Re: [PATCH v2 1/3] dm-inlinecrypt: Add inline encryption support

From: Christoph Hellwig
Date: Fri Oct 18 2024 - 01:59:53 EST

Next message: Jingyi Wang: "[PATCH v4] dt-bindings: phy: Add QMP UFS PHY compatible for QCS8300"
Previous message: Ian Rogers: "[PATCH v2] perf check: Add sanitizer feature and use to avoid test failure"
In reply to: Christoph Hellwig: "Re: [PATCH v2 1/3] dm-inlinecrypt: Add inline encryption support"
Next in thread: Adrian Vovk: "Re: [PATCH v2 1/3] dm-inlinecrypt: Add inline encryption support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Oct 18, 2024 at 01:44:19AM -0400, Adrian Vovk wrote:
> > So just run a target on each partition.
>
>
> That has different semantics. If I encrypt each virtual partition there's
> nothing encrypting the metadata around the virtual partitions. Of course,
> this is a rather contrived example but point stands, the semantics are
> different.

Then you set up an dm-crype device mapper table for the partition table as
well.

> > This is the prime example of why allowing higher layers to skip
> > encryption is a no-go.
> >
>
> In what way does that break the file system's security model? Could you
> elaborate on what's objectionable about the behavior here?

Because you are now bypassing encryption for certainl LBA ranges in
the file system based on hints/flags for something sitting way above
in the stack.

Next message: Jingyi Wang: "[PATCH v4] dt-bindings: phy: Add QMP UFS PHY compatible for QCS8300"
Previous message: Ian Rogers: "[PATCH v2] perf check: Add sanitizer feature and use to avoid test failure"
In reply to: Christoph Hellwig: "Re: [PATCH v2 1/3] dm-inlinecrypt: Add inline encryption support"
Next in thread: Adrian Vovk: "Re: [PATCH v2 1/3] dm-inlinecrypt: Add inline encryption support"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]