From owner-soc-status@FreeBSD.ORG Sat Aug 22 12:17:10 2009 Return-Path: Delivered-To: soc-status@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 053BA106564A; Sat, 22 Aug 2009 12:17:10 +0000 (UTC) (envelope-from gleb.kurtsou@gmail.com) Received: from mail-fx0-f210.google.com (mail-fx0-f210.google.com [209.85.220.210]) by mx1.freebsd.org (Postfix) with ESMTP id 605938FC12; Sat, 22 Aug 2009 12:17:09 +0000 (UTC) Received: by fxm6 with SMTP id 6so782775fxm.43 for ; Sat, 22 Aug 2009 05:17:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:cc:subject :message-id:mime-version:content-type:content-disposition:user-agent; bh=6qHDUFZfflSbecyCAjv+aiZm+zNubRoRjHcOYjhAFBk=; b=rnnY3XqFOvxjnu5NUAXKafrWPEGzhCa/IpatDPk8oExDJAIVrgEh3A6OX+thEG8aPE wWy7HOUBv124VzWZ7g6yMKRLelNBcFfhZC4J2mpiMcpgMyI40LkjOSZ/Xy6Hu+m7Gazg mlIq1DYoTKfVXkMSCNU7ueZNY0hkjr7uGGtJs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:cc:subject:message-id:mime-version:content-type :content-disposition:user-agent; b=ASV65VusM5ri6Q+nbI7LjtUh7G9uuXuohoKslyyJ20SYn0Auyir6yVJCh7zhnLj3DS zipnWlJQHSIZHxh0p6vERbp71CGLbb6n85E5gfN/N7XWrbNXpXqdVOVCqupKkAmDA/bo n9KCiKkvOzO+uu0Dvsf90cfseE/SCJe5mCbFs= Received: by 10.223.14.131 with SMTP id g3mr1304691faa.68.1250943428097; Sat, 22 Aug 2009 05:17:08 -0700 (PDT) Received: from localhost (lan-78-157-90-54.vln.skynet.lt [78.157.90.54]) by mx.google.com with ESMTPS id 1sm3952751fkt.57.2009.08.22.05.17.06 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 22 Aug 2009 05:17:06 -0700 (PDT) Date: Sat, 22 Aug 2009 15:16:47 +0300 From: Gleb Kurtsou To: soc-status@freebsd.org Message-ID: <20090822121647.GA52160@tops> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline User-Agent: Mutt/1.5.20 (2009-06-14) Cc: Stanislav Sedov Subject: pefs final report X-BeenThere: soc-status@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Summer of Code Status Reports and Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Aug 2009 12:17:10 -0000 Last week I've changed file name checksum algorithm from HMAC to VMAC. VMAC is much faster and produces 64bit mac and there is no longer need to truncate HMAC output. I've also changed hand rolled KDF implementation into HKDF one which use HMAC to derivate keys. Also note that I use mac algorithms for integrity checks only, there is no authentication provided by pefs (the same way most of other such filesystems do). I hope that was a final change of crypto primitives and filesystem format would remain stable. Generally, pefs is functional and behaves as it should, all of the initial project goals were completed. There are some issue to work on though. Most important one being implementation of file name encryption cache. Current implementation performs readdir on almost every vnode lookup not found in iname cache. It degrades performance seriously.