ecryptfs: fix memory corruption when storing crypto info in xattrs

/**

 * ecryptfs_write_headers_virt

 * @page_virt: The virtual address to write the headers to

 * @max: The size of memory allocated at page_virt

 * @size: Set to the number of bytes written by this function

 * @crypt_stat: The cryptographic context

 * @ecryptfs_dentry: The eCryptfs dentry

 *

 * Returns zero on success

 */

static int ecryptfs_write_headers_virt(char *page_virt, size_t *size,

static int ecryptfs_write_headers_virt(char *page_virt, size_t max,

				       size_t *size,

				       struct ecryptfs_crypt_stat *crypt_stat,

				       struct dentry *ecryptfs_dentry)

{

	offset += written;

	rc = ecryptfs_generate_key_packet_set((page_virt + offset), crypt_stat,

					      ecryptfs_dentry, &written,

					      PAGE_CACHE_SIZE - offset);

					      max - offset);

	if (rc)

		ecryptfs_printk(KERN_WARNING, "Error generating key packet "

				"set; rc = [%d]\n", rc);

		goto out;

	}

	/* Released in this function */

	virt = kzalloc(crypt_stat->num_header_bytes_at_front, GFP_KERNEL);

	virt = (char *)get_zeroed_page(GFP_KERNEL);

	if (!virt) {

		printk(KERN_ERR "%s: Out of memory\n", __func__);

		rc = -ENOMEM;

		goto out;

	}

	rc = ecryptfs_write_headers_virt(virt, &size, crypt_stat,

					 ecryptfs_dentry);

	rc = ecryptfs_write_headers_virt(virt, PAGE_CACHE_SIZE, &size,

					 crypt_stat, ecryptfs_dentry);

	if (unlikely(rc)) {

		printk(KERN_ERR "%s: Error whilst writing headers; rc = [%d]\n",

		       __func__, rc);

		goto out_free;

	}

out_free:

	memset(virt, 0, crypt_stat->num_header_bytes_at_front);

	kfree(virt);

	free_page((unsigned long)virt);

out:

	return rc;

}