On Wed, Jul 12, 2017 at 5:00 PM, Eric Biggers <[email protected]> wrote: > From: Eric Biggers <[email protected]> > >.... > Solve the problem for v2 encryption policies by storing a "hash" of the > master encryption key in the encryption xattr and verifying it before > accepting the user-provided key. > ...
Forgive my ignorance... Doesn't that setup an oracle so an attacker can query keys? It seems like the problem is deeper into the design. Namely, the caching and sharing of keys. Jeff ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Linux-f2fs-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/linux-f2fs-devel
