| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 15 Mar 2016 09:37:25 -0700 From: Jaegeuk Kim <jaegeuk@...nel.org> To: Christoph Hellwig <hch@...radead.org> Cc: linux-kernel@...r.kernel.org, linux-fsdevel@...r.kernel.org, linux-f2fs-devel@...ts.sourceforge.net Subject: Re: [PATCH] f2fs: support access control via key management Hello, On Tue, Mar 15, 2016 at 12:24:22AM -0700, Christoph Hellwig wrote: > On Wed, Mar 09, 2016 at 04:52:48PM -0800, Jaegeuk Kim wrote: > > Through this patch, user can assign its key into a specific normal files. > > Then, other users who do not have that key cannot open the files. > > Later, owner can drop its key from the files for other users to access > > the files again. > > No magic file system specific access control, please: I agree that I must follow FS convention here. But, in order to make this clear out, could you please elaborate why this is not allowed? I wrote this patch totally based on per-file encryption in which users cannot access their files if they have no right key. The only difference is that this controls user access with a key only, neither encrypting file data nor dentries. This was initiated by UX in android letting nobody be able to access the files that owner wants to protect by passcode or fingerprint. Does it make no sense to support this by filesystems? Thanks, > > Nacked-by: Christoph Hellwig <hch@....de>
Powered by blists - more mailing lists