From: Joe Richey <joerichey@google.com>
To: Richard Weinberger <richard@nod.at>
Cc: linux-fsdevel <linux-fsdevel@vger.kernel.org>,
"linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
Ext4 Developers List <linux-ext4@vger.kernel.org>,
Michael Halcrow <mhalcrow@google.com>,
"Theodore Ts'o" <tytso@mit.edu>,
muslukhovi@gmail.com, David Gstir <david@sigma-star.at>
Subject: Re: Idea behind EXT4_IOC_GET_ENCRYPTION_PWSALT?
Date: Tue, 29 Nov 2016 16:44:53 -0800 [thread overview]
Message-ID: <CAKpBdu3OUUjqVAwDTNUaVoyuPRun_t6U9gi1prgyoswzYPuOow@mail.gmail.com> (raw)
In-Reply-To: <bd1bb80f-f22c-1118-4438-f23372bad066@nod.at>
[-- Attachment #1: Type: text/plain, Size: 1484 bytes --]
Richard,
Our current design for fscrypt (tentative name for the userspace
filesystem encryption manager) does not use the global filesystem salt
(EXT4_IOC_GET_ENCRYPTION_PWSALT), we are planning on having a
different salt for each password used in the system. We are using
planning on using Argon2id as the password stretching algorithm, so
we'll have costs for memory, time, and parallelism stored for each
password as well as a salt.
I can't speak to other uses of the ioctl.
Joe
On Tue, Nov 29, 2016 at 1:30 PM, Richard Weinberger <richard@nod.at> wrote:
> Hi!
>
> As the subject states, I'm a bit confused wrt. EXT4_IOC_GET_ENCRYPTION_PWSALT.
> Will common fscrypt userspace depend on it?
>
> IIUC you want to store some salt to seed the user password.
> But what if /home/rw and /home/dags have different keys? Is it okay
> to use the same salt for both keys?
> Or is it an ad-hoc solution to allow an encrypted filesystem root
> because you need a way to store the seed on the same filesystem but not as
> file since all files are encrypted?
> Wouldn't a xattr stored in the filesystem root directory also do it?
>
> Long story short, I'm not sure whether we really need this ioctl command
> in UBIFS and what the designated semantics are. :-)
>
> Thanks,
> //richard
> --
> To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
[-- Attachment #2: S/MIME Cryptographic Signature --]
[-- Type: application/pkcs7-signature, Size: 4849 bytes --]
next prev parent reply other threads:[~2016-11-30 0:44 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-11-29 21:30 Idea behind EXT4_IOC_GET_ENCRYPTION_PWSALT? Richard Weinberger
2016-11-30 0:44 ` Joe Richey [this message]
2016-11-30 8:29 ` Richard Weinberger
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAKpBdu3OUUjqVAwDTNUaVoyuPRun_t6U9gi1prgyoswzYPuOow@mail.gmail.com \
--to=joerichey@google.com \
--cc=david@sigma-star.at \
--cc=linux-ext4@vger.kernel.org \
--cc=linux-fsdevel@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=mhalcrow@google.com \
--cc=muslukhovi@gmail.com \
--cc=richard@nod.at \
--cc=tytso@mit.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).