From owner-freebsd-fs@FreeBSD.ORG Fri Jun 20 09:57:31 2003 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DADF437B401; Fri, 20 Jun 2003 09:57:31 -0700 (PDT) Received: from filer.fsl.cs.sunysb.edu (filer.fsl.cs.sunysb.edu [130.245.126.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id F184243F75; Fri, 20 Jun 2003 09:57:30 -0700 (PDT) (envelope-from ezk@fsl.cs.sunysb.edu) Received: from agora.fsl.cs.sunysb.edu (IDENT:4OyeuAqs5YZwiS10WJqDKTl4CTYbImr3@agora.fsl.cs.sunysb.edu [130.245.126.12])h5KGvQcq012016; Fri, 20 Jun 2003 12:57:27 -0400 Received: from agora.fsl.cs.sunysb.edu (IDENT:fLjPHy4sV/097bPgUteop/ynAcmmD36r@localhost.localdomain [127.0.0.1]) h5KGvTif007746; Fri, 20 Jun 2003 12:57:29 -0400 Received: (from ezk@localhost) by agora.fsl.cs.sunysb.edu (8.12.8/8.12.8/Submit) id h5KGvPDs007736; Fri, 20 Jun 2003 12:57:25 -0400 Date: Fri, 20 Jun 2003 12:57:25 -0400 Message-Id: <200306201657.h5KGvPDs007736@agora.fsl.cs.sunysb.edu> From: Erez Zadok To: Michael Sierchio In-reply-to: Your message of "Fri, 20 Jun 2003 07:32:37 PDT." <3EF31B05.5070004@tenebras.com> X-MailKey: Erez Zadok cc: Donn Miller cc: Poul-Henning Kamp cc: David Schultz cc: fs@freebsd.org Subject: Re: ideas about a unioning file system X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Jun 2003 16:57:32 -0000 In message <3EF31B05.5070004@tenebras.com>, Michael Sierchio writes: > Poul-Henning Kamp wrote: > > > The majority of the problems we have in this area can be nailed down > > to only two issues: > > 1. The very tricky semantics of rename(2) > > 2. read/write/mmap coherency for stacked filesystems. > > This is of particular interest to me. While Poul-Henning has > done some very interesting work on encryption at the GEOM > level, I'm trying to work with ACL filesystems and stacking > crypto filesystems that manage keys with one per file. Yup, coherency is certainly a difficult problem. We have only begun to look at it, and implemented some simple solutions (for NCryptfs). We'll be exploring something more like Heidemann's work (SOSP'95) in the future. > Imagine the coherency problems when pages don't match up > because of IVs for CBC block mode encryption, and imagine > the headache for (un-)locking pages at different levels. Those of you doing crypto f/s, might be interested in reading our paper on NCryptfs, which was just presented at Usenix: http://www.fsl.cs.sunysb.edu/papers/ > Making it easy for FIST and cryptfs (Erez Zadok's stuff) would > be very helpful. (I.e. gee, I'd rather not have to do this > on Linux). BTW, we've completed a port of the fist templates to 4.x (all versions) and 5.0. We're planning to release a new fistgen RSN. Erez.