Encrypt filename using parent directory inode as nonce

radumarias / rencfs

An encrypted file system written in Rust that is mounted with FUSE on Linux. It can be used to create encrypted directories

Apache License 2.0

117 stars 25 forks source link

Encrypt filename using parent directory inode as nonce #216

Open radumarias opened 1 month ago

radumarias commented 1 month ago

Given the fllenames in same folder are unique we can use the inode of the parent folder as nonce. This eliminate the current need to include nonce in encrypted value which increases the encrypted length.

radumarias commented 6 days ago

It's not safe bacause of this flow

create a file
delete it
create a file with same name

We will end-up encrypting with same nonce twice.

We will include it in filename as now and if file is too long it will be handled by https://github.com/radumarias/rencfs/issues/113