ecryptfs-stat

ecryptfs-stat [mountpoint] [-v] [-h]

-h, --help
    show this help message and exit

-v, --verbose
    enable verbose output

mountpoint
    path to specific eCryptfs mount (default: all mounts)

ecryptfs-stat is a command-line utility from the eCryptfs toolkit, used to retrieve and display performance and usage statistics for eCryptfs filesystem mounts on Linux. eCryptfs is a stacked cryptographic filesystem that provides transparent encryption for files and directories.

eCryptfs-stat reports key metrics including average authenticated and unauthenticated request rates per second, total bytes of keys currently in use, average packet request and response sizes, and other operational counters. These stats are valuable for system administrators monitoring encrypted storage performance, debugging issues, or assessing security overhead.

By default, it aggregates data across all mounted eCryptfs filesystems unless a specific mountpoint is provided. The output explicitly notes that it excludes file data encryption/decryption, which happens transparently during I/O operations. Verbose mode (-v) provides more detailed breakdowns. This tool relies on the eCryptfs kernel module and procfs interfaces for data collection.

Does not track file data encryption/decryption rates (occurs during I/O); requires active eCryptfs mounts and kernel module; stats from /proc filesystem may vary by kernel version.

eCryptfs statistics:
NOTE: This report does not include file data,
which is encrypted during I/O

Average authenticated rate: 1.23 reqs/s
Average unauthenticated rate: 0.00 reqs/s
...

Introduced with eCryptfs project in 2006 by Canonical and US National Security Agency; mainlined in Linux kernel 2.6.19 (2007); utilities like ecryptfs-stat stable since early 2010s.

ecryptfs-setup-private(8), mount.ecryptfs(8), ecryptfs(7), umount.ecryptfs(8)