Google Git
Sign in
linux/linux/kernel/git/dhowells/linux-fs/refs/heads/afs-experimental
commit
da192f97aff39d9e5f71e34abc6968bfe39abee3
[log]
author
David Howells <dhowells@redhat.com>
Fri May 15 09:04:19 2026 +0100
committer
David Howells <dhowells@redhat.com>
Tue May 19 23:34:35 2026 +0100
tree
c0febee5350d7254189dbdbaf43e010961303e7a
parent
3408b875bc4447da7c5265bc599ecaa1a5f8d5af [diff]
afs: [DON'T MERGE] Do content encryption with an in-file trailer

To do content encryption, the data at the end of the file needs padding out
to crypto block size (e.g. 16 or 32 bytes for AES types), but that means we
need somewhere to store the actual file length with the padding removed.
Typically, this is stored in an xattr, though it could also be stored in
the file as an additional block at the front or end of the file.

With AFS, there are no xattrs and nowhere to store additional metadata, so
this information must be stored in the file.  Now, padding out the last
block to the fscrypt block size (4KiB, say) and then sticking a trailer
after it with the real size recorded therein is a problem for stat().  We
have to be able to read the file to be able to return the correct value in
st_size; further, if the trailer is at the end of the file rather than the
beginning, we can't guess where real size is recorded and speculatively use
the FetchData RPC rather than the FetchStatus RPC as we need to know
i_size.  Yet further, this doesn't work for bulk status fetch.

However, lacking a vectored StoreData RPC, we really want to store extra
metadata at the end of the file as StoreData "atomically" combines a
truncate and a data write which would allow us to update the metadata too.

With this in mind, implement another alternative:

 (1) Store zero-length files as zero-length on the server.  These are
     hereafter ignored in this description.

 (2) Place zeroed padding of one crypto block size (typically 16 or 32
     bytes) after the real EOF and always constant size for any particular
     file.  No information is stored here, though it may get partially
     encrypted.

 (3) Simply subtract the crypto block size from the server's file size to
     derive i_size.  This can be done when initialising/updating the inode
     and will work with bulk status fetch.

 (4) When encrypting the EOF block in a file, if partial, encrypt into the
     padding.

 (5) When decrypting the EOF block in a file, if partial, decrypt part of
     the padding.

Signed-off-by: David Howells <dhowells@redhat.com>
cc: Marc Dionne <marc.dionne@auristor.com>
cc: linux-afs@lists.infradead.org
cc: netfs@lists.linux.dev
13 files changed
tree: c0febee5350d7254189dbdbaf43e010961303e7a
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. io_uring/
  11. ipc/
  12. kernel/
  13. lib/
  14. LICENSES/
  15. mm/
  16. net/
  17. rust/
  18. samples/
  19. scripts/
  20. security/
  21. sound/
  22. tools/
  23. usr/
  24. virt/
  25. .clang-format
  26. .clippy.toml
  27. .cocciconfig
  28. .editorconfig
  29. .get_maintainer.ignore
  30. .gitattributes
  31. .gitignore
  32. .mailmap
  33. .pylintrc
  34. .rustfmt.toml
  35. COPYING
  36. CREDITS
  37. Kbuild
  38. Kconfig
  39. MAINTAINERS
  40. Makefile
  41. README