From: Tyler Hicks <tyhicks@canonical.com>
To: Will Morrison <camocrazed@gmail.com>
Cc: ecryptfs@vger.kernel.org
Subject: Re: Adding cipher mode as a mount option
Date: Mon, 20 May 2013 10:41:14 -0700 [thread overview]
Message-ID: <20130520174113.GA6237@boyd> (raw)
In-Reply-To: <5196E30A.7040503@gmail.com>
[-- Attachment #1: Type: text/plain, Size: 2447 bytes --]
On 2013-05-17 22:10:18, Will Morrison wrote:
> As part of implementing GCM integrity checking for eCryptfs, we
> thought that a good first step would be to take the currently
> hardcoded mode (cbc) and turn it into a mount option. Once a
> filesystem can be created and mounted using arbitrary block modes, we
> can work on allowing integrity protection via GCM.
>
> This should also provide a solution to
> https://bugs.launchpad.net/ecryptfs/+bug/1176448
>
> Does this sound like a reasonable first step? If not, what issues are
> we missing?
Yes, it does sound like a reasonable first step.
However, we don't want users to be able to mount with *any* mode. We
only want them to be able to mount using a mode that eCryptfs supports.
So, the patch should include a whitelist of modes. The list will only
have one mode, CBC. Then when you add all of the backend support for
GCM in a future patch, you would also add GCM to the whitelist.
Note that this isn't something that I'd merge upstream without the
corresponding backend work to support GCM. This would probably be patch
1 of the larger patchset that adds GCM to eCryptfs.
> In addition, does anyone have tips on speeding up the
> develop/compile/test cycle?
Do you have any specific bottlenecks that are slowing you down?
Otherwise, I'll just be guessing at what you may be doing inefficiently.
One thing that I remember greatly speeding up my eCryptfs kernel
development time was to take advantage of eCryptfs being a module and
avoid rebuilding the entire kernel after making a change.
If all of your changes are local to fs/ecryptfs/ (which they should be
for this feature), then just rebuild the module:
$ make M=fs/ecryptfs
Then, load the new module:
$ sudo insmod fs/ecryptfs/ecryptfs.ko
Now test your changes. No kernel rebuilds, no reboots (unless your
change causes a kernel oops ;), etc.
Automated testing should also speed up your development. The
ecryptfs-utils bzr tree has a test suite in tests/ (see tests/README).
Leverage that as much as possible. Adding a way to test multiple ciphers
and modes (AES-128 w/ CBC is currently hardcoded) when you submit your
GCM kernel patches will greatly speed up the time it takes to get your
patches upstream (because it will be taking the work off of me).
>
> -Will, on behalf Will, Zameer, Michael, and Alvin
Thanks for working on this feature!
Tyler
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 836 bytes --]
prev parent reply other threads:[~2013-05-20 17:41 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-05-18 2:10 Adding cipher mode as a mount option Will Morrison
2013-05-20 17:41 ` Tyler Hicks [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20130520174113.GA6237@boyd \
--to=tyhicks@canonical.com \
--cc=camocrazed@gmail.com \
--cc=ecryptfs@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.