[PATCH 0/12: eCryptfs] eCryptfs version 0.1.6

This patch set constitutes the 0.1.6 release of the eCryptfs
cryptographic filesystem:

http://ecryptfs.sourceforge.net/

eCryptfs is a kernel-native stacked cryptographic filesystem for
Linux. It is derived from Erez Zadok's Cryptfs, implemented through
the FiST framework for generating stacked filesystems. eCryptfs
extends Cryptfs to provide a framework for advanced key management and
policy features. The initial release includes support for mount-wide
passphrase only. eCryptfs stores cryptographic metadata in the header
of each file written, so that encrypted files can be copied between
the lower filesystems of hosts; the file will be decryptable through
eCryptfs with the proper key, and there is no need to keep track of
any additional information aside from what is already in the encrypted
file itself. We think of eCryptfs as a sort of ``pgpfs.''

This patch set implements the design reflected in the document sent to
the LKML on March 24th (subject ``eCryptfs Design Document''), with
two modifications per responses to that document. The first
modification is that extents are fixed to 4096-byte regions rather
than whatever the page size of the host happens to be. In cases where
the page size is larger than 4096 bytes and where the pages are not
aligned, eCryptfs crosses page boundaries in the lower file while
processing the 4096-byte extents. The second modification is that the
header region occupies either 8192 bytes or the page size of the host
on which the file is created, whichever is larger. This maximizes the
probability that pages will be aligned between the unencrypted and
encrypted data, which is not a requirement, but it helps with
performance.

This patch set was produced and tested against the 2.6.17-rc3-mm1
release of the kernel.

Thanks,
Phillip
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Follow-Ups:
- Re: [PATCH 0/12: eCryptfs] eCryptfs version 0.1.6
  - From: Alon Bar-Lev <[email protected]>
- Re: [PATCH 0/12: eCryptfs] eCryptfs version 0.1.6
  - From: Pavel Machek <[email protected]>
- [PATCH 13/13: eCryptfs] Debug functions
  - From: Phillip Hellewell <[email protected]>
- [PATCH 12/13: eCryptfs] Crypto functions
  - From: Phillip Hellewell <[email protected]>
- [PATCH 11/13: eCryptfs] Keystore
  - From: Phillip Hellewell <[email protected]>
- [PATCH 10/13: eCryptfs] Mmap operations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 9/13: eCryptfs] Inode operations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 8/13: eCryptfs] File operations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 7/13: eCryptfs] Dentry operations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 6/13: eCryptfs] Superblock operations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 5/13: eCryptfs] Header declarations
  - From: Phillip Hellewell <[email protected]>
- [PATCH 4/13: eCryptfs] Main module functions
  - From: Phillip Hellewell <[email protected]>
- [PATCH 3/13: eCryptfs] Makefile
  - From: Phillip Hellewell <[email protected]>
- [PATCH 2/13: eCryptfs] Documentation
  - From: Phillip Hellewell <[email protected]>
- [PATCH 1/13: eCryptfs] fs/Makefile and fs/Kconfig
  - From: Phillip Hellewell <[email protected]>

Prev by Date: Re: [RFC][PATCH] Document what in IRQ is.
Next by Date: Re: i386/x86_84: disable PCI resource decode on device disable
Previous by thread: Remove silly messages from input layer.
Next by thread: [PATCH 1/13: eCryptfs] fs/Makefile and fs/Kconfig
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]