From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pg0-f45.google.com ([74.125.83.45]:32861 "EHLO mail-pg0-f45.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750953AbdBFSCz (ORCPT ); Mon, 6 Feb 2017 13:02:55 -0500 Received: by mail-pg0-f45.google.com with SMTP id 204so30426310pge.0 for ; Mon, 06 Feb 2017 10:02:55 -0800 (PST) Date: Mon, 6 Feb 2017 10:02:51 -0800 From: Eric Biggers To: Anand Jain Cc: linux-fsdevel@vger.kernel.org, Theodore Ts'o , Joe Richey Subject: Re: fs/crypt : passphrase recycle without data re-encrypt Message-ID: <20170206180251.GA97070@google.com> References: <9089cdc3-e2a8-f2ca-eea1-daa4e1c7ddea@oracle.com> <9c1ca009-cb4a-69c0-a8ba-da4b70812703@oracle.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <9c1ca009-cb4a-69c0-a8ba-da4b70812703@oracle.com> Sender: linux-fsdevel-owner@vger.kernel.org List-ID: Hi Anand, On Mon, Feb 06, 2017 at 07:16:35PM +0800, Anand Jain wrote: > > > (s/e2crypt/e4crypt, sorry) > --- > > I am looking for some information on how its been planned to > accommodate the feature such as passphrase recycle without the > data re-encryption in fs/crypto or in e4crypt ? any idea ? > Per fs/crypto and e4crypt (for the current master key derivation > method) it appears to me that its not possible, unless I am > missing something. ? > > Thanks, Anand Indeed, this needs to be implemented by userspace, but e4crypt doesn't support it yet. I've Cc'ed Joe Richey; he's currently working on a userspace program called 'fscrypt' that will support this feature. There's also a design document at https://goo.gl/55cCrI you could take a look at. Eric