On Wed, Nov 05, 2008 at 04:57:54PM +0100, Pavel Machek wrote:
> On Tue 2008-11-04 15:37:54, Michael Halcrow wrote:
> > This patchset implements filename encryption via a
> > passphrase-derived mount-wide Filename Encryption Key (FNEK)
> > specified as a mount parameter. Each encrypted filename has a
> > fixed prefix indicating that eCryptfs should try to decrypt the
> > filename. When eCryptfs encounters
> 
> That is 'interesting'. What happens if normal filename has that
> prefix?

If the lower filename has the prefix but does not have a valid tag 70
packet following the prefix, then eCryptfs will complain in the syslog
and then pass through the lower filename as-is.