How metadata encrypted for backup in encrypted filesystem?

[oguzhane]

Hi all,
I'm looking to better understand how JuiceFS handles metadata backup to object storage, specifically from a security standpoint. The documentation mentions that metadata is automatically encrypted before being uploaded. I’m aware that files in the filesystem are encrypted using the algorithm described here.

I'm curious whether metadata encryption follows the same approach or uses a different method. I'd really appreciate any insights you can share on this.

[Xuyuchao-juice]

Of course, it is to use the same approach. Both metadata and regular files are encrypted through the common object storage encryption channel, that is, all the data passing through the object storage channel are encrypted using the same method. The encryption algorithm and key used by the channel are specified when the file system is created