In the Linux kernel, the following vulnerability has been resolved:
f2fs: remove clear SBINLINECRYPT flag in defaultoptions
In f2fsremount, SBINLINECRYPT flag will be clear and re-set. If create new file or open file during this gap, these files will not use inlinecrypt. Worse case, it may lead to data corruption if wrappedkey_v0 is enable.
Thread A: Thread B:
-f2fsremount -f2fsfileopen or f2fsnewinode -defaultoptions <- clear SB_INLINECRYPT flag
-fscrypt_select_encryption_impl
-parseoptions <- set SBINLINECRYPT again