News: 0001632469

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

DM-INLINECRYPT Expected For Linux 7.2 To Leverage Inline Encryption

([Linux Storage] 3 Hours Ago dm-inlinecrypt)


Queued for merging as part of the DeviceMapper changes for the upcoming Linux 7.2 kernel cycle is the new dm-inlinecrypt target for leveraging inline block device encryption.

The dm-inlinecrypt target was originally [1]posted for Linux back in 2024 that unlike dm-crypt, which uses the regular Linux kernel crypto API, this new target would use the block crypto "blk-crypto" API. By using the block crypto API, it's able to make use of inline encryption hardware on capable systems -- many with UFS host controllers supporting inline encryption.

Eric Biggers of Google authored the dm-inlinecrypt target code. The dm-inlinecrypt target is derived from Android's dm-default-key with passthrough support removed as it proved controversial.

More details on dm-inlinecrypt, which can be enabled via the new DM_INLINECRYPT Kconfig option, can be found via [2]this patch now queued in the Device Mapper's "dm-7.2" Git branch ahead of the Linux 7.2 merge window in June.



[1] https://www.phoronix.com/news/DM-INLINECRYPT-Patches

[2] https://git.kernel.org/pub/scm/linux/kernel/git/device-mapper/linux-dm.git/commit/?h=dm-7.2&id=753450f716417f53759c91b5bb7b96563379a719



Eeyore, the old grey Donkey, stood by the side of the stream, and
looked at himself in the water.
"Pathetic," he said. "That's what it is. Pathetic."
He turned and walked slowly down the stream for twenty yards,
splashed across it, and walked slowly back on the other side. Then he
looked at himself again.
"As I thought," he said, "no better from *____this* side. But nobody
minds. Nobody cares. Pathetic, that's what it is.
-- A. A. Milne, "Winnie the Pooh," Chapter VI, "In Which Eeyore
Has a Birthday and Gets Two Presents"