cryptenroll: Fix reading keyfile from socket

systemd-cryptenroll uses the READ_FULL_FILE_CONNECT_SOCKET flag when reading the keyfile to also allow reading it from a socket. But it also sets the offset to 0, causing an unnecessary seek to the beginning of the newly opened keyfile and disables socket support again, as these do not support seeking. Disable seeking entirely to remove the unneeded seek and restore support for reading the keyfile from a socket again as with systemd-cryptsetup.
bluca · Feb 6, 2024 · 0119370 · 0119370
1 parent d50f58d
commit 0119370
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/cryptenroll/cryptenroll.c b/src/cryptenroll/cryptenroll.c
@@ -601,7 +601,7 @@ static int load_volume_key_keyfile(
         r = read_full_file_full(
                         AT_FDCWD,
                         arg_unlock_keyfile,
-                        0,
+                        UINT64_MAX,
                         SIZE_MAX,
                         READ_FULL_FILE_SECURE|READ_FULL_FILE_WARN_WORLD_READABLE|READ_FULL_FILE_CONNECT_SOCKET,
                         NULL,