Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp2335601rwb;
        Wed, 30 Nov 2022 05:32:09 -0800 (PST)
X-Google-Smtp-Source: AA0mqf6ZtWWAoUCIf0uEY8X7G7AlJnurqWxXQejkcAUKrz0JfG1oEoyd2JVGnXznPMr/LOwL/jIu
X-Received: by 2002:a17:902:efd6:b0:189:94e6:6a8e with SMTP id ja22-20020a170902efd600b0018994e66a8emr11207477plb.72.1669815129446;
        Wed, 30 Nov 2022 05:32:09 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1669815129; cv=none;
        d=google.com; s=arc-20160816;
        b=k0cR8yMmdupuhyfTfwMP58JfzhIAhtvvNKLCUe/QG4xz2sAdB9wqpqJ0NRBVp+jp2W
         9zetGz3eyD+8BpKQ/YxgZVHwjzp6gMQA3sXd+6LFrcF729rK4ceVnviU861alk1KI+vb
         QjTsQjygaJ7m6cAZy9cGUpkFPy0I6PpWGPpXsFUKc9oPHdePwxd8bgxvrjWji1F8C2jG
         vlIwEqJ8bXwzhkfLNYpK4HQHQjrHpDzJertVLfimZVSo6XA+TlA9R84I0g9NO+1mifYQ
         alX10wIBFyJKcVhfCDA0yWwUc+Naq8UhP/CH9km1SefQEDg4xs+7ss/gC5sHoKkTodiw
         rRSg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-language:content-transfer-encoding
         :in-reply-to:mime-version:user-agent:date:message-id:from:references
         :cc:to:subject:dkim-signature;
        bh=g2+Y+FVxr8rMK88htgWTuTuScnJMXGjZ6V1dViw2hbU=;
        b=bO6jm6W0owNQHOWCAd9FRljxIrCupqLnVIBQiK5wS+T8cwHmrjUioNbzOHDrzaP/O7
         Es7QaF9U6A5d9f52SunK2KIWLJtVhqa7wcFpBB+A3jtlBUz8LH+S/qj9GeIu+0AeK6w5
         LP94/PbZ/SoFHYxdaJLeMj6Gv0LfJoXPKAFfB3468t2BcJyie/1AhemFKThVn79GiQY1
         QwcDzOnwAVyWYeJkM+CO2cB8O3iX2qns15S4fNKF56DncBwMeeLE6hvdcOiBVWI2F3xp
         RgGs8xlIFrULsN1gMudZelznXKu28PadVcCfupDme0O615g/sMrTSVkxDtzf0njQCVop
         WknA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=Fdb0eo6t;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id u14-20020a056a00158e00b005747e0112e0si1672063pfk.310.2022.11.30.05.31.58;
        Wed, 30 Nov 2022 05:32:09 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=Fdb0eo6t;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S235202AbiK3NEn (ORCPT <rfc822;4ak.abc@gmail.com> + 84 others);
        Wed, 30 Nov 2022 08:04:43 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42406 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S230004AbiK3NEl (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 30 Nov 2022 08:04:41 -0500
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 42F725F84C
        for <linux-kernel@vger.kernel.org>; Wed, 30 Nov 2022 05:03:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1669813388;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         content-transfer-encoding:content-transfer-encoding:
         in-reply-to:in-reply-to:references:references;
        bh=g2+Y+FVxr8rMK88htgWTuTuScnJMXGjZ6V1dViw2hbU=;
        b=Fdb0eo6tpaQ0p9A9aQROSpOXmG+qqCNoqOBfbh7vhTt5d2Xq71vvbOrArdZBvOfwrjMjOi
        Bsz+Bw4bCn0yFYm9ghkJyAR2vSG9viXXZI7TZMfWWfiG6FJ/f8wMEQekRMjazVorWbkj9B
        x1Uy0qcWGRCcmllnGOkd1bBu9aUP6tk=
Received: from mail-pl1-f200.google.com (mail-pl1-f200.google.com
 [209.85.214.200]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id
 us-mta-575-5XIeABU_P4uQjDi5KGxrXQ-1; Wed, 30 Nov 2022 08:03:06 -0500
X-MC-Unique: 5XIeABU_P4uQjDi5KGxrXQ-1
Received: by mail-pl1-f200.google.com with SMTP id o8-20020a170902d4c800b001898ea5e030so9568228plg.13
        for <linux-kernel@vger.kernel.org>; Wed, 30 Nov 2022 05:03:06 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=content-language:content-transfer-encoding:in-reply-to:mime-version
         :user-agent:date:message-id:from:references:cc:to:subject
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=g2+Y+FVxr8rMK88htgWTuTuScnJMXGjZ6V1dViw2hbU=;
        b=0FUabX3XD/peDljOsD6e1pYkmckFP0RgK/z6TzgSX5ax1HwZLej8ySxIvIilMjf5c/
         XsiEPGsUNvqxNFS6Sg8N15GaIX3cVPaiux0wMgHmjJbX9bhMGVRbCJlv/RUEEe9eJ5HS
         OjCzd/VfZvEcO3WEfbx98xyIPhzVOk+J6v63F6L2aYZnGj2n9tL1ySZ/JNqaZ8j9Xm7k
         qi8ps9NI3P/idlDruB7E8gD6Mo96Q6raVKbJSTSAF4lYvh+PZ7utOy7mfYILpWe5bpPF
         hHoZ13xs5wcMFPWTMoX1oJgDhjs16vk8L4C/akgOyAx1x8ldq6Iu643HOgpcTqHCSH7h
         e5Ug==
X-Gm-Message-State: ANoB5plfH1igt7IFy79XSEZk/LnblJGFkrJn8fVae91i4HWSN4lluQnn
        1UVUelhU0LIgo6Xfe8clfYPmkQP8JJP06Ju78OQ1vYjcmZI4UiyBXBGQrapkoxyoZNBlXbV6rmx
        zPS8XNky92Hv/pqik2GeXEHsITnXYQDb94I/cPXtrfhXUd4YumzHx7iiOp/P+vwC49MBJDDjktQ
        ==
X-Received: by 2002:a63:9dce:0:b0:478:936:3427 with SMTP id i197-20020a639dce000000b0047809363427mr17226515pgd.432.1669813385302;
        Wed, 30 Nov 2022 05:03:05 -0800 (PST)
X-Received: by 2002:a63:9dce:0:b0:478:936:3427 with SMTP id i197-20020a639dce000000b0047809363427mr17226472pgd.432.1669813384849;
        Wed, 30 Nov 2022 05:03:04 -0800 (PST)
Received: from [10.72.12.171] ([43.228.180.230])
        by smtp.gmail.com with ESMTPSA id z7-20020a17090a398700b0021912989f81sm3054876pjb.51.2022.11.30.05.03.01
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Wed, 30 Nov 2022 05:03:04 -0800 (PST)
Subject: Re: [PATCH v4] ceph: mark directory as non-complete complete after
 loading key
To:     Jeff Layton <jlayton@kernel.org>,
        Gregory Farnum <gfarnum@redhat.com>,
        Ilya Dryomov <idryomov@gmail.com>
Cc:     Venky Shankar <vshankar@redhat.com>,
        =?UTF-8?Q?Lu=c3=ads_Henriques?= <lhenriques@suse.de>,
        ceph-devel@vger.kernel.org, linux-kernel@vger.kernel.org
References: <20221129103949.19737-1-lhenriques@suse.de>
 <4914a195-edc0-747b-6598-9ac9868593a1@redhat.com>
 <CAOi1vP8raoFP2dsc6RY1fONCsHh5FYv2xifFY7pHXZWX=-vePw@mail.gmail.com>
 <20e0674a-4e51-a352-9ce2-d939cd4f3725@redhat.com>
 <CAOi1vP_H8jE4ZU4a4srhQev3odECgZD1LyxA8dv+Fk-bVDvoyQ@mail.gmail.com>
 <CAJ4mKGb=_CWTh5rrAFiib66-S6WeT=ajjkN_pOAac4d8uC9fDQ@mail.gmail.com>
 <4b7ccbee-1135-09a7-9255-2f84e8907614@redhat.com>
 <1401f070248db62f0b41092db4bb3550861063af.camel@kernel.org>
From:   Xiubo Li <xiubli@redhat.com>
Message-ID: <b74b486a-1159-1b89-74c9-263bacb75452@redhat.com>
Date:   Wed, 30 Nov 2022 21:02:59 +0800
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101
 Thunderbird/78.10.1
MIME-Version: 1.0
In-Reply-To: <1401f070248db62f0b41092db4bb3550861063af.camel@kernel.org>
Content-Type: text/plain; charset=iso-8859-15; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-US
X-Spam-Status: No, score=-3.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,NICE_REPLY_A,
        RCVD_IN_DNSWL_LOW,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_NONE
        autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org


On 30/11/2022 18:11, Jeff Layton wrote:
> On Wed, 2022-11-30 at 16:25 +0800, Xiubo Li wrote:
>> On 30/11/2022 14:54, Gregory Farnum wrote:
>>> On Tue, Nov 29, 2022 at 7:21 AM Ilya Dryomov <idryomov@gmail.com> wrote:
>>>> On Tue, Nov 29, 2022 at 3:50 PM Xiubo Li <xiubli@redhat.com> wrote:
>>>>> On 29/11/2022 22:32, Ilya Dryomov wrote:
>>>>>> On Tue, Nov 29, 2022 at 3:15 PM Xiubo Li <xiubli@redhat.com> wrote:
>>>>>>> On 29/11/2022 18:39, Lu?s Henriques wrote:
>>>>>>>> When setting a directory's crypt context, ceph_dir_clear_complete() needs to
>>>>>>>> be called otherwise if it was complete before, any existing (old) dentry will
>>>>>>>> still be valid.
>>>>>>>>
>>>>>>>> This patch adds a wrapper around __fscrypt_prepare_readdir() which will
>>>>>>>> ensure a directory is marked as non-complete if key status changes.
>>>>>>>>
>>>>>>>> Signed-off-by: Lu?s Henriques <lhenriques@suse.de>
>>>>>>>> ---
>>>>>>>> Hi Xiubo,
>>>>>>>>
>>>>>>>> Here's a rebase of this patch.  I did some testing but since this branch
>>>>>>>> doesn't really have full fscrypt support, I couldn't even reproduce the
>>>>>>>> bug.  So, my testing was limited.
>>>>>>> I'm planing not to update the wip-fscrypt branch any more, except the IO
>>>>>>> path related fixes, which may introduce potential bugs each time as before.
>>>>>>>
>>>>>>> Since the qa tests PR has finished and the tests have passed, so we are
>>>>>>> planing to merge the first none IO part, around 27 patches. And then
>>>>>>> pull the reset patches from wip-fscrypt branch.
>>>>>> I'm not sure if merging metadata and I/O path patches separately
>>>>>> makes sense.  What would a user do with just filename encryption?
>>>>> Hi Ilya,
>>>>>
>>>>> I think the IO ones should be followed soon.
>>>>>
>>>>> Currently the filename ones have been well testes. And the contents will
>>>>> be by passed for now.
>>>>>
>>>>> Since this is just for Dev Preview feature IMO it should be okay (?)
>>>> I don't think there is such a thing as a Dev Preview feature when it
>>>> comes to the mainline kernel, particularly in the area of filesystems
>>>> and storage.  It should be ready for users at least to some extent.  So
>>>> my question stands: what would a user do with just filename encryption?
>>> I think how this merges is up to you guys and the kernel practices.
>>> Merging only the filename encryption is definitely of *limited*
>>> utility, but I don't think it's totally pointless -- the data versus
>>> metadata paths are different and you are protecting against somewhat
>>> different vulnerabilities and threat models with them. For instance,
>>> MDS logs dump filenames, but OSD logs do not dump object data. There's
>>> some obvious utility there even if you basically trust your provider,
>>> or run your own cluster but want to be more secure about sending logs
>>> via ceph-post-file.
>> Hi Greg,
>>
>> Sounds reasonable to me.
>>
>> I will leave this to Ilya.
>>
>> Thanks!
> For the record, the only reason I proposed merging them in multiple sets
> was that it is a large set of changes and I was leery of regressions. I
> don't see a lot of value in enabling just filename encryption without
> the content piece.
>
> I'd be fine with merging it all en-masse, though it's a bit more to wade
> through if we end up having to bisect to track down a bug.
>   

Hi Jeff,

After Ilya reviewing the testing's non-encrypt patches to make sure I 
won't do the rebase again and again for a large number of patches, I 
will begin to pick the contents patches from wip-fscrypt branch.

And then run the qa test again.

Thanks all :-)

- Xiubo