Project

General

Profile

Bug #58160

[luks] encryption-aware flatten/resize can be proxied to a peer that doesn't have encryption loaded (or just too old)

Added by Ilya Dryomov about 2 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Target version:
-
% Done:

0%

Source:
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

Currently, if this happens, all encryption awareness is stripped and the operation is carried out as if the user didn't request encryption-aware handling. The consequences are drastic: unless the image is fully populated, it gets corrupted because parent data is copied up as is -- it's not (re-)encrypted with the appropriate key. See https://github.com/ceph/ceph/pull/40363#discussion_r976800950 for discussion.

Also available in: Atom PDF