Received: by 2002:a25:d7c1:0:0:0:0:0 with SMTP id o184csp2591072ybg; Thu, 24 Oct 2019 12:02:50 -0700 (PDT) X-Google-Smtp-Source: APXvYqwovoviWNyt/G1SaoT0hH86RATGGgfrIe/0tBEIq7JJnzoeygl11ghh9fd4cUioRI0HTdAB X-Received: by 2002:aa7:c895:: with SMTP id p21mr45850023eds.38.1571943770076; Thu, 24 Oct 2019 12:02:50 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1571943770; cv=none; d=google.com; s=arc-20160816; b=P2UfZ2i474mHuVnSBZhRRyucDiMOsg0S2y/v0GQ/Kqru8GP/LxfJgEZaWtm48pFQa5 l6Q+pQT0dxxe58HEQOgmC0QwHiW/844G8aE991QWoGIguDaXdeVErZhaxczFnhIL1ZI8 ECPSK1y5q4PdiQgTC0qYpBQDcbI2ISwaA1s8gyvIIINa5zgwSj1i+R5sZW64qyh4+VaB J48A27czOyMeBAMg5prC+ZAyb2Sy4B6Qxo0NSsGiICn/RCSNWyjviGgGwhATzktYbtz1 +yUMxA+7htykEqy+C/MnChhijecii8r8GE6PoJsHwA/ZPA4McDrqIwn3v4ogtkcfqblF tL5A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:mail-followup-to :message-id:subject:cc:to:from:date:dkim-signature; bh=UZfqbwJWgOrDyqqbDjenEFgPvn43ry1ACm9OHDegZ0M=; b=tu+wxFEDbFAmTAK8EaD3vVerTtMDG8+NMQq6hqNQ25+tNoBxM9jkLiudoQRk7LFojL yiPTIhjdut9Nb+52kVAwxZ4mwKZ31R/0CeVPpt/nqAhxeE5O2lFJ9wignr003A9lPWye 00AZFtB3uGlmnNBaNl/Qov94NX14LJlYq5Pjuna11g0BAPb14Lv7r1fQJJ1L376PH3ni bTmjgrTm0yp11niVDqKE2oonys3agbemjUQMYkRGbOdm2/enFQN4WdFrUIzZwN848ud5 9q1dlebdKQBlBgDdW4Q/0hDUIKi8P/sv0zHTNLt3O5rMyqD7IRUt1/pSqWAh5oId/wLE 79hg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=zmudk+9t; spf=pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id l19si9597556ejz.106.2019.10.24.12.02.15; Thu, 24 Oct 2019 12:02:50 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=zmudk+9t; spf=pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2408288AbfJXCpC (ORCPT + 99 others); Wed, 23 Oct 2019 22:45:02 -0400 Received: from mail.kernel.org ([198.145.29.99]:46060 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2406591AbfJXCpC (ORCPT ); Wed, 23 Oct 2019 22:45:02 -0400 Received: from sol.localdomain (c-24-5-143-220.hsd1.ca.comcast.net [24.5.143.220]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id 450E0205ED; Thu, 24 Oct 2019 02:45:01 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1571885101; bh=a2UR3JAnyAGjBvbCcFgN3hdU19LvuMRY6eXNL0aIMNo=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=zmudk+9tdkF/VJbvVxVh1n6lA0HdvlzM3gBA3QAF1BMscyQJAyMeSZ2oTVsjvvwLT 7zWvsbjWU2UqzIiP1iVr+lRHIhxOdYWj/Wc+SyebQphK85AotCcV+0CDrhh0+yrGnd B9bdgo2eMR7JqYlPmsGNBDIgqcbCsb1s4q8+D25A= Date: Wed, 23 Oct 2019 19:44:59 -0700 From: Eric Biggers To: Christoph Hellwig Cc: "Theodore Y. Ts'o" , Satya Tangirala , Paul Lawrence , Dave Chinner , linux-f2fs-devel@lists.sourceforge.net, linux-fscrypt@vger.kernel.org, linux-fsdevel@vger.kernel.org, Jaegeuk Kim , linux-ext4@vger.kernel.org, Paul Crowley Subject: Re: [PATCH 1/3] fscrypt: add support for inline-encryption-optimized policies Message-ID: <20191024024459.GA743@sol.localdomain> Mail-Followup-To: Christoph Hellwig , "Theodore Y. Ts'o" , Satya Tangirala , Paul Lawrence , Dave Chinner , linux-f2fs-devel@lists.sourceforge.net, linux-fscrypt@vger.kernel.org, linux-fsdevel@vger.kernel.org, Jaegeuk Kim , linux-ext4@vger.kernel.org, Paul Crowley References: <20191021230355.23136-1-ebiggers@kernel.org> <20191021230355.23136-2-ebiggers@kernel.org> <20191022052712.GA2083@dread.disaster.area> <20191022060004.GA333751@sol.localdomain> <20191022133001.GA23268@mit.edu> <20191023092718.GA23274@infradead.org> <20191023125701.GA2460@mit.edu> <20191024012759.GA32358@infradead.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20191024012759.GA32358@infradead.org> User-Agent: Mutt/1.12.2 (2019-09-21) Sender: linux-ext4-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-ext4@vger.kernel.org On Wed, Oct 23, 2019 at 06:27:59PM -0700, Christoph Hellwig wrote: > > If and when the vaporware shows up in real hardware, and assuming that > > fscrypt is useful for this hardware, we can name it > > "super_duper_fancy_inline_crypto". :-) > > I think you are entirely missing the point. The point is that naming > the option someting related to inline encryption is fundamentally > wrong. It is related to a limitation of existing inline crypto > engines, not related to the fudamental model. And all the other > rambling below don't matter either. > Would you be happy with something that more directly describes the change the flag makes, like FSCRYPT_POLICY_FLAG_CONTENTS_IV_INO_LBLK_64? I.e., the IVs for contents encryption are 64-bit and contain the inode and logical block numbers. Actually, we could use the same key derivation and IV generation for directories and symlinks too, which would result in just FSCRYPT_POLICY_FLAG_IV_INO_LBLK_64. (lblk is 0 when encrypting a filename.) Although, in general it would be nice to name the settings in ways that are easier for people not intimately familiar with the crypto to understand... - Eric