(-) -- 2.18.0
[PATCH 0/2] Secure deletion under JFFS2
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: [PATCH 0/2] Secure deletion under JFFS2
- From: theuns.verwoerd@xxxxxxxxxxxxxxxxxxx (Theuns Verwoerd)
- Date: Fri, 20 Jul 2018 11:50:10 +1200
- Follow-Ups:
- [PATCH 0/2] Secure deletion under JFFS2
- From: Richard Weinberger
- [PATCH 2/2] jffs2: Provide jffs2_sync files to track gc POLL progress
- From: Theuns Verwoerd
- [PATCH 1/2] jffs2: Provide forced dirty node cleanup via POLL signal
- From: Theuns Verwoerd
- [PATCH 0/2] Secure deletion under JFFS2
- Prev by Date: [PATCH v3 32/33] mtd: rawnand: do not export nand_scan_[ident|tail]() anymore
- Next by Date: [PATCH 1/2] jffs2: Provide forced dirty node cleanup via POLL signal
- Previous by thread: [PATCH v3 00/33] Allow dynamic allocations during NAND chip identification phase
- Next by thread: [PATCH 1/2] jffs2: Provide forced dirty node cleanup via POLL signal
- Index(es):
 |