Project

General

Profile

Actions
Copy link

Bug #53417

open

librbd/crypto: Uninitialized image data may be gibberish

Added by Or Ozeri over 2 years ago. Updated almost 2 years ago.

Status:
Fix Under Review
Priority:
Normal
Assignee:
Or Ozeri
Target version:
-
% Done:

0%

Source:
Community (dev)
Tags:
Backport:
pacific,quincy
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
Ceph - v16.1.0, Ceph - v16.1.1, Ceph - v16.2.0, Ceph - v16.2.1, Ceph - v16.2.2, Ceph - v16.2.3, Ceph - v16.2.4, Ceph - v16.2.5, Ceph - v16.2.6, Ceph - v16.2.7, Ceph - v17.0.0
ceph-qa-suite:
Pull request ID:
43859
Crash signature (v1):
Crash signature (v2):

Description

By convention, librbd returns zeros when reading uninitialized image data.
When using encryption, this convention is not guaranteed.
Specifically, this can happen when non-sparse reads are issued to the OSDs,
such in the case where the reads are smaller than rbd_sparse_read_threshold_bytes.
In such cases, the OSD reads will return zeros, which will be decrypted by the crypto object dispatch layer.

Reproducing this issue is therefore easy:
Create an empty RBD image.
Format the image to use encryption (e.g. rbd encryption format with LUKS1/2).
Make sure rbd_sparse_read_threshold_bytes is set to 64KB (default).
Open the image (rbd_open) and load encryption (rbd_encryption_load).
Read 4K of data (nevermind the offset, could be offset 0 for exmaple).
Instead of zeros you will get decrypted zeros (looks like random data).

Actions
Copy link

Also available in: Atom PDF