Received: by 2002:a25:1506:0:0:0:0:0 with SMTP id 6csp1250333ybv;
        Fri, 7 Feb 2020 17:36:23 -0800 (PST)
X-Google-Smtp-Source: APXvYqx9OOZ8VcXFVHXKrRaaEdXj/L8EZeu+7cHzghyuLMtKEcjRFvWByR7AYmN+3lssp+o1sFwI
X-Received: by 2002:aca:1c0d:: with SMTP id c13mr3859215oic.44.1581125783822;
        Fri, 07 Feb 2020 17:36:23 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1581125783; cv=none;
        d=google.com; s=arc-20160816;
        b=BgdP72Mlr+87dbIt68kKr5jLnGzjOpHD3BsrNjXFToa1KbrdKgsRK49DzeYHxnm3VQ
         D854EEL/9TKHbCaYYc/hw3J523HPRBiiyJqurJ97tp1xftw47XXwzJHpQj82tSx/GrVR
         +yrKl05vrwrSNpiTj5CzF7aLUcJFupWHvfy1YxIaKXXA3gJPnITNhtSMbFS5JxrLi5N7
         JU091irtM95oFbRcb0YVOczBOPk8/94qxh1UFcEbQqSLZZTm3RUayz4jG7gRd9f7yu/R
         AF4rOhVH/zAmYy7xbHpDCRSIv3tgiPldttKugFudCj03iEQyyAcxbtb1SgmIrUJi8T6f
         qaRA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:cc:to:from:subject:mime-version
         :message-id:date:dkim-signature;
        bh=GmdJt27134kNRYXiKp4wrB+O4TXMZQXM52BZBGOfEtM=;
        b=XTAcioDhXr5H0n50mf6+cFz8m+Dw+eieNXCVnSESBoi5gZ/Cx8sQrcba1qkZHzHnyd
         FVd6S26s/ID27xmIsCpno4R33rtVSzkNgEtk1TK7fjFTmtlCT0Mfak7gITKi7EAkiscc
         bIi15Yot8Z+PbHPa7NyleWfi7Fe3/5BCQwaILQkfluQJb6BgP6KFcXp8BDOKN49QNXls
         bTLbBGWSvdCQktoDvGXOl3We97kesSAKcFDZZKg1RPMMP5656r2w5wJVXuy7ieVCPcvp
         76XRPfBdvLEiM+FnJhs1fCUSNqH7MFbWuIxpYPRryWWSS7CBrzLaWrp19RmC0QdzdBJG
         QSGg==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=NEywg0M1;
       spf=pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-ext4-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id p3si4779238oih.186.2020.02.07.17.36.04;
        Fri, 07 Feb 2020 17:36:23 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20161025 header.b=NEywg0M1;
       spf=pass (google.com: best guess record for domain of linux-ext4-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-ext4-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1727465AbgBHBf5 (ORCPT <rfc822;mona70209@gmail.com> + 99 others);
        Fri, 7 Feb 2020 20:35:57 -0500
Received: from mail-pg1-f202.google.com ([209.85.215.202]:53502 "EHLO
        mail-pg1-f202.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726743AbgBHBf5 (ORCPT
        <rfc822;linux-ext4@vger.kernel.org>); Fri, 7 Feb 2020 20:35:57 -0500
Received: by mail-pg1-f202.google.com with SMTP id y15so770231pgk.20
        for <linux-ext4@vger.kernel.org>; Fri, 07 Feb 2020 17:35:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20161025;
        h=date:message-id:mime-version:subject:from:to:cc;
        bh=GmdJt27134kNRYXiKp4wrB+O4TXMZQXM52BZBGOfEtM=;
        b=NEywg0M14MnLDWsKOucPQs1roEACrJM00yn5kNJb9zMFZHTZqInTtQiy8IBGz9p2Hj
         S2N+jRLMGwbFKmZnn0koP7Tcjk3PRRe25bAoZCO6ZvkOdazou5mlWmZGxidYIkcSGuOg
         Nc74v+ubh+mtZLefCCwVuXd9BDeFc8qAxw99sNFE3K2Kpg4BaE72oOWDN6XOg4MbOAr3
         dE6k/7AgKUChxUQkZAzZOa2U+EcNbV65+xrCtvviZzWWuHM3cy3/YjezlVDdUeYdz/l0
         cT1t9iCftO1kkoHUVh9CSB9TUY9yRGjwmslRWvlUSeA23a9y0cc6gFqjzMT4jbC4J+6s
         Ch8Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:date:message-id:mime-version:subject:from:to:cc;
        bh=GmdJt27134kNRYXiKp4wrB+O4TXMZQXM52BZBGOfEtM=;
        b=iKhTzGDBYUFAamURKtR7txOMeRIieu9snKzS4CJPgYzB5M8nyxWBXsi83kYmJNoMxv
         Cbs+uUOQROqe/eiQM8uBd0FHcEXxjSPErFTu8kfk0RqOQorFbmxCrXwx2353sNiZvIGO
         or3elDVSoWURjRP7N5jhPtP5emX/Uu/UPZGNTxdNWgksJVLdJj76UfWmL4exl2z4NYo5
         EPmImkDW5TFFuNX5RkCBAHI9xBms+jPW6iIFu8XZ8jW5F5O3FGD/6o4xQkLOCUCUGktk
         hGoAc0h0i+DgZIyAJhzKxG7MLYYFpfe7J+NniJiWB9nv9jHLBJ1gznVdLpx0DiEfDMbq
         R8lQ==
X-Gm-Message-State: APjAAAV/sKnIBUUZS/9goi+1vWIElDiHUf0hU724VmbD16s3VfTEoGzG
        7O2NtoZ3sB2EXk3DwNsx28EN+Ne3Hd8=
X-Received: by 2002:a63:211f:: with SMTP id h31mr1939792pgh.299.1581125756217;
 Fri, 07 Feb 2020 17:35:56 -0800 (PST)
Date:   Fri,  7 Feb 2020 17:35:44 -0800
Message-Id: <20200208013552.241832-1-drosen@google.com>
Mime-Version: 1.0
X-Mailer: git-send-email 2.25.0.341.g760bfbb309-goog
Subject: [PATCH v7 0/8] Support fof Casefolding and Encryption
From:   Daniel Rosenberg <drosen@google.com>
To:     "Theodore Ts'o" <tytso@mit.edu>, linux-ext4@vger.kernel.org,
        Jaegeuk Kim <jaegeuk@kernel.org>, Chao Yu <chao@kernel.org>,
        linux-f2fs-devel@lists.sourceforge.net,
        Eric Biggers <ebiggers@kernel.org>,
        linux-fscrypt@vger.kernel.org,
        Alexander Viro <viro@zeniv.linux.org.uk>,
        Richard Weinberger <richard@nod.at>
Cc:     linux-mtd@lists.infradead.org,
        Andreas Dilger <adilger.kernel@dilger.ca>,
        Jonathan Corbet <corbet@lwn.net>, linux-doc@vger.kernel.org,
        linux-kernel@vger.kernel.org, linux-fsdevel@vger.kernel.org,
        Gabriel Krisman Bertazi <krisman@collabora.com>,
        kernel-team@android.com, Daniel Rosenberg <drosen@google.com>
Content-Type: text/plain; charset="UTF-8"
Sender: linux-ext4-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-ext4.vger.kernel.org>
X-Mailing-List: linux-ext4@vger.kernel.org

These patches are all on top of torvalds/master

Ext4 and F2FS currently both support casefolding and encryption, but not at
the same time. These patches aim to rectify that.

I moved the identical casefolding dcache operations for ext4 and f2fs into
fs/libfs.c, as all filesystems using casefolded names will want them.

I've also adjust fscrypt to not set it's d_revalidate operation during it's
prepare lookup, instead having the calling filesystem set it up. This is
done to that the filesystem may have it's own dentry_operations. Also added
a helper function in libfs.c that will work for filesystems supporting both
casefolding and fscrypt.

For Ext4, since the hash for encrypted casefolded directory names cannot be
computed without the key, we need to store the hash on disk. We only do so
for encrypted and casefolded directories to avoid on disk format changes.
Previously encryption and casefolding could not be on the same filesystem,
and we're relaxing that requirement. F2fs is a bit more straightforward
since it already stores hashes on disk.

I've updated the related tools with just enough to enable the feature. I
still need to adjust ext4's fsck's, although without access to the keys,
neither fsck will be able to verify the hashes of casefolded and encrypted
names.

v7 chances:
Moved dentry operations from unicode to libfs, added new iterator function
to unicode to allow this.
Added libfs function for setting dentries to remove code duplication between
ext4 and f2fs.

v6 changes:
Went back to using dentry_operations for casefolding. Provided standard
implementations in fs/unicode, avoiding extra allocation in d_hash op.
Moved fscrypt d_ops setting to be filesystem's responsibility to maintain
compatibility with casefolding and overlayfs if casefolding is not used
fixes some f2fs error handling

v4-5: patches submitted on fscrypt

v3 changes:
fscrypt patch only creates hash key if it will be needed.
Rebased on top of fscrypt branch, reconstified match functions in ext4/f2fs

v2 changes:
fscrypt moved to separate thread to rebase on fscrypt dev branch
addressed feedback, plus some minor fixes


Daniel Rosenberg (8):
  unicode: Add utf8_casefold_iter
  fs: Add standard casefolding support
  f2fs: Use generic casefolding support
  ext4: Use generic casefolding support
  fscrypt: Have filesystems handle their d_ops
  f2fs: Handle casefolding with Encryption
  ext4: Hande casefolding with encryption
  ext4: Optimize match for casefolded encrypted dirs

 Documentation/filesystems/ext4/directory.rst |  27 ++
 fs/crypto/fname.c                            |   7 +-
 fs/crypto/fscrypt_private.h                  |   1 -
 fs/crypto/hooks.c                            |   1 -
 fs/ext4/dir.c                                |  78 +----
 fs/ext4/ext4.h                               |  93 ++++--
 fs/ext4/hash.c                               |  26 +-
 fs/ext4/ialloc.c                             |   5 +-
 fs/ext4/inline.c                             |  41 ++-
 fs/ext4/namei.c                              | 325 ++++++++++++-------
 fs/ext4/super.c                              |  21 +-
 fs/f2fs/dir.c                                | 127 +++-----
 fs/f2fs/f2fs.h                               |  15 +-
 fs/f2fs/hash.c                               |  25 +-
 fs/f2fs/inline.c                             |   9 +-
 fs/f2fs/namei.c                              |   1 +
 fs/f2fs/super.c                              |  17 +-
 fs/f2fs/sysfs.c                              |  10 +-
 fs/libfs.c                                   | 127 ++++++++
 fs/ubifs/dir.c                               |  18 +
 fs/unicode/utf8-core.c                       |  25 +-
 include/linux/f2fs_fs.h                      |   3 -
 include/linux/fs.h                           |  24 ++
 include/linux/fscrypt.h                      |   6 +-
 include/linux/unicode.h                      |  10 +
 25 files changed, 671 insertions(+), 371 deletions(-)

-- 
2.25.0.341.g760bfbb309-goog