hmac option seems to be ignored
hi,
I'm trying to make a (new) ecryptfs mount with the ecryptfs_hmac option, but the request to do hmac validation seems either ignored or not working:
sudo mount -t ecryptfs -o ecryptfs_
after answering the few questions the mount helper asks me about the passphrase, plaintext passthrough(no), and filename encryption (tried both yes and no), the mount is done:
Attempting to mount with the following options:
ecryptfs_
ecryptfs_
ecryptfs_
ecryptfs_
There's no mention of loading the hmac feature (it'd be good to have confirmation), but I tried if it was working anyway.
I created a plaintext file in folder2, wrote some text in it, saved, unmounted folder1. hexedit ciphertext, write a bunch of 0's around the encrypted file. mount back the ecryptfs filesystem, cat plaintext text file, no IO error, just some garbage and some of the original plaintext.
What am I missing here? Why is the hmac option not being seen and confirmed at mount time? Isn't it supposed to detect any kind of ciphertext tampering?
thanks.
Question information
- Language:
- English Edit question
- Status:
- Expired
- Assignee:
- No assignee Edit question
- Last query:
- Last reply: