Received: by 10.223.148.5 with SMTP id 5csp6155451wrq; Wed, 17 Jan 2018 10:07:03 -0800 (PST) X-Google-Smtp-Source: ACJfBosN1gUjKi5uwf8tnuX2sWMrtxTnZgX44P+oBWGMLQ9qcri2ZTxViQrQqdZuwWpsw9cUtSLq X-Received: by 10.99.126.17 with SMTP id z17mr26664666pgc.338.1516212423852; Wed, 17 Jan 2018 10:07:03 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1516212423; cv=none; d=google.com; s=arc-20160816; b=zt5RbuCX/fLq3gb7otN1SfUffL+aD1/TM+ch5cbOMKwAuqVTbeO1gcJOUzVFdLCAj8 WkkoE4Ni/+EkbfRfBTaSC7k5cVsNSm0w3dfTuceK6G5PF64VgTL4z8jzVWDxuNKQPptP GVlJ6+Is8EIikPxbOtFDJq0it1+Vv2p6K1jslbqtuPy/1Tc7dUuF7b4yIMVvIVp3106I 2gdbE0GR4sbwqdwIefP0W0pn+da1XTvNNHZKuFH92Keal8rwCVMjCZgEspubT/ZKehmx CUMSfLEuZ3QIlQIIZuzxRepuNTYOSThJUHrMqnJ7i7eNxlegG7fBo7HKjdodE9E69gqB byQQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-transfer-encoding:content-disposition:mime-version :references:mail-followup-to:message-id:subject:cc:to:from:date :dkim-signature:arc-authentication-results; bh=liJPlC1oqP0m7+oxaSlLJNZMJ54WKTeDDY+s72yP59c=; b=s+xHOKtA84aV1oG6xZ7n408ev11iJdNfo8+QES1o4d5SOycEtUz0mvnl5x9ymF+5Cy jdQIhcD5eO1EHLm59UL8UG1Ceql3M1vhhKbkD3Yz0l5H7AXQbQ70MLxP6XFVbtOclFaQ NRkWI9Z9SA/dg+B+KlcbnZClWenKRkMKjUpu6WnIta1jfJ91C0n64ZqiMv3+XaYVatXx G2qTDjjlDXVilmuouiAIdf/6BWEuEgXPzhl1EUUXN2X84vEvIVQQy2lq2pt3yA0M7qan UKrSm4eX3K3l5BI/GR1itzA3Wp1KCblfgXnTfAPCRCTMmuFqsGvykhuflcI3nvkRmR+v toqw== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@thunk.org header.s=ef5046eb header.b=EC/tkM05; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 72si3656316pfj.408.2018.01.17.10.06.49; Wed, 17 Jan 2018 10:07:03 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=fail header.i=@thunk.org header.s=ef5046eb header.b=EC/tkM05; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753690AbeAQSGJ (ORCPT + 99 others); Wed, 17 Jan 2018 13:06:09 -0500 Received: from imap.thunk.org ([74.207.234.97]:55706 "EHLO imap.thunk.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752654AbeAQSGG (ORCPT ); Wed, 17 Jan 2018 13:06:06 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=thunk.org; s=ef5046eb; h=In-Reply-To:Content-Transfer-Encoding:Content-Type: MIME-Version:References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=liJPlC1oqP0m7+oxaSlLJNZMJ54WKTeDDY+s72yP59c=; b=EC/tkM05Egv7Ve5FOFrfBL5XEt LNmwysP8k3s/8mlzIr+cEF01AtRCFoHaG8Bng+G7BQEMVZCxZUTwHnIL3fS0pCDp6sKW3c8LxCLV8 U20UNWou5KeHLYE7dPdWC8UZB0Sc1vz7pz/5bWITXxDs2pF/pq6IGcZRD6b6DctgCTK4=; Received: from root (helo=callcc.thunk.org) by imap.thunk.org with local-esmtp (Exim 4.89) (envelope-from ) id 1ebs5w-0001Ty-Is; Wed, 17 Jan 2018 18:05:52 +0000 Received: by callcc.thunk.org (Postfix, from userid 15806) id 0896FC01023; Wed, 17 Jan 2018 13:05:38 -0500 (EST) Date: Wed, 17 Jan 2018 13:05:37 -0500 From: Theodore Ts'o To: =?iso-8859-1?Q?Andr=E9?= Draszik Cc: Eric Biggers , linux-kernel@vger.kernel.org, Mimi Zohar , David Howells , James Morris , "Serge E. Hallyn" , Jaegeuk Kim , Jonathan Corbet , Kees Cook , linux-integrity@vger.kernel.org, keyrings@vger.kernel.org, linux-security-module@vger.kernel.org, linux-fscrypt@vger.kernel.org, linux-doc@vger.kernel.org Subject: Re: [PATCH 3/3] encrypted-keys: document new fscrypt key format Message-ID: <20180117180537.GB6948@thunk.org> Mail-Followup-To: Theodore Ts'o , =?iso-8859-1?Q?Andr=E9?= Draszik , Eric Biggers , linux-kernel@vger.kernel.org, Mimi Zohar , David Howells , James Morris , "Serge E. Hallyn" , Jaegeuk Kim , Jonathan Corbet , Kees Cook , linux-integrity@vger.kernel.org, keyrings@vger.kernel.org, linux-security-module@vger.kernel.org, linux-fscrypt@vger.kernel.org, linux-doc@vger.kernel.org References: <20180110124418.24385-1-git@andred.net> <20180110124418.24385-3-git@andred.net> <20180111044801.GB943@zzz.localdomain> <1516199939.28972.101.camel@andred.net> MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <1516199939.28972.101.camel@andred.net> User-Agent: Mutt/1.9.2 (2017-12-15) X-SA-Exim-Connect-IP: X-SA-Exim-Mail-From: tytso@thunk.org X-SA-Exim-Scanned: No (on imap.thunk.org); SAEximRunCond expanded to false Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Jan 17, 2018 at 02:38:59PM +0000, Andr? Draszik wrote: > > > [...] > > > > Please be very clear about exactly what security properties are achieved > > by > > using encrypted-keys. > > I've left out all of this in the updated documentation, as any such > information should probably be in Documentation/security/keys/trusted- > encrypted.rst in the first place. Where is this document going to be found / when will it be written? It seems really odd to be requesting a do code review when the specifications aren't available and/or haven't been written yet. I prefer to review the *design* first, as opposed to trying to both review the code and try to guess at the design and review my guess of the design at the same time.... - Ted